Ukraine arrests hackers behind Apple phishing schemes

article thumbnail

AppleInsider is supported by its audience and can earn commission as an Amazon Associate and affiliate partner on qualifying purchases. These affiliate partnerships do not affect our editorial content.

Ukraine’s security service (SSU) has arrested five people suspected of being involved in the international “Phoenix” hacker group that carried out phishing attacks using cloned Apple support sites.

SSU notes that the suspects lived in Kiev or Kharkiv, and all five were graduates of higher technical educational institutions. Police have since seized computer equipment, cell phones, software and hardware believed to be being used by the group.

Phoenix specialized in gaining remote control of mobile devices through phishing attacks. The group would direct users to phishing sites that were clones of official Apple and Samsung support sites.

According to Bleeping Computer, the scheme lasted for at least two years, during which the hackers successfully gained access to hundreds of people’s accounts.

Phoenix also offered remote cell phone hacking services to individuals who charged between $ 100 and $ 200.

Investigators also discovered that the hackers had unlocked stolen or lost devices made by Apple. Once unlocked, the group would sell the devices to ignorant customers.

SSU believes the five people arrested cover the entire Phoenix, but plans to continue the investigation to find any remaining conspirators.

Phoenix is ​​now facing charges relevant to Article 361 of Ukraine’s Criminal Code, which focus on illegal interference in the work of electronic computers, systems and computer networks.

In August, a hacker known for data breaches had allegedly gained access to gigabytes of AT&T customer information, including social security numbers. The hacker, known as “ShinyHunters”, had requested $ 1 million to take the data offline.

AT&T denied that the information had come from their servers.

That same month, T-Mobile had become aware of a breach in its servers that had resulted in data collected on over 100 million customers being sold on a hacker forum.


Please enter your comment!
Please enter your name here