Polish Police Bust SIM Swap Ring That Exploited Telecom Supply Chain for $15M

Published by James Harris on

Polish Police Bust SIM Swap Ring That Exploited Telecom Supply Chain for $15M — Bitcoin

What You Need to Know

  • Four arrests in Poland and US for SIM swap attacks targeting cryptocurrency exchanges, estimated $15 million laundered.
  • Attackers compromised telecom company IT systems and employee emails to perform SIM swaps at scale upstream.
  • SIM swap attacks have drained hundreds of millions from crypto holders over five years using SMS vulnerabilities.
  • Cross-border crypto crime enforcement becoming routine, with FBI freezing $580 million in March and seizing $8 billion in May.

Polish and US law enforcement arrested four people on June 25 for running SIM swap attacks against cryptocurrency exchange accounts, with prosecutors estimating the laundered proceeds at roughly $15 million after converting from tens of millions of zlotys.

What makes this operation more than a routine cybercrime bust is the method. The group did not brute-force exchanges directly. Instead, they first compromised the IT systems of companies servicing telecom operators, used social engineering to access employee email accounts, and then performed SIM swaps from that position of trust inside the supply chain. That is a meaningful escalation in technique: rather than targeting individual victims, they embedded themselves upstream where a single foothold could enable attacks at scale. Blockchain investigator ZachXBT linked one suspect to a social engineer known online as “Merry,” whose public Instagram account reportedly displayed designer clothing and jewelry matching items photographed during the seizure. The laundered funds moved through personal bank accounts in Poland and abroad, international payment platforms, and digital wallets across multiple currencies.

SIM swap attacks have drained hundreds of millions from crypto holders over the past five years, and the technique keeps working because SMS-based two-factor authentication remains widespread despite its known weaknesses.

The CBZC, FBI, and Homeland Security Investigations running this jointly signals that cross-border crypto enforcement is becoming more procedurally routine, not exceptional. The FBI froze roughly $580 million tied to Southeast Asian fraud compounds in March, and Operation Blackout in late May seized over $8 billion in assets including more than 127,000 Bitcoin linked to a separate scam network. The pattern suggests US agencies are increasingly deploying resources through foreign partners rather than waiting for suspects to enter US jurisdiction, which compresses the operational window for groups running this kind of infrastructure. Exchanges that still rely on SMS verification for high-value account access are the implicit losers here: each prosecution that maps the attack chain in detail also maps the continuing vulnerability.

All four suspects remain in pretrial detention facing up to 25 years in prison on charges of participation in an organized criminal group, unauthorized computer access, and money laundering, while investigations continue.

Source: Polish cybercrime unit arrests four in FBI-backed SIM swap and crypto theft raid (cryptopolitan.com)

Categories: News

James Harris

Hi, I’m James Harris, dad of three, professional coffee maker (not drinker, as I make it for my wife), and the unlucky guy who once lost $48 in a crypto scam. Yep, forty-eight bucks. Not life-changing money, but just enough to sting my pride. That little scam lit a fire in me: if I could get fooled, so could anyone. And that’s how DodgeTheScam.com was born. Now I spend my time turning my mistake into your advantage. I dig into scams, fake sites, and shady schemes so you don’t have to learn the hard way. I keep things simple, honest, and sometimes funny, because staying safe online doesn’t have to feel like homework. My mission? To help you dodge scams, save your hard-earned money, and maybe give you a laugh or two along the way.

0 Comments

Leave a Reply

Avatar placeholder

Your email address will not be published. Required fields are marked *

Related Posts

Base Suffers Second Outage in Four Months as Sequencer Centralization Persists — Ethereum
News

Base Suffers Second Outage in Four Months as Sequencer Centralization Persists

Base experienced a roughly two-hour outage Thursday when an invalid block triggered a consensus failure, halting all transactions until the team restored operations within 50 minutes. The incident highlights a critical structural weakness: single-sequencer designs keep fees low but mean one software fault can freeze the entire chain until manual intervention.

Polymarket's Third Breach in Six Months Reveals Airdrop-Driven Attack Surface — Ethereum
News

Polymarket’s Third Breach in Six Months Reveals Airdrop-Driven Attack Surface

Polymarket has suffered its third major security breach in six months, losing nearly $3 million as stolen collateral was swapped and routed to a single address. The incidents reveal a structural vulnerability: airdrop speculation is driving users toward phishing schemes faster than the platform can address them.

Iran Demands $40B Annual Toll for Strait of Hormuz Passage — DeFi
News

Iran Demands $40B Annual Toll for Strait of Hormuz Passage

Iran proposes converting the Strait of Hormuz into a toll route, demanding ships pay $40 billion annually for security and environmental services. The U.S. and regional allies have swiftly rejected the plan, warning it would set a dangerous precedent for global waterways.