T-Mobile Sued Over $8.7M Stolen in SIM-Swap Attacks

Published at: July 23, 2020

Reggie Middleton, the chief executive of crypto company Veritaseum, is suing telecommunications provider T-Mobile for allegedly enabling the theft of $8.7 million worth of crypto in a series of SIM-swap attacks.

According to filings published on July 22, Middleton was first targeted by SIM-swappers during July 2017. Despite immediately reporting the incident to T-Mobile, Middleton claims to have been the victim of four successful SIM-swaps over the rest of 2017, and further attacks during 2018 and 2019. 

The suit accuses T-Mobile of having “abjectly failed” in its responsibility to protect the personal and financial information of its customers.

What is a SIM-swap attack?

SIM-swap attacks are executed by a hacker with the usually unwitting assistance of an employee of a telecommunications provider — who reassigns the target’s SIM card to a phone under the control of the hacker. 

Once control over the SIM is secured, the attacker then attempts to gain access to sensitive accounts controlled by the victim, such as emails, online banking, and crypto wallets or exchange accounts.

Middleton’s suit says:

“As a result of T-Mobile's gross negligence in protecting plaintiffs' information, its negligent hiring and supervision of T-Mobile employees who were responsible for safeguarding that information, and its violation of laws that expressly protect the information of wireless carrier customers, plaintiffs lost $8.7 million in cryptocurrency.” 

The complaint adds that Middleton has “suffered and continues to suffer severe anxiety, fear, and emotional distress relating to the repeated instances of identity theft.”

In November, Middleton and Veritaseum settled fraud claims relating to the company’s 2017 initial coin offering (ICO) and paid $9.4million to the U.S Securities and Exchange Commission (SEC).

Telecoms firms face legal action

Lawsuits targeting telecommunications providers for allowing SIM-swap attacks to transpire have increased in number over the past year, with AT&T currently facing at least two lawsuits from crypto investors for failing to prevent attacks.

In addition to suing AT&T, BitAngels founder and pioneering crypto investor Michael Terpin has brought a civil complaint against an 18-year-old for masterminding that attacks resulted in the loss of nearly $24 million in crypto.

In June, a 20-year-old Californian was charged for his role in 28 SIM-swap attacks.

Tags
Sec
Law
Ico
Related Posts
What Is an STO, Explained
What is an STO? STO stands for security token offering. Similar to an initial coin offering (ICO), an investor is issued with a crypto coin or token representing their investment. But unlike an ICO, a security token represents an investment contract into an underlying investment asset, such as stocks, bonds, funds and real estate investment trusts (REIT). A security can be defined as a “fungible, negotiable financial instrument that holds some type of monetary value,” i.e., an investment product that is backed by a real-world asset such as a company or property. A security token, therefore, represents the ownership information …
Blockchain / Feb. 21, 2019
US SEC Looks to Expand ‘Accredited Investor’ Classification
The United States Securities Exchange Commission (SEC) has announced that it is looking for ways to expand the classification of “accredited investor,” with potentially major implications for capital formation of firms hesitant to meet full public reporting requirements. The amendments and who gets to be accredited Per a Dec. 18 announcement on the SEC’s website, the regulator is looking for public commentary on amendments to its category of accredited investor. Currently, the SEC’s language defines an accredited investor as an individual with a net worth of over $1 million or an entity controlling over $5 million in assets. Other means …
Blockchain / Dec. 18, 2019
BNY Mellon and Credit Suisse Involved in Telegram’s $1.7B Sale: Report
Two global financial giants, BNY Mellon and Credit Suisse, were reportedly involved in Telegram’s $1.7 billion Gram (GRAM) token sale in 2018. Telegram allegedly informed its investors that it was using BNY Mellon and Credit Suisse to move and store fiat currency raised in the GRAM sale, industry publication Coindesk reports, citing court filings released on Dec. 10. A Telegram employee reveals the details in a series of messages attached to the filings Shyam Parekh, a Telegram employee who is expected to give a deposition before the New York Southern District Court today, Dec. 10, reportedly provided details on how …
Blockchain / Dec. 10, 2019
US SEC Chairman Says the Rules Won’t Change for Cryptocurrencies
United States Securities and Exchange Commission (SEC) Chairman Jay Clayton says he won’t make exceptions in securities law for cryptocurrencies, but he won’t stand in their way either. SEC rule changes ‘ain’t happening’ Bloomberg published an interview with Jay Clayton on Aug. 27. According to Clayton, he has no desire to change securities laws, either to include or exclude digital assets for regulation. In his own words: “I think a lot of people got excited that somehow we would change the rules to accommodate the technology and they invested their time and effort thinking that would happen [...] I have …
Blockchain / Aug. 27, 2019
Zambia SEC Warns About Investing in Promoted Onyxcoin Cryptocurrency
The Zambian Securities and Exchange Commission’s (SEC) CEO, Philip Chitalu, has warned the public that cryptocurrency OnyxCoin creator Kwakoo is not licensed to give investment advice or solicit funds, from within and outside the country alike. The Lusaka Times relayed the Zambian SEC head’s warnings in a report on Aug. 2. According to the report, Kwakoo has been promoting Onyxcoin and soliciting investments from the Zambian public. Relatedly, CEO Chitalu notes that Securities Act, No. 41 of 2016 dictates that certain activities — such as Kwakoo’s — require proper licensure in Zambia, unless specifically exempted by law. Moreover, Chitalu noted …
Blockchain / Aug. 3, 2019