fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Crypto Thief Threatened to Cut Man’s Fingers ‘one by one,’ Stole £34K

Crypto Thief Threatened to Cut Man’s Fingers ‘one by one,’ Stole £34K

Online crypto scams and ponzi schemes leveraging social media platforms are hardly anything new.

BleepingComputer has previously reported on crypto thieves abusing Instagram for running ‘investment’ scams that people could and have fallen for.

But, this gruesome case of a London-based crypto robber transcends the virtual realm and tells a shocking tale of real-life victims who were coerced into paying £34,000 in total to the perpetrator.

Editor’s note: some readers may find the content of this report distressing but emerging crypto robberies like the one outlined below prompted BleepingComputer to report on this case, to caution everyone.

21-year-old crypto thief gets five years in jail

On Wednesday, May 11th, The Crown Court at Southwark in London sentenced 21-year-old Karim Hassan to five years in prison for pulling off multiple crypto robberies and making lethal threats to his victims, a source familiar with the specifics of the case has told BleepingComputer.

Hassan, a resident of London’s Maida Vale district would use Snapchat to anonymously interact with customers looking to exchange their cryptocurrency for cash in person.

To carry out these off-the-books transactions, Hassan would ask customers to meet him in his black Audi A6.

Also Read: 3 Reasons Why You Must Take A PDPA Singapore Course

Once in the backseat of his car, customers were asked to hand over their phones and digital wallets containing Bitcoin and crypto-assets. Any hesitation or refusal on the person’s part would rapidly turn into an ugly situation—with Hassan now threatening them with ghastly violence and even rape.

Zain Hankin, one of the victims of this bootleg scheme had video-called Hassan prior to meeting up with him.

But upon refusing to give his phone to Hassan, Hankin was quickly threatened to “do something before I stick it in your neck,” states the victim’s statement.

After being held at knifepoint in the Audi, Hankin had little choice other than to give away his crypto worth £20,000 to the perpetrator.

This is despite the fact, Hankin had been accompanied to the meeting by a trusted friend who waited outside the car as Hankin joined Hassan alone in the backseat.

At one point during the course of the “transaction” Hankin’s friend even knocked on the driver’s window to ask for a cigarette—making sure everything was alright, but with a knife held next to him, Hankin couldn’t give a distress signal in time.

In a similar fashion, another victim, Abbas Mamuod was forced into paying Hassan over £10,000 after being threatened with a pocketknife.

All such involuntary transactions would be made from victims’ smartphones, authorized by their fingerprints.

Crypto theft was preceded by violence, rape threats 

In some cases, Hassan would describe himself as a “killer” who was anyway going to jail and was “going to stab you in the neck.”

Sometimes, he would allegedly go to the extent of physically assaulting victims or threatening them that he’d cut off their fingers “one by one,” should they refuse to cooperate, the same source familiar with the matter told BleepingComputer last week.

Also Read: What You Should Know About The Data Protection Obligation Singapore

A summary of the casepublished on Court News UK this week also confirmed the veracity of these claims.

Abdullahi Goloid is one such victim who states he was taken to an underground parking lot only to be punched multiple times by Hassan and another unknown male.

The offenders then terrorized Goloid by warning the victim that he would be tied up, stripped, and raped.

After enduring this arduous episode of struggle, Goloid handed over £2,500 to Hassan.

But, Hassan’s fate was sealed after this incident. Luckily, Goloid took note of the Audi’s registration plate number and reported it to the police.

A few days later, police officers spotted Hassan driving the vehicle and stopped him for a search.

Not only did the defendant’s description match what had been described by Goloid, but officers obtained items such as a credit card and a jacket stolen from a previous victim.

This made it possible for the police to track down the victim named on the credit card who then positively identified Hassan on November 11th, 2021 as a perpetrator—two days after being robbed by him.

Although Hassan was often joined by others in orchestrating these crimes, he was the “prime mover” behind the scam operation that he ran via online messaging apps.

On the surface, this may look like any old robbery but the nature of goods stolen—cryptocurrencies in the vast majority of crimes, made it greatly challenging for the prosecution to proceed against the accused, our source tells us.

Establishing the link between crypto transactions—showing money changing hands between wallets, or even understanding and explaining what was going on in a legal context proved out to be difficult.

Hassan’s barrister, John Oliver acknowledged the seriousness of his client’s crimes and mentioned Hassan’s “troubled family background” and having to “step up to the role of father of the family from an early age.”

A trained chocolatier, Hassan’s involvement in criminal activity began as the pandemic hit and he was left without work.

His Honour Judge Martin Griffith presiding over the case told the accused, “You are 21 years of age and you have kept out of trouble. Now you have managed to score a spectacular injury in relation to these offences.”

“These are three very serious robberies. They were clearly planned. The victims were enticed by currency swaps.”

The offender pled guilty to three counts of robbery and the Court found it appropriate to impose a five-year jail term on Hassan.

Crypto robberies, like the kind carried out by Hassan, are convenient as criminals no longer need to lead the victim to an ATM machine—funds can be siphoned off right from the victims’ smartphones as soon as the victims are in a relatively isolated place.

And the trail of these transactions can further be muddled up by attackers diverting stolen funds rather quickly between different wallets controlled by them.

One may also wonder, in a world with no shortage of online cryptocurrency exchanges, Bitcoin ATMs, and new crypto ventures springing up every other day, what would tempt someone to avail services of dubious crypto ATMs, like Hassan’s? That too, after being led there via an anonymous Snapchat account.

People exploring risky avenues of transacting crypto could further put themselves at a disadvantage and become reluctant to report crimes conducted against them out of fear of self-incrimination.

Many victimized by rising “crypto muggings”

An equally interesting report published by The Guardian this week exposes a rise in “crypto muggings” in London where criminals seize the phones of digital investors right on the street to steal thousands of pounds from their crypto wallets.

Real-life stories of victims include a Coinbase user whose wallet with £5,000 was emptied as they were calling an Uber near a prominent City of London train station, a man approached by cocaine street dealers and losing his £6,000-worth of Ripple and other digital assets to them, and a third victim who’d been vomiting under a bridge when a mugger coerced him into unlocking his phone and transferring a whopping £28,700 worth of cryptocurrency.

Striking incidents like these are a reminder to be conscious of your surroundings and people around you when carrying cryptocurrency—much like physical cash, with you.

It may also be a good idea to keep your family and friends informed of your whereabouts and to use your smartphone camera frequently to preserve photographic evidence when you’re about to head into a situation like the one crafted by Hassan.

Phil Ariss of the National Police Chiefs’ Council cybercrime programme who leads the crypto team acknowledged police officers were being trained on a variety of crypto-related crimes. Ariss also urged the public to be cautious when assessing their digital assets.

“You wouldn’t walk down the street holding £50 notes and counting them. That should apply to people with crypto assets,” he said.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us