Haq's Musings: How Pakistan Cyber Cop Nabbed Big Time $50M Hacker
Pakistan's cyber security chief Mir Mazhar Jabbar tracked down and arrested Noor Aziz Uddin and his accomplices last month in Karachi. Noor was on FBI's Most Wanted list for stealing $50 million by international phone hacking that targeted small businesses in many countries around the world.
How Did Noor Do It?
Noor gathered business cards of small businesses and used them to target private branch exchange (PBX) switches by dialing into voicemail accounts and guessing passwords. One he guessed the voicemail passwords correctly, he would use the voicemail to forward calls to premium phone numbers that he owned. Then he and his many accomplices repeatedly dialed the hacked PBX numbers which forwarded to his premium phone lines earning him millions of dollars over several years. The premium phone line charges were in the range of several dollars a minutes.
The FBI’s official indictment doesn’t name specific entities, but it lists examples: One business in Livingston, New Jersey, was hacked for $24,120. Another, in Englewood, New Jersey, was charged $83,839, according to a story in International Business Times. Noor and his accomplices netted over $50 million over 4-year period from 2008 to 2012 by this scheme.
How Was Noor Caught:
Early in 2015, Pakistan's Federal Investigation Agency (FIA) found the cell phone number used by Noor personally. Upon getting hold of the phone number, Jabbar contacted the wireless service provider with a court order. The carrier then gave him access to the phone's GPS coordinates. And that's how Jabbar reached Noor's doorstep last month.
Source: Communication Fraud Control Association
How Big is the Phone Hacking Fraud?
Widespread use of Voice over IP (VoIP) by small businesses has created a huge opportunity for phone hackers. Communications Fraud Control Association, a telecom trade group based in New Jersey, estimated the PBX fraud at $4.42 billion in 2013.
Summary:
Growing access to technology is opening up new opportunities for criminals in both physical and cyber worlds. Noor Aziz Uddin case shows that the technology used by criminals to commit crimes can also be used by governments to fight such crimes. It requires law enforcement to stay one or two steps ahead of the criminals to beat them at their own game.
Related Links:
Haq's Musings
Pakistan Deploys Big Data to Fight Crime
Pakistani Computer Scientist Helps Fight Terror
Pakistan Government Deploys Mobile Apps
Pakistan Defense Production Goes High-Tech
Drones Outrage and Inspire Pakistanis
RMA Status in Pakistan
Cyber Wars in South Asia
Pakistan's Biggest Ever Arms Bazar
Genomics and Biotech Advances in Pakistan
India's Israel Envy: What if Modi Attacks Pakistan
Eating Grass: Pakistan's Nuclear Program
Haq's Musings: How Pakistan Cyber Cop Nabbed Big Time $50M Hacker
Pakistan's cyber security chief Mir Mazhar Jabbar tracked down and arrested Noor Aziz Uddin and his accomplices last month in Karachi. Noor was on FBI's Most Wanted list for stealing $50 million by international phone hacking that targeted small businesses in many countries around the world.
How Did Noor Do It?
Noor gathered business cards of small businesses and used them to target private branch exchange (PBX) switches by dialing into voicemail accounts and guessing passwords. One he guessed the voicemail passwords correctly, he would use the voicemail to forward calls to premium phone numbers that he owned. Then he and his many accomplices repeatedly dialed the hacked PBX numbers which forwarded to his premium phone lines earning him millions of dollars over several years. The premium phone line charges were in the range of several dollars a minutes.
The FBI’s official indictment doesn’t name specific entities, but it lists examples: One business in Livingston, New Jersey, was hacked for $24,120. Another, in Englewood, New Jersey, was charged $83,839, according to a story in International Business Times. Noor and his accomplices netted over $50 million over 4-year period from 2008 to 2012 by this scheme.
How Was Noor Caught:
Early in 2015, Pakistan's Federal Investigation Agency (FIA) found the cell phone number used by Noor personally. Upon getting hold of the phone number, Jabbar contacted the wireless service provider with a court order. The carrier then gave him access to the phone's GPS coordinates. And that's how Jabbar reached Noor's doorstep last month.
Source: Communication Fraud Control Association
How Big is the Phone Hacking Fraud?
Widespread use of Voice over IP (VoIP) by small businesses has created a huge opportunity for phone hackers. Communications Fraud Control Association, a telecom trade group based in New Jersey, estimated the PBX fraud at $4.42 billion in 2013.
Summary:
Growing access to technology is opening up new opportunities for criminals in both physical and cyber worlds. Noor Aziz Uddin case shows that the technology used by criminals to commit crimes can also be used by governments to fight such crimes. It requires law enforcement to stay one or two steps ahead of the criminals to beat them at their own game.
Related Links:
Haq's Musings
Pakistan Deploys Big Data to Fight Crime
Pakistani Computer Scientist Helps Fight Terror
Pakistan Government Deploys Mobile Apps
Pakistan Defense Production Goes High-Tech
Drones Outrage and Inspire Pakistanis
RMA Status in Pakistan
Cyber Wars in South Asia
Pakistan's Biggest Ever Arms Bazar
Genomics and Biotech Advances in Pakistan
India's Israel Envy: What if Modi Attacks Pakistan
Eating Grass: Pakistan's Nuclear Program
Haq's Musings: How Pakistan Cyber Cop Nabbed Big Time $50M Hacker
