An organized cybercrime group in Poland was dismantled after authorities arrested four individuals accused of conducting SIM-swapping attacks by breaching telecommunications partners and hijacking employee email accounts. These attacks enabled the perpetrators to clone victims' phone numbers, intercept SMS and email communications, and take control of cryptocurrency exchange accounts. The operation resulted in the theft and laundering of millions of U.S. dollars. The investigation involved cooperation between the Polish Cybercrime Bureau, FBI, and Homeland Security Investigations. The suspects used specialized software and social engineering to gain unauthorized access to infrastructure and treated these activities as a regular income source.

The threat actors successfully hijacked victims' phone numbers and cryptocurrency exchange accounts, resulting in the theft of millions of U.S. dollars. The stolen funds were laundered through a distributed financial network involving multiple bank accounts and digital wallets across various countries. This led to significant financial losses for victims and undermined trust in telecommunications and cryptocurrency security.

No specific patch or vendor advisory is available for this threat, as it involves criminal activity exploiting social engineering and unauthorized access rather than a software vulnerability. Organizations should strengthen security controls around telecommunications partner infrastructure and employee email accounts, implement multi-factor authentication, and monitor for suspicious account activities. Law enforcement cooperation is critical for disrupting such organized crime groups. Patch status is not yet confirmed — check relevant vendor advisories for any updates on securing telecommunications infrastructure.