小埃里克議會（Eric Council Jr.

26歲的阿拉巴馬州亨茨維爾（Huntsville），阿拉巴馬州居民，埃里克委員會（Eric Council Jr.

A Huntsville, Alabama resident, Eric Council Jr., 26, has been sentenced to 14 months in prison for his involvement in a scheme to hack the US Securities and Exchange Commission’s (SEC) official social media account on X, formerly Twitter.

阿拉巴馬州亨茨維爾（Huntsville），26歲的埃里克委員會（Eric Council Jr.

Council’s sentencing on Monday follows his guilty plea in February to charges including conspiracy to commit aggravated identity theft and access device fraud. The incident, which occurred in January 2024, involved the posting of false information about Bitcoin that briefly impacted the cryptocurrency’s value.

週一，理事會的宣判是在2月的認罪之後，指控包括陰謀犯有嚴重的身份盜用和訪問裝置欺詐。該事件發生在2024年1月，涉及發布有關比特幣的虛假信息，該信息短暫影響了加密貨幣的價值。

As reported by Hackread at the time, the scheme began when Council, also known as Ronin and Agiantschnauzer, created a fake identification card using the personal information (PII) of a victim, which he obtained from others involved in the conspiracy. He then used this fake ID to carry out a SIM swap attack.

正如HackRead當時報導的那樣，該計劃開始了，當時也稱為Ronin和Agiantschnauzer的理事會使用受害者的個人信息（PII）創建了一張假識別卡，他是從參與陰謀的其他人那裡獲得的。然後，他使用此假ID進行SIM卡交換攻擊。

This deception involved contacting mobile phone carriers and, by impersonating the victim, had the victim’s phone number transferred to a SIM card that was in the possession of one of the conspirators. This move was crucial to intercept two-factor authentication (2FA) codes intended for the SEC’s account, ultimately granting the conspirators unauthorized access. However, it was later discovered that the SEC’s X account did not have 2FA enabled, making it easier for the attackers to take over the account.

這種欺騙涉及與手機運營商聯繫，並通過冒充受害者的身份，將受害者的電話號碼轉移到了一個陰謀家擁有的SIM卡上。這一舉動對於截止針對SEC帳戶的兩因素身份驗證（2FA）代碼至關重要，最終授予同謀未經授權的訪問權限。但是，後來發現SEC的X帳戶未啟用2FA，使攻擊者更容易接管該帳戶。

The conspirators went on to post a fabricated announcement from the SEC chairman Gary Gensler, where he approved Bitcoin Exchange Traded Funds (ETFs), a day ahead of the anticipated decision.

陰謀者繼續發布了SEC主席Gary Gensler的製作公告，他批准了比特幣交易所交易的資金（ETF），這是預期決定的前一天。

The unauthorized tweet from the official @SECGov handle caused significant confusion and volatility in the cryptocurrency market as it gained 1 billion views. It also raised bitcoin price to over $1000 per BTC. However, the gain was short-lived as the SEC clarified the false information 15 minutes later, causing Bitcoin’s price to decline by over $2000 per BTC.

@secgov官方手柄的未經授權的推文在加密貨幣市場上引起了嚴重的混亂和波動，因為它獲得了10億觀看次數。它還將比特幣價格提高到每BTC $ 1000以上。但是，由於SEC在15分鐘後澄清了虛假信息，因此收益是短暫的，導致比特幣的價格下跌超過每BTC $ 2000。

“Schemes of this nature threaten the health and integrity of our market system. My office will continue to aggressively pursue and prosecute those who engage in such activity. Those who participate in cybercrime will be caught, prosecuted, and will pay the price for the damage your actions create,” said US Attorney Jeanine Pirro for the District of Columbia.

“這種性質的計劃威脅到我們市場體系的健康和完整性。我的辦公室將繼續積極地追求並起訴那些從事此類活動的人。參與網絡犯罪的人將被抓住，起訴，並將為您的行為造成的損害付出代價，”美國Attorn the Inter the Ins the Collo the Collobia造成的損害。 ”

Further investigation revealed that Council received approximately $50,000 for his role in the SIM-swapping attack. Following a search of his residence in June 2024, the FBI discovered the fake ID card, a portable ID card printer, and a laptop containing incriminating internet searches related to the “SECGOV hack” and “telegram sim swap.”

進一步的調查顯示，理事會在SIM卡攻擊中的角色獲得了約50,000美元。在2024年6月搜查了他的住所後，聯邦調查局發現了偽造的身份證，便攜式ID卡打印機和一台包含與“ Secgov Hack”和“ Teletram Sim Shap”​​相關的互聯網搜索的筆記本電腦。

Despite setting his chats to delete after two weeks, messages discussing SIM swap hacks with people likely living outside the US were found.

儘管將他的聊天設置為兩週後刪除，但發現與可能居住在美國以外的人們討論SIM交換黑客的消息。

This case underscores the real-world consequences of cybercrime and the importance of employing fail-proof security measures for all organizations, including government agencies. It also highlights the collaborative efforts of federal agencies in combating sophisticated cyber threats and protecting the public interest. As the case unfolds, further updates and analysis will be provided.

該案件強調了網絡犯罪的現實後果以及為包括政府機構在內的所有組織採取防故障安全措施的重要性。它還強調了聯邦機構在打擊複雜的網絡威脅和保護公共利益方面的合作努力。隨著案例的展開，將提供進一步的更新和分析。