Polish authorities shut down a prominent Polish hacking group and arrested four individuals with four more under investigation. The group has been under investigation since May of 2019 when they sent a bomb threat to a school in Łęczyca. The group more notoriously sent similar threats to over a thousand kindergartens in June 2019. Each fake bomb threat demanded 5,00 zlotys (roughly $1,300) in payment.
Along with bomb threats, the group participated in malware distribution, SIM swapping and E-commerce fraud. The group would steal personal data using malware previously deployed on a victim’s device. They would then trick the victim’s mobile carrier to port phone numbers to other SIM cards. Using this SIM card, the hackers would then reset passwords for the victim’s online accounts or bypass two-factor authentication (2FA) to steal money from victims. Using this method, the group was able to steal over 600,000 zlotys (roughly $150,000). Additionally, the group created multiple fake online stores to sell nonexistent products, defrauding more than 10,000 buyers.