Cyber Criminal bribe AT&T employees results in notorious malware on the network

It has been reported that during the period starting from April 2012 and till September 2017, a Pakistani offered bribes to some employers of AT&T, an American multinational conglomerate holding company, in exchange to getting possibilities to unlock iPhones and use them in outside the company network and install malware on the network.

Muhammad Fahd along with co-conspirator Ghulam Jiwani, were run three businesses namely iDevelopment, Connections Inc., Endless Trading FZE which were discontinue after Fahd arrested in February, last year. Of about, $ 1 million have been spent to bribe by these two peoples. The Mobile Customer Care call point in Washington was the witness of the whole actions.

“Beginning at a date unknown, but no later than April 2012, and continuing through in or about September 2017, at Bothell, within the Western District of Washington, and elsewhere, MUHAMMAD DAH, aka Frank Zhang, GHULAM JIWANI, and other known and unknown to the Grand Jury, did knowingly and intentionally, agree and conspire to device and execute and attempt to execute, a scheme and artifice to defraud, and for obtaining money and property by means of materially false and fraudulent pretenses, representations, and promises; and in executing and attempting to execute this scheme and artifice, to knowingly cause to be transmitted in interstate and foreign commerce, by means of wire communication, certain signs, signals and sounds as further described below, in violation of Title 18, United States Code, Section 1343.”

The Two’s main goal

The two criminals who decided to bribe AT&T contacted the employees via telephone and Facebook messages and using an email address [email protected] has also been reported. The seduced employees got cash or direct money to their bank accounts. These people encode some mobile phone IMEIs for the money exchange. This was discontinued when lots of employees left the company or forced to leave the job on 2013 of April. But, they renewed the bribing and used for different malicious purposes. This time, the AT&T employees were convinced to install malware on AT&T’s network to take the money. According to the United States Department of Justice’s statement, the malicious software appear to be a keylogger that is capable of gathering sensitive information about the structure and operation principle of the company’s machine and software.

AT&T is facing $5 million loss a year because of the activity

The hacker Muhammad Fahd has generated a malicious component that works for unlocking mobile phones without a need to repeat of interaction of the company employees. Bogus wireless access points are another one that helped the hackers to access the network and unlock the mobile.  This way the man managed to encode over $2 million phones. Some of these phones have cost around $500 and above the range. To achieve these goals, the criminal people had to send $1 million in total.  It is not yet known the total losses for the company. However, it is estimate that this could be over $5 million per year.