Wednesday, October 28, 2020

AT&T employees took bribes to plant malware on the company’s network

-

AT&T employees took bribes to unlock millions of smartphones, and to install malware and unauthorized hardware on the company’s network, the Department of Justice said yesterday.

These details come from a DOJ case opened against Muhammad Fahd, a 34-year-old man from Pakistan, and his co-conspirator, Ghulam Jiwani, believed to be deceased.

The DOJ charged the two with paying more than $1 million in bribes to several AT&T employees at the company’s Mobility Customer Care call center in Bothell, Washington.

OPERATING SINCE 2012

The bribery scheme lasted from at least April 2012 until September 2017. Initially, the two Pakistani men bribed AT&T employees to unlock expensive iPhones so they could be used outside AT&T’s network.

- Advertisement -

The two recruited AT&T employees by approaching them in private via telephone or Facebook messages. Employees who agreed, received lists of IMEI phone codes which they had to unlock for sums of money.

Employees would then receive bribes in their bank accounts, in shell companies they created, or as cash, from the two Pakistani men.

RelatedDOJ charges 5 former RCBC officials for facilitating money laundering

This initial stage of the scheme last for about a year, until April 2013, when several employees left or were fired by AT&T.

THE MALWARE STAGE

- Advertisement -

That’s when Fahd changed tactics and bribed AT&T employees to install malware on AT&T’s network at the Bothell call center. Between April and October 2013, this initial malware collected data on how AT&T infrastructure worked.

According to court documents unsealed yesterday, this malware appears to be a keylogger, having the ability “to gather confidential and proprietary information regarding the structure and functioning of AT&T’s internal protected computers and applications.

The DOJ said Fahd and his co-conspirator then created a second malware strain that leveraged the information acquired through the first. This second malware used AT&T employee credentials to perform automated actions on AT&T’s internal application to unlock phone’s at Fahd’s behest, without needing to interact with AT&T employees every time.

RelatedMicrosoft settles bribery case for over $25 million

In November 2014, as Fahd began having problems controlling this malware, the DOJ said he also bribed AT&T employees to install rogue wireless access points inside AT&T’s Bothell call center. These devices helped Fahd with gaining access to AT&T internal apps and network, and continue the rogue phone unlocking scheme.

ONE AT&T EMPLOYEE MADE $428,500

The DOJ claims Fahd and Jiwani paid more than $1 million in bribes to AT&T employees, and successfully unlocked more than two million devices, most of which were expensive iPhones. One AT&T employee received more than $428,500 in bribes over a five year period, investigators said.

The DOJ said the two operated three companies named Endless Trading FZE, Endless Connections Inc., and iDevelopment. The DOJ didn’t say if Fahd and Jiwani were unlocking stolen devices, or running a unauthorized phone unlocking website. For some email communications, Fahd used the [email protected] address, suggesting the latter scenario.

Fahd was arrested in Hong Kong in February 2018, and extradited to the US on August 2, last week. He now faces a litany of charges that may send him behind bars for up to 20 years.

AT&T estimated it lost revenue of more than $5 million/year from Fahd’s phone unlocking scheme.

“We have been working closely with law enforcement since this scheme was uncovered to bring these criminals to justice and are pleased with these developments,” an AT&T spokesperson told ZDNet. The company said this incident did not involve access to customers’ personal data.

MUST READ

Beam Suntory Inc. fined $19.6 million in foreign bribery case

Beam Suntory Inc. (Beam), a Chicago-based company that produces and sells distilled beverages, has agreed to pay a criminal monetary penalty of $19,572,885 to...

Julius Baer to deny two former CEOs their bonuses over money laundering scandal

Julius Baer will withhold millions of francs in bonuses from its former chief executives Boris Collardi and Bernhard Hodler, as a result of a...

Goldman Sachs executives to cover part payments of $3 billion fines in 1MDB scandal

Nine current or former Goldman Sachs executives, including CEO David Solomon, will have to pay back hundreds of millions of dollars in compensation over...

Goldman Sachs agrees $3 billion settlement with US DoJ over 1MDB corruption scandal

Goldman Sachs has agreed to pay nearly $3bn (£2.3bn) in the US to end a probe of its role in Malaysia's 1MDB corruption scandal. The...

Hong Kong fines Goldman Sachs $350 million over 1MDB scandal

Goldman Sachs ignored multiple red flags over the multibillion-dollar fundraisings it arranged for state fund 1Malaysia Development Berhad, Hong Kong’s financial regulator said on...

Subscribe For More

Get our daily notification on the latest financial crimes news around the World

Advertisement
Advertisement

Latest News

This Week

Judge opposed dismissal of bribery charge against former Portage mayor Synder

A judge denied Thursday two motions to dismiss a soliciting bribes charge former Portage Mayor James Snyder will be retried on, according to court...

Australian court approves $920 million Westpac money laundering fine

The Federal Court of Australia has agreed on the deal struck between the Australian Transaction Reports and Analysis Centre (AUSTRAC) and Westpac, ordering the Australian...

Actress Felicity Huffman complete full sentence for role in college admissions scam

Felicity Huffman has completed her full sentence for her involvement in the college admissions scandal. As of Sunday, she has finished her sentence, which included jail...

UK regulators fine Goldman Sachs £97 million over 1MDB scandal

Goldman Sachs International has been fined £96.6m by UK regulators for risk management failures connected to the 1MDB scandal. The Financial Conduct Authority and Prudential...
Advertisement

Adblock Detected!

Our website is made possible by displaying online advertisements to our visitors. Please consider supporting us by whitelisting our website.

Enable Notifications    Ok No thanks