- Sim-swapper Amir Hossein Golshan sentenced to 8 years for stealing Instagram accounts and orchestrating crypto/NFT heist.
- Anonymous researcher ZachXBT connects Golshan to the heist through blockchain analysis.
- Golshan used social engineering to impersonate Apple support and steal victims’ digital assets.
In a significant development, a 25-year-old man named Amir Hossein Golshan has been convicted and sentenced to eight years in federal prison for orchestrating sim-swapping attacks to hijack Instagram accounts and steal money from victims. The anonymous security researcher known as ZachXBT has also connected Golshan to the notorious heist involving $386,000 worth of cryptocurrency and non-fungible tokens (NFTs) stolen from Cameo CEO Steven Galanis.
Golshan’s Conviction and Sentencing
Following his conviction in July, Golshan faced sentencing on Monday, November 27, where he received a prison term of 96 months along with an order to pay restitution amounting to $1,218,526. The court found him guilty of engaging in sim-swapping attacks and perpetrating financial fraud.
ZachXBT’s Investigation
ZachXBT, an anonymous security researcher, played a crucial role in connecting Golshan to the August 2022 heist involving Steven Galanis. By carefully examining dates, transaction amounts, and events mentioned in the Department of Justice press release, ZachXBT uncovered compelling evidence linking Golshan to the crypto and NFT theft.
Unveiling the Connection
ZachXBT’s investigation revealed striking similarities between the scammer’s activities described in the press release and the blockchain transactions associated with Golshan. By comparing the information provided by the Department of Justice and the actual blockchain data, ZachXBT presented a compelling case establishing Golshan as the perpetrator of the heist.
The Galanis Heist
According to the DOJ press release, the heist targeting Galanis occurred in August 2022. The scammer involved in Galanis’ case sold approximately $70,000 worth of cryptocurrency. ZachXBT highlighted that Golshan’s transactions on August 6, 2022, align perfectly with the information provided by the press release. The scammer sold a Bored Ape NFT (BAYC) for $68.7K and an Ethereum Name Service (ENS) for $1.5K on the same day.
The Stolen NFT Sale
Additionally, ZachXBT’s meticulous analysis connected Golshan to the sale of the stolen NFT. Referring to the press release, ZachXBT stated that the defendant in Galanis’ case sold the pilfered NFT for $130,000 on an NFT marketplace. Remarkably, Golshan’s transaction history reflects a sale of a BAYC for the exact amount on August 6, 2022.
Relief in the NFT Community
The conviction and sentencing of Golshan have brought a sense of relief to many individuals within the NFT space who fell victim to his scams. Rug Radio founder Farokh Sarmad expressed his satisfaction, acknowledging that Golshan had targeted him and several others. While Sarmad did not suffer any financial losses, the invasion of privacy and the emotional toll caused by the scam left a lasting impact. Others shared similar sentiments, emphasizing the significance of Golshan’s arrest and their relief that he is now behind bars.
Judicial Remarks
United States District Judge Otis D. Wright II, who presided over the case, echoed the sentiments of the victims in his sentencing remarks. Judge Wright emphasized that Golshan’s crimes extended beyond mere financial gain and demonstrated a wanton cruelty that subjected victims to constant fear and worry. The judge’s comments underscored the seriousness of Golshan’s actions and the profound impact they had on the lives of those affected.
Golshan’s Modus Operandi
Golshan primarily relied on social engineering techniques to carry out his criminal activities. One of his successful tactics involved impersonating a member of Apple’s support team. By contacting victims from Apple Support’s official phone number, Golshan deceived them into believing that they were interacting with a genuine Apple employee. He employed persuasive tactics to convince victims to disclose their two-step authentication codes, thereby gaining unauthorized access to their iCloud accounts. Subsequently, Golshan changed the victims’ email addresses associated with their iCloud accounts to email addresses under his control. Exploiting this access, he proceeded to steal valuable digital assets, including NFTs valued at approximately $319,000 and approximately $70,000 worth of cryptocurrency.
Seeking Restitution
While the news of Golshan’s conviction brought some solace to Steven Galanis, the CEO of Cameo, he remains uncertain about the possibility of restitution. In response to inquiries regarding reimbursement as part of the legal proceedings, Galanis expressed that he has yet to receive any communication from the FBI or the Department of Justice. The issue of restitution remains unresolved, leaving victims awaiting further updates on the matter.
The Journey of the Stolen Ape NFT
The stolen Bored Ape NFT, numbered #9012, quickly came under scrutiny on OpenSea, theleading NFT marketplace. Since the theft, the NFT has changed hands multiple times, passing through the wallets of innocent collectors, including BendDAO and FranklinIsBored. Currently, the NFT is owned by Dominik Myczowski, the founder of the Tokapi marketplace.
Conclusion
The conviction and sentencing of Amir Hossein Golshan for his involvement in sim-swapping attacks, Instagram account hijacking, and cryptocurrency theft mark a significant milestone in the fight against cybercrime. The efforts of the anonymous security researcher ZachXBT in connecting Golshan to the notorious heist involving Steven Galanis have shed light on the extent of the scammer’s activities. The court’s ruling, combined with the detailed investigation, has provided closure and relief to the victims affected by Golshan’s wanton cruelty.
Disclaimer
The information provided in this article is for informational purposes only and should not be considered financial advice. The article does not offer sufficient information to make investment decisions, nor does it constitute an offer, recommendation, or solicitation to buy or sell any financial instrument. The content is opinion of the author and does not reflect any view or suggestion or any kind of advise from CryptoNewsBytes.com. The author declares he does not hold any of the above mentioned tokens or received any incentive from any company.