FBI helped Polish police arrest four suspects in a SIM-swap ring that stole tens of millions of zloty in crypto. The method exploits SMS-based 2FA, a vulnerability many holders still rely on.
Alpha Score of 66 reflects moderate overall profile with moderate momentum, strong value, strong quality, weak sentiment.
Polish police arrested four people connected to a SIM-swap operation that stole cryptocurrency and laundered tens of millions of zloty. The FBI assisted in the investigation, pointing to a cross-border dimension that likely involves US victims or infrastructure.
SIM swapping works by convincing a mobile carrier to transfer a victim’s phone number to a new SIM card. Once attackers control the number, they intercept SMS-based two-factor codes and drain crypto wallets or exchange accounts. The four suspects paired that technique with social engineering – manipulating telecom employees, victims, or intermediaries into handing over access.
Polish authorities have not released the suspects’ names, nationalities, or ages. The alleged laundering total sits at “tens of millions” of zloty. Ten million zloty converts to roughly $2.5 million, so the actual number is at least several million dollars.
No specific victims, crypto protocols, or exchanges have been named in this case. The FBI played a supporting role. That typically means US-based victims or digital infrastructure were part of the attack chain, while the main suspects operated in Europe.
In October 2025, Europol’s SIMCARTEL initiative took down fraud networks through coordinated arrests and seizures. That operation targeted different fraud methods but shared the same weak point: criminals exploiting the most vulnerable link in digital security. Polish police have also worked with Europol in recent years to dismantle cybercrime groups using impersonation tactics.
The arrests underline a risk most crypto holders ignore. SMS-based two-factor authentication is the entry point for SIM swapping. Hardware authenticators like YubiKeys or FIDO2 devices cut that vector entirely. App-based authenticators like Google Authenticator are better than SMS. They carry their own risks if the phone is compromised. Hardware wallets remain the standard for anyone holding meaningful amounts of crypto.
The case also highlights a less discussed vulnerability: telecom employees as attack surfaces. SIM-swap gangs frequently bribe or coerce carrier staff to execute number transfers. Some carriers have added PIN protections and account locks to counter this. Adoption and enforcement vary by provider and jurisdiction.
Prepared with AlphaScala research tooling and grounded in primary market data: live prices, fundamentals, SEC filings, hedge-fund holdings, and insider activity. Each story is checked against AlphaScala publishing rules before release. Educational coverage, not personalized advice.