Connect with us

Hi, what are you looking for?



Missouri Man Sentenced to Prison Over Role in SIM Swapping Scheme

A Missouri man has been sentenced to 10 months in prison for his role in a SIM swapping scheme that resulted in the theft of millions of dollars.

A Missouri man has been sentenced to 10 months in prison for his role in a SIM swapping scheme that resulted in the theft of millions of dollars.

The man, Garrett Endicott, 22, of Warrensburg, Johnson County, who pleaded guilty to his role in the scheme, was also ordered to pay $121,000 in restitution, the United States Department of Justice said on Tuesday.

Endicott is the sixth member of the international hacking group “The Community” to have been sentenced in connection with the multi-million-dollar conspiracy that relied on SIM swapping to steal funds from unsuspecting victims.

As part of a SIM swapping attack, cybercriminals trick customer support employees at mobile network carriers to transfer a victim’s phone number to a SIM in the possession of the attackers. This allows the miscreants to intercept phone calls and SMS messages, including those that contain access codes and two-factor authentication codes.

Employing SIM swapping, members of The Community changed passwords for the victims’ online accounts, including email, cloud storage, and accounts at cryptocurrency exchanges, and stole cryptocurrency from victims in California, Illinois, Missouri, Michigan, New York, Utah, and Texas.

The scheme resulted in the theft of cryptocurrency worth tens of millions of dollars. Targeted individuals lost cryptocurrency amounts ranging between under $2,000 and more than $5 million.

Other defendants sentenced for roles in the scheme include Ricky Handschumacher, 28, of Pasco County, Florida (sentenced to 48 months in prison and ordered to pay $7.6 million in restitution); Colton Jurisic, 22, of Dubuque, Iowa (42 months in prison and $9.5 million in restitution); Reyad Gafar Abbas, 22, of Charleston, South Carolina (24 months in prison and $310,000 in restitution); Conor Freeman, 22, of Dublin, Ireland (3 years in prison); and Ryan Stevenson, 29, of West Haven, Connecticut (sentenced to probation).

Advertisement. Scroll to continue reading.

Related: Two Bulletproof Hosting Administrators Sentenced to Prison in U.S.

Related: University of Pittsburgh Medical Center Hacker Sentenced to Prison

Related: Two Nigerians Sentenced to Prison in U.S. for Role in BEC Scams

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join security experts as they discuss ZTNA’s untapped potential to both reduce cyber risk and empower the business.


Join Microsoft and Finite State for a webinar that will introduce a new strategy for securing the software supply chain.


Expert Insights

Related Content


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


Luxury retailer Neiman Marcus Group informed some customers last week that their online accounts had been breached by hackers.


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.

Artificial Intelligence

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.


A new study by McAfee and the Center for Strategic and International Studies (CSIS) named a staggering figure as the true annual cost of...