Privacy Ninja



        • Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Scammer Arrested For Phishing Operation, Sent 25,000 Texts in a Day

Scammer Arrested For Phishing Operation, Sent 25,000 Texts in a Day

The police has arrested an individual last week for sending fraudulent text messages to thousands of people to obtain banking details and defraud them.

It is estimated that the man sent more than 25,000 short text messages in one day, from SIM cards on multiple mobile devices.

Mobile phone contacts galore

The arrest took place on June 17 at a hotel in Manchester, UK, where the 21-years old fraudster had taken a room and used it as the headquarters of the phishing operation.

The fraudster is likely part of a larger gang and is probably just a foot soldier doing the risky part of the business for the more important players that run the larger operation.

Police officers found electronic equipment that could be used for SMS phishing, also known as smishing. The text messages claimed to be from the Hermes parcel delivery company.

According to the police, the operation was quite large and could deliver tens of thousands of fraudulent messages every day. It is estimated that close to 26,000 texts were sent on the day of the arrest.

At least some of the messages were sent through EE, one of the largest mobile network operators and internet service providers in the United Kingdom, with over 27 million subscribers.

Also Read: 4 Best Practices On How To Use SkillsFuture Credit

The messages informed potential victims of a missed delivery and asked for banking information. The number of individuals falling victim to the scam remains undisclosed.

After examining the seized devices, the police say that they stored a total of 44,000 mobile phone contacts.

Despite the size of the phishing operation, the man got caught when the hotel staff deemed him suspicious for carrying a large number of cables in a bag and alerted the police in Manchester.

“What we have uncovered here are potentially the components of a highly sophisticated and authentic scam that I know many people not just in Greater Manchester but across the country have been potential victims of in recent weeks and months” – Mark Astbury, Detective Inspector of Greater Manchester Police’s City of Manchester Central division

People in the UK receiving suspicious text messages allegedly from Hermes should report the phishing attempt, contact the police online, or call 101.

Also Read: 3 Reasons Why You Must Take a PDPA Singapore Course

As a side note, the fraudster’s opsec skills are not the only ones needing an improvement. Phishing kit expert JCyberSec noticed that the Manchester police did not remove the metadata in the image published with the press release. Althlugh it is not the case now, metadata can include potentially sensitive information.



Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection


We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.


Click one of our contacts below to chat on WhatsApp

× Chat with us