The scheme involved gaining unauthorized access to an employee account of a third-party company, presumably providing customer support services for Apple. The court records detail that Roskin-Frazee and his accomplice attempted to fraudulently obtain over $3 million in Apple products and services through more than two dozen orders. They accessed Apple’s VPN servers and Toolbox system, placing orders under false names and manipulating the payment amounts to $0. The fraudulent activities led to the acquisition of around $2.5 million in electronic gift cards and over $100,000 in products and services, which were subsequently resold to third parties.
This incident underscores the potential risks associated with insider knowledge and the importance of robust cybersecurity measures to safeguard against such sophisticated frauds. It also highlights the challenges companies face in securing their backend systems against exploitation by individuals with advanced technical skills.
Source: The Times of India
To mitigate potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net or you can try your self using check.website.