Nov. 4, 2025

Idriss Qibaa - The Stalker Who Sold Fear Online

Idriss Qibaa - The Stalker Who Sold Fear Online
The player is loading ...
Idriss Qibaa - The Stalker Who Sold Fear Online
Idriss Qibaa - The Stalker Who Sold Fear Online
Spotify podcast player icon Apple Podcasts podcast player icon RSS Feed podcast player icon
Spotify podcast player icon Apple Podcasts podcast player icon RSS Feed podcast player icon
Season 3

Most people in 2025 would never just leave their front door open, their credit cards, or identity information just lying around, but many times, that's what we’re doing online, sharing so much personal information out on platforms like Facebook and Instagram, and we often don't give it a second thought.

For many shady people on the internet, that’s an opportunity to take advantage of unsuspecting people, including those who are older or less tech-savvy, as well as influencers, small business owners, and celebrities who have come to depend on their social media and have it tied to their brand.

These bad actors use their influence and skills to exert leverage and power over others, and in one recent case, use that power to threaten, humiliate, and destroy people’s reputations and livelihoods.

https://sinspod.co/98
https://sinspod.co/98sources
https://sinspod.co/98blog
https://sinspod.co/98sub
https://sinspod.co/98transcript

We also cover the case of Daniel Reza who has been missing since 2019 in the area of Mount Charleston. 
https://sinspod.co/98missing
https://sinspod.co/DanielReza

Become a supporter of this podcast: https://www.spreaker.com/podcast/sins-survivors-a-las-vegas-true-crime-podcast--6173686/support.

Domestic Violence Resources
http://sinspod.co/resources

Click here to become a member of our Patreon!
https://sinspod.co/patreon
Visit and join our Patreon now and access our ad-free episodes and exclusive bonus content & schwag! Get ad-free access for only $1 a month or ad-free and bonus episodes for $3 a month

Apple Podcast Subscriptions
https://sinspod.co/apple
We're now offering premium membership benefits on Apple Podcast Subscriptions! On your mobile device

Let us know what you think about the episode
https://www.buzzsprout.com/twilio/text_messages/2248640/open_sms

WEBVTT

1
00:00:00.320 --> 00:00:03.879
To listen ad free, visit sinspod dot com slash subscribe

2
00:00:04.080 --> 00:00:06.000
starting at two ninety nine a month. You'll also get

3
00:00:06.040 --> 00:00:08.839
access to our exclusive bonus content episodes when you join

4
00:00:08.919 --> 00:00:12.439
through Patreon or Apple subscriptions. Thanks for supporting the show.

5
00:00:14.359 --> 00:00:17.239
Most people in twenty twenty five would never just leave

6
00:00:17.280 --> 00:00:20.480
their front door open, their credit cards or identity information

7
00:00:20.640 --> 00:00:24.079
just lying around, But many times that's what we're doing online,

8
00:00:24.399 --> 00:00:27.879
sharing so much personal information out on platforms like Facebook

9
00:00:27.920 --> 00:00:30.800
and Instagram, and we often don't give it a second thought.

10
00:00:31.800 --> 00:00:34.280
For many shady people on the Internet, that's an opportunity

11
00:00:34.320 --> 00:00:37.439
to take advantage of unsuspecting people, including those who are

12
00:00:37.479 --> 00:00:41.079
older or less tech savvy, as well as influencers, small

13
00:00:41.119 --> 00:00:43.880
business owners, and celebrities who have come to depend on

14
00:00:43.920 --> 00:00:46.159
their social media and have it tied to their brand.

15
00:00:47.280 --> 00:00:50.119
These bad actors use their influence and skills to exert

16
00:00:50.159 --> 00:00:53.359
leverage and power over others, and in one recent case,

17
00:00:53.759 --> 00:00:57.960
use that power to threaten, humiliate, and destroy people's reputations

18
00:00:57.960 --> 00:01:06.560
and livelihoods.

19
00:01:07.239 --> 00:01:09.799
Hi and Welcome to Sins and Survivors, a Las Vegas

20
00:01:09.840 --> 00:01:12.439
true crime podcast where we focus on cases that deal

21
00:01:12.439 --> 00:01:15.840
with domestic violence as well as missing persons and unsolved cases.

22
00:01:16.280 --> 00:01:17.439
I'm your host Sean.

23
00:01:17.359 --> 00:01:19.920
And I'm your co host John. This week we.

24
00:01:19.840 --> 00:01:23.079
Are turning to an area of John's expertise, technology and

25
00:01:23.159 --> 00:01:27.400
online safety. We did some Tech Corner episodes in twenty

26
00:01:27.439 --> 00:01:29.680
twenty three, back in our first season, and we said

27
00:01:29.719 --> 00:01:32.239
we'd returned to that when there was good reason to.

28
00:01:33.000 --> 00:01:36.920
So today we're highlighting a particularly bad actor who trapped

29
00:01:37.040 --> 00:01:41.799
unsuspecting people online with promises of account banning or unbanning

30
00:01:41.799 --> 00:01:45.599
on their social media, lock out recovery services for folks

31
00:01:45.640 --> 00:01:49.280
who were locked out of their accounts, and reselling personal information.

32
00:01:50.040 --> 00:01:52.079
So John, why don't you get us started with what

33
00:01:52.239 --> 00:01:53.680
you're talking about this week?

34
00:01:54.040 --> 00:01:57.680
The person we're talking about is Iddris Danny Kiaba, who

35
00:01:57.719 --> 00:02:01.079
is involved in some pretty sketchy activity. He was a

36
00:02:01.120 --> 00:02:04.359
twenty seven year old Moroccan national living in Las Vegas

37
00:02:04.560 --> 00:02:08.240
who in an interview said that as recently as twenty eighteen,

38
00:02:08.599 --> 00:02:12.520
he was working construction, living paycheck to paycheck and kind

39
00:02:12.520 --> 00:02:15.199
of living out of his car, and he just stumbled

40
00:02:15.240 --> 00:02:17.560
into this line of work, although he wasn't really clear

41
00:02:17.599 --> 00:02:21.800
about how that happened. He operated a business called Unlocked

42
00:02:21.800 --> 00:02:24.919
for Life under the name unlocked for life LLC, and

43
00:02:24.960 --> 00:02:27.319
he had a slew of different aliases that he used

44
00:02:27.360 --> 00:02:31.080
online in these various platforms. Danny is what his clients,

45
00:02:31.159 --> 00:02:35.360
or more accurately, his victims knew him by unlocked, unlocked

46
00:02:35.360 --> 00:02:39.879
for life on Instagram, and unlocked uncensored on Telegram. It's

47
00:02:39.919 --> 00:02:42.719
worth noting that all of those IDs seemed to be

48
00:02:42.759 --> 00:02:44.400
gone at this point, so you can't really find him

49
00:02:44.400 --> 00:02:46.199
on Instagram anymore. Or Telegram.

50
00:02:46.520 --> 00:02:49.960
You said Telegram, Can you explain what Telegram is for

51
00:02:50.080 --> 00:02:51.960
anyone out there listening who doesn't know.

52
00:02:52.400 --> 00:02:55.439
Telegram is a messaging app like WhatsApp or a signal.

53
00:02:56.039 --> 00:03:00.560
It's much less regulated than something like Meta's Facebook Messenger.

54
00:03:00.840 --> 00:03:03.960
It has no content moderation. It's encrypted for end to

55
00:03:04.039 --> 00:03:06.879
end privacy, just like Signal is. Anyone can create an

56
00:03:06.879 --> 00:03:10.000
anonymous Telegram user with no validation at all. You can

57
00:03:10.039 --> 00:03:13.360
create huge group chats and public channels to reach potentially

58
00:03:13.400 --> 00:03:17.439
millions of people. It also allows for self destructing messages

59
00:03:17.759 --> 00:03:21.840
like WhatsApp does, which disappear after a preset time, allowing

60
00:03:21.879 --> 00:03:24.919
for people to remove evidence. So it's like a mix

61
00:03:24.960 --> 00:03:28.639
of chat and a public feed. Legitimate businesses can use

62
00:03:28.680 --> 00:03:31.000
it too, but all of those features make it a

63
00:03:31.039 --> 00:03:34.479
popular place for scammers, food deal instolen data, and the

64
00:03:34.560 --> 00:03:37.520
kinds of account recovery schemes that Idris was running.

65
00:03:38.439 --> 00:03:41.479
So Idris kind of fell into this work, as he

66
00:03:41.599 --> 00:03:44.479
called it. So some of the services that his company,

67
00:03:44.960 --> 00:03:50.000
Unlocked for Life offered included were things like account banning

68
00:03:50.120 --> 00:03:54.960
or unbanning, or recovering locked accounts on Instagram, Snapchat or TikTok.

69
00:03:55.360 --> 00:03:57.759
And he said that he had special tools that he

70
00:03:57.800 --> 00:04:02.199
had developed and he had access to ins whatever that means.

71
00:04:02.639 --> 00:04:06.199
I know that you have some experience in losing an account,

72
00:04:06.199 --> 00:04:08.159
getting locked out of an account, so I thought that

73
00:04:08.159 --> 00:04:10.599
would be an interesting story for you to share with

74
00:04:10.639 --> 00:04:11.240
everyone here.

75
00:04:11.719 --> 00:04:14.400
I got a text message a DM in Instagram from

76
00:04:14.439 --> 00:04:17.319
someone I knew, and the message said, Hey, you know

77
00:04:17.360 --> 00:04:19.040
I'm having a problem with my account. Can you help

78
00:04:19.040 --> 00:04:20.720
me reset it? I need someone to read me the

79
00:04:20.759 --> 00:04:24.000
code after you click this link, ostensibly to get their

80
00:04:24.120 --> 00:04:27.399
password reset because it had been hacked. Well, in reality,

81
00:04:27.920 --> 00:04:31.040
what they did was they generated that link from my account.

82
00:04:31.279 --> 00:04:34.000
So when I clicked it and I gave them that code,

83
00:04:34.079 --> 00:04:37.279
it gave them the ability to reset my password, which

84
00:04:37.319 --> 00:04:40.480
they did, and then they changed my phone number to theirs,

85
00:04:40.519 --> 00:04:43.399
which I didn't know, so I couldn't reset it anymore

86
00:04:43.439 --> 00:04:45.319
because it wasn't going to send me a message anymore.

87
00:04:46.079 --> 00:04:48.800
And then when I messaged them from your account, they

88
00:04:48.879 --> 00:04:51.120
changed my handle entirely, so I didn't even know where

89
00:04:51.160 --> 00:04:53.759
it was. My account was basically gone. I had no

90
00:04:53.800 --> 00:04:55.959
idea where to find it or how to contact this

91
00:04:56.040 --> 00:04:59.319
person anymore, and for a while, it was just gone.

92
00:04:59.720 --> 00:05:02.360
I never considered going to an unlocked service or anything

93
00:05:02.360 --> 00:05:05.720
like that. But his goal, which I learned later, was

94
00:05:05.759 --> 00:05:09.720
to just keep repeating that process. So he would hack

95
00:05:09.759 --> 00:05:11.800
accounts like he did with my friend, and then reach

96
00:05:11.839 --> 00:05:14.360
out to people who that person was friends with to

97
00:05:14.399 --> 00:05:18.240
try to hack other accounts, and eventually he was hoping

98
00:05:18.240 --> 00:05:20.279
that he would get someone that would pay him to

99
00:05:20.319 --> 00:05:23.600
give them their accounts back, or he would reach someone

100
00:05:23.639 --> 00:05:25.879
who had a large following that had monetized their posts

101
00:05:25.879 --> 00:05:27.000
and he could use the audience.

102
00:05:27.959 --> 00:05:30.560
And I think, looking back on it, it was easy

103
00:05:30.600 --> 00:05:33.079
for you, as someone who works in tech and is

104
00:05:33.160 --> 00:05:35.319
known among your friends, to be someone who's like an

105
00:05:35.319 --> 00:05:38.680
expert on some level in social media, and it stuff

106
00:05:38.759 --> 00:05:40.160
for someone to reach out to you and ask for

107
00:05:40.240 --> 00:05:42.959
help with unlocking their account that that was. That was

108
00:05:42.959 --> 00:05:44.199
not something really uncommon.

109
00:05:44.480 --> 00:05:47.560
No, it was really common actually that people ask me

110
00:05:47.600 --> 00:05:49.759
for help all the time. Yeah, and I felt so

111
00:05:50.040 --> 00:05:52.600
dumb when my account got hacked. I felt so dumb.

112
00:05:53.000 --> 00:05:54.879
But it happens, and it was someone that I knew,

113
00:05:55.279 --> 00:05:57.519
and I actually ended up reaching out to that person

114
00:05:57.560 --> 00:06:00.240
afterwards and they were like, yeah, that person's collecting my

115
00:06:01.000 --> 00:06:04.959
followers accounts. Now. I eventually did get the account back

116
00:06:04.959 --> 00:06:08.560
because I happened to know somebody who worked at Meta,

117
00:06:08.920 --> 00:06:11.839
and they walked down and spoke to a database administrator

118
00:06:11.839 --> 00:06:14.519
who could change the ownership back to me after I

119
00:06:14.600 --> 00:06:17.240
sent them proof that I was actually me and I

120
00:06:17.279 --> 00:06:19.920
was vouched for by this person who worked there. But

121
00:06:19.959 --> 00:06:21.879
that's really rare. You can't really depend on that. It's

122
00:06:21.879 --> 00:06:23.800
hard to get in touch with somebody who works at Meta,

123
00:06:23.920 --> 00:06:26.199
so you can't really depend on that at all. But

124
00:06:26.240 --> 00:06:28.720
that's the only really official way to get an account

125
00:06:28.759 --> 00:06:33.360
back like that. So these services that promise they can

126
00:06:33.399 --> 00:06:36.199
get your account back are called trappers, and like I said,

127
00:06:36.199 --> 00:06:38.480
I didn't work with one of them, but they're very

128
00:06:38.560 --> 00:06:41.560
common and they're always trying to gain access to accounts

129
00:06:41.560 --> 00:06:44.800
with large followings and I'm not anywhere near the level

130
00:06:44.839 --> 00:06:47.600
of someone who Cabo would have gone after. He's more

131
00:06:47.680 --> 00:06:51.439
after celebrity accounts things like that, But he went after

132
00:06:51.480 --> 00:06:54.560
people with large Instagram audience as a large incomes from

133
00:06:54.600 --> 00:06:57.279
their social accounts, people that it could afford to pay

134
00:06:57.360 --> 00:06:59.399
him his ransom to get their account back.

135
00:07:00.319 --> 00:07:04.000
So for people who are older or not tech savvy,

136
00:07:04.120 --> 00:07:07.800
and even small businesses depend on their online presence, losing

137
00:07:07.800 --> 00:07:11.600
their social media account can just be the beginning. In

138
00:07:11.680 --> 00:07:14.879
many cases, the trapper turns out to be the one

139
00:07:14.879 --> 00:07:17.160
who hacked the account in the first place, and then

140
00:07:17.199 --> 00:07:20.439
they're turning around and offering account recovery services to the

141
00:07:20.480 --> 00:07:24.759
people that they hacked. So Idris went even further. He

142
00:07:24.959 --> 00:07:29.399
offered a scam of ongoing account protection, which was just

143
00:07:29.480 --> 00:07:34.160
an ongoing monthly fee to maintain account access. The types

144
00:07:34.199 --> 00:07:38.040
of accounts that it just dealt with were companies like dispensaries,

145
00:07:38.160 --> 00:07:42.560
people allegedly involved in selling drugs, not just your average person,

146
00:07:42.600 --> 00:07:45.879
and he would charge insane amounts like seventy five hundred

147
00:07:45.879 --> 00:07:50.199
dollars for account recovery and even more for the ongoing protection,

148
00:07:50.600 --> 00:07:54.600
which sounds to me like something you'd hear about the

149
00:07:54.639 --> 00:07:57.120
mafia doing to small businesses.

150
00:07:57.160 --> 00:08:01.240
Absolutely and around the time of a between April and

151
00:08:01.319 --> 00:08:05.120
June of twenty twenty four, the FBI Las Vegas Violent

152
00:08:05.199 --> 00:08:09.680
Crimes Task Force was investigating multiple victim complaints about Idris

153
00:08:09.839 --> 00:08:11.519
or the person who would turn out to be Idris,

154
00:08:11.560 --> 00:08:13.680
because they didn't know who he was at the time.

155
00:08:14.399 --> 00:08:20.079
They collected digital evidence, text threads, telegram posts linking Kiaba

156
00:08:20.160 --> 00:08:24.639
to threats, extortion, and docksing across several states. And that

157
00:08:24.720 --> 00:08:28.720
part's in port for later. We know all this because thankfully,

158
00:08:28.759 --> 00:08:31.680
he was arrested on July twenty fifth, twenty twenty four,

159
00:08:31.800 --> 00:08:34.320
right here in Las Vegas by the FBI after a

160
00:08:34.360 --> 00:08:38.399
criminal complaint and arrest warrant were issued. That complaint, which

161
00:08:38.440 --> 00:08:42.279
surprisingly just contains two counts of interstate threats, was filed

162
00:08:42.279 --> 00:08:44.679
in the US District Court for the District of Nevada.

163
00:08:45.159 --> 00:08:47.600
From there, he was taken into custody by the US

164
00:08:47.600 --> 00:08:50.879
Marshals after a grand jury indicted him. And if you're

165
00:08:50.960 --> 00:08:55.120
wondering how investigators finally caught him, the answer is simple.

166
00:08:55.639 --> 00:08:59.720
He told on himself. So remember that interview we talked

167
00:08:59.720 --> 00:09:03.919
about earlier. He went on a podcast called No Jumper

168
00:09:04.080 --> 00:09:07.240
with Adam twenty two. If you're not familiar with No Jumper,

169
00:09:07.279 --> 00:09:09.759
it's a podcast and a YouTube channel based out of

170
00:09:09.960 --> 00:09:12.960
la hosted by Adam twenty two. Like I said, he's

171
00:09:12.960 --> 00:09:16.639
known for interviewing rappers, internet personalities, and people from the

172
00:09:16.639 --> 00:09:19.519
corners of social media most of us kind of only

173
00:09:19.519 --> 00:09:23.320
ever hear about, sometimes controversial and sometimes just being honest,

174
00:09:23.399 --> 00:09:26.440
just plain weird. This show is a huge following, mostly

175
00:09:26.480 --> 00:09:28.559
because the guests tend to say things that they probably

176
00:09:28.559 --> 00:09:32.039
shouldn't say on camera, and that's what happened here. Iris

177
00:09:32.080 --> 00:09:34.879
went on No Jumper and essentially walked everyone through how

178
00:09:34.919 --> 00:09:38.279
his whole operation worked. He bragged about the money he made,

179
00:09:38.440 --> 00:09:40.600
the people he controlled, and what he could do to

180
00:09:40.639 --> 00:09:44.799
their lives online. He talked about how he charged people

181
00:09:44.799 --> 00:09:48.600
to restore their accounts, how he charged them protection fees,

182
00:09:48.840 --> 00:09:51.480
how he ran a reseller and a mentor program to

183
00:09:51.519 --> 00:09:54.320
train others, and how to do this. You can listen

184
00:09:54.360 --> 00:09:56.720
to that whole interview and hear him spilling all of

185
00:09:56.720 --> 00:09:59.679
the beans, and we will link that podcast episode in

186
00:09:59.720 --> 00:10:02.600
the show notes. So I mean a huge shout out

187
00:10:02.600 --> 00:10:04.240
to Adam twenty two for what he does. In his

188
00:10:04.279 --> 00:10:07.440
interview with Kiaba, Kiaba brag that he was making six

189
00:10:07.519 --> 00:10:09.879
hundred and twenty thousand dollars a month from his schemes,

190
00:10:10.200 --> 00:10:13.919
which was essentially extorting money from Instagram and TikTok users.

191
00:10:14.320 --> 00:10:17.840
He also talked about dealing in what's called TLOs, which

192
00:10:17.879 --> 00:10:20.360
were crucial in how he would dox people online.

193
00:10:21.039 --> 00:10:23.519
Will you please explain what a TLO is because I'm

194
00:10:23.559 --> 00:10:25.200
still not even sure what it is.

195
00:10:25.519 --> 00:10:29.840
Yes, So, a TLO report is often called skip trace data.

196
00:10:30.559 --> 00:10:34.159
TLO comes from the name of the company that originated it.

197
00:10:34.159 --> 00:10:37.279
It's called the Last One TLO. The Last One. A

198
00:10:37.360 --> 00:10:42.279
data pioneer named Hank Asher started that company TLO, and

199
00:10:42.399 --> 00:10:47.000
he created a next generation data platform which contained billions

200
00:10:47.039 --> 00:10:52.399
of public and proprietary records. TransUnion, the Credit Union, bought

201
00:10:52.480 --> 00:10:56.440
that company in twenty thirteen after Asher died, and they

202
00:10:56.639 --> 00:11:01.559
kept and rebranded the platform to TLOX, which is now

203
00:11:02.320 --> 00:11:06.919
called TransUnion Locator Service Expert Platform. It's a skip tracing

204
00:11:06.919 --> 00:11:11.720
tool that's used by debt collectors, investigators, law enforcement to

205
00:11:11.960 --> 00:11:15.919
locate people and verify identities and family relationships. So if

206
00:11:15.960 --> 00:11:17.840
you ever get a call from a debt collector and

207
00:11:17.879 --> 00:11:20.240
wonder how they could possibly get to you through your family.

208
00:11:20.759 --> 00:11:24.879
This is probably how they use credit bureau information, addresses,

209
00:11:24.919 --> 00:11:27.960
phone numbers, and public data, and it's only supposed to

210
00:11:27.960 --> 00:11:31.080
be available to those with legitimate reasons for accessing it.

211
00:11:31.960 --> 00:11:36.639
Kiaba did not have authorized access. The FBI affidavit says

212
00:11:36.679 --> 00:11:39.360
that he had posted samples of what he called TLO

213
00:11:39.440 --> 00:11:42.440
files on the website. Agents compared all of that with

214
00:11:42.639 --> 00:11:46.080
law enforcement databases and confirm that that data was all real.

215
00:11:46.399 --> 00:11:48.279
That means that he either bought the reports on the

216
00:11:48.360 --> 00:11:52.000
dark web, received them from someone with legitimate access, or

217
00:11:52.200 --> 00:11:55.679
used someone's leaked credentials within those systems, and we don't

218
00:11:55.720 --> 00:11:59.440
know which. So what did he do with that data?

219
00:11:59.519 --> 00:12:02.799
He re sold it on his website as intel packages

220
00:12:02.919 --> 00:12:06.240
or intel drops to other trappers for them to use,

221
00:12:06.759 --> 00:12:09.240
and that helped him build his credibility and clout in

222
00:12:09.240 --> 00:12:12.679
those shady circles. He would also post or threaten to

223
00:12:12.679 --> 00:12:16.840
post his victim's private data like names, addresses, social security numbers,

224
00:12:17.279 --> 00:12:21.039
relatives information, either on the site or on his huge

225
00:12:21.120 --> 00:12:25.279
channel on Telegram, and he would use them to validate

226
00:12:25.320 --> 00:12:28.320
his threats. So he would send screenshots or PDFs to

227
00:12:28.360 --> 00:12:30.879
the information to prove to people that he knew where

228
00:12:30.879 --> 00:12:33.840
they lived or what their social Security number was before

229
00:12:33.879 --> 00:12:37.600
demanding money. He basically used the files as leverage, proof

230
00:12:37.639 --> 00:12:40.000
that he could find you or ruin you or whatever

231
00:12:40.000 --> 00:12:41.840
it was if you didn't pay him.

232
00:12:42.120 --> 00:12:44.320
So most people don't even know what a TLO is

233
00:12:44.480 --> 00:12:47.879
or that it even exists. But this definitely blurs the

234
00:12:47.919 --> 00:12:52.360
line between losing an online account and perhaps being afraid

235
00:12:52.399 --> 00:12:53.080
for your life.

236
00:12:53.240 --> 00:12:57.159
Absolutely, he was engaged in cyberstocking, and I had no

237
00:12:57.240 --> 00:12:59.840
idea what a TLO was before I started doing this research.

238
00:12:59.840 --> 00:13:02.639
So it's really likely that most people have no idea

239
00:13:02.679 --> 00:13:04.559
what that is or even that it exists.

240
00:13:04.639 --> 00:13:08.080
Like you said, the criminal complaint had some examples of

241
00:13:08.080 --> 00:13:11.240
what he did to his victims, including screenshots of the

242
00:13:11.279 --> 00:13:14.799
text messages. All of his victims were only identified in

243
00:13:14.799 --> 00:13:18.240
the criminal complaint using their initials, and will only mention

244
00:13:18.440 --> 00:13:21.279
their initials here to protect their privacy as well. So

245
00:13:21.360 --> 00:13:24.279
here are a couple of examples from the criminal complaint.

246
00:13:25.120 --> 00:13:28.399
JT was a well known social media influencer who ran

247
00:13:28.519 --> 00:13:33.600
pages like Cali Plug and the Blacklist. Xyz Kiaba initially

248
00:13:33.639 --> 00:13:36.720
offered to sell him a username for around five thousand

249
00:13:36.720 --> 00:13:39.960
dollars when JT turned him down because of the price.

250
00:13:40.639 --> 00:13:44.440
JT's Instagram account was suddenly disabled and Kiaba demanded ten

251
00:13:44.480 --> 00:13:48.840
thousand dollars to restore it. JT eventually paid eighty five

252
00:13:48.919 --> 00:13:51.879
hundred dollars in cash to get the account back, but

253
00:13:51.960 --> 00:13:56.279
he still continued to be threatened. At a businessman from

254
00:13:56.360 --> 00:13:59.600
San Diego, paid Kiaba twenty five thousand dollars for the

255
00:13:59.679 --> 00:14:04.039
rights to the username at Ace, but never got it.

256
00:14:04.440 --> 00:14:08.200
When at tried to get his money back, Kiaba demanded

257
00:14:08.240 --> 00:14:12.080
one hundred thousand dollars instead, and the messages that followed

258
00:14:12.159 --> 00:14:16.799
included direct threats to eighty's daughter and other family members,

259
00:14:17.320 --> 00:14:22.240
and one final example, EH, a journalist and comedian, contacted

260
00:14:22.320 --> 00:14:25.960
Kiaba about her blocked Instagram and then was spammed with

261
00:14:26.000 --> 00:14:30.399
more than two thousand SMS messages. Kiaba told her that

262
00:14:30.480 --> 00:14:33.279
he had her solid security number and he would blast

263
00:14:33.320 --> 00:14:36.840
it out, demanding twenty thousand dollars to stop the attacks.

264
00:14:37.360 --> 00:14:40.279
As we said, Kiabo was tried in the district court

265
00:14:40.360 --> 00:14:43.039
here in Nevada. There really wasn't a trial because he

266
00:14:43.120 --> 00:14:46.840
pleaded guilty to two felony accounts of interstate threats, one

267
00:14:47.000 --> 00:14:50.720
for a Beverly Hills dentist he terrorized with hundreds of texts,

268
00:14:51.000 --> 00:14:53.960
and another for a Las Vegas landlord and realtor that

269
00:14:54.000 --> 00:14:57.840
he harassed after a rental dispute. Both involved threats that

270
00:14:57.919 --> 00:15:01.519
crossed interstate lines, which made them both federal crimes. Note

271
00:15:01.559 --> 00:15:04.399
that there were other victims that we didn't mention in

272
00:15:04.440 --> 00:15:07.320
the list, but the government pursued those that they had

273
00:15:07.360 --> 00:15:10.200
the most evidence for and reference to the other ones

274
00:15:10.279 --> 00:15:12.879
in the long list of victims to help show intent

275
00:15:13.000 --> 00:15:15.919
and build the case. He was sentenced to thirty six

276
00:15:15.960 --> 00:15:20.840
months in federal prison at Victorville Federal Correctional Institution, a

277
00:15:20.879 --> 00:15:24.960
medium security facility in Atlanto, California, and he will be

278
00:15:25.000 --> 00:15:29.519
released on February fourteenth, twenty twenty seven, and he will

279
00:15:29.519 --> 00:15:32.879
be around thirty one years old. He also had to

280
00:15:32.879 --> 00:15:35.759
pay a fine of seventy five thousand dollars and pay

281
00:15:35.799 --> 00:15:39.440
two hundred thousand dollars in restitution. We'll talk more about

282
00:15:39.480 --> 00:15:42.320
that in our Swing Shift overtime episode. But for a

283
00:15:42.320 --> 00:15:45.440
person who's pulling down six hundred and twenty thousand dollars

284
00:15:45.480 --> 00:15:48.559
a month in income from this work, it seems really light.

285
00:15:48.799 --> 00:15:50.799
So if you want to hear that discussion, head over

286
00:15:50.840 --> 00:15:54.000
to sincepod dot com. Slash subscribe and you can listen

287
00:15:54.000 --> 00:15:56.960
to that. The case here itself is interesting, but in

288
00:15:57.000 --> 00:15:59.679
reality our goal is to help people, and in this case,

289
00:16:00.200 --> 00:16:02.519
to talk through how this can affect you potentially and

290
00:16:02.559 --> 00:16:05.519
how you can protect yourself. There are a few simple

291
00:16:05.519 --> 00:16:07.799
things you can do to make yourself a harder target.

292
00:16:08.120 --> 00:16:09.759
First up, though, I want to remind you how you

293
00:16:09.840 --> 00:16:13.639
might be targeted by unscrupulous people online. You might be

294
00:16:13.720 --> 00:16:17.240
targeted by an account recovery or unlock scam, with people

295
00:16:17.279 --> 00:16:20.519
claiming that they can restore or somehow verify your social

296
00:16:20.519 --> 00:16:23.279
media accounts, and oftentimes it's going to be the same

297
00:16:23.320 --> 00:16:26.440
person who may or may not have attacked your account

298
00:16:26.480 --> 00:16:29.320
in the first place. You might be the victim of

299
00:16:29.519 --> 00:16:34.000
phishing or spear phishing or smishing. So those are fake

300
00:16:34.080 --> 00:16:37.000
emails or text messages that look like they're from banks

301
00:16:37.399 --> 00:16:42.720
or meta or the State of California Department of Transportation

302
00:16:42.879 --> 00:16:45.960
asking you to pay your moving violation or something like that.

303
00:16:46.320 --> 00:16:49.000
For example, I saw one recently from the California Toll

304
00:16:49.080 --> 00:16:52.720
road payments system. Allegedly it was a scam text that

305
00:16:52.919 --> 00:16:56.480
sends a link that steals credit card information. There's also

306
00:16:56.919 --> 00:17:00.200
social engineering DMS that's the one that got me. A

307
00:17:00.200 --> 00:17:03.159
friend of yours asks for help resetting their account, you

308
00:17:03.240 --> 00:17:06.400
click the link and you lose your account. There's also

309
00:17:06.799 --> 00:17:10.640
the family emergency or imposter call scam, where a scammer

310
00:17:10.720 --> 00:17:12.799
might call you and claim that a relative has been

311
00:17:12.880 --> 00:17:16.319
hurt or has been arrested, or owes money, or perhaps

312
00:17:16.400 --> 00:17:18.960
hit somebody with a car or something like that, and

313
00:17:19.039 --> 00:17:21.799
they will push you for payment in the form of

314
00:17:22.400 --> 00:17:25.640
a credit card payment or something like that. Sometimes they

315
00:17:25.640 --> 00:17:28.799
will even use AI cloned voices for that, so be

316
00:17:29.000 --> 00:17:32.440
aware of that. And then of course there's doxing and

317
00:17:32.519 --> 00:17:36.519
data abuse. Criminals can get personal data from leaks or

318
00:17:36.640 --> 00:17:41.440
skip trace databases like the TXP files that Kiaba used

319
00:17:41.759 --> 00:17:45.000
and use it to intimidate or extort. So how can

320
00:17:45.039 --> 00:17:47.799
you protect yourself? What I always tell people is never

321
00:17:47.839 --> 00:17:50.200
immediately click a link in an email or a text,

322
00:17:50.480 --> 00:17:52.680
even if they look real, unless you're one hundred percent

323
00:17:52.720 --> 00:17:55.440
what the source is. You have to look at the

324
00:17:55.519 --> 00:17:58.519
return address and hover over the link to make sure

325
00:17:58.559 --> 00:18:00.000
that the link is going where you think it is.

326
00:18:00.799 --> 00:18:03.000
But instead, to be safe, what you can do is

327
00:18:03.119 --> 00:18:05.240
just open a new browser window and type in the

328
00:18:05.279 --> 00:18:07.880
site directly. So, for example, if you get an email

329
00:18:08.079 --> 00:18:10.519
you're not sure it's real from Capital One, you can

330
00:18:10.599 --> 00:18:12.400
just open up a new browser window and go to

331
00:18:12.440 --> 00:18:15.799
Capital one dot com yourself and log in and see

332
00:18:15.799 --> 00:18:17.680
if it's real, or you can call Capital one and

333
00:18:17.720 --> 00:18:21.079
find out if it's real. That applies to text messages too.

334
00:18:21.640 --> 00:18:23.960
I very rarely click on a link that I get

335
00:18:24.000 --> 00:18:27.279
in a text message. Another best practice is to get

336
00:18:27.279 --> 00:18:31.759
yourself an authenticator app like Google Authenticator or Athy rather

337
00:18:31.799 --> 00:18:35.400
than using text message codes, because if someone steals your password,

338
00:18:35.440 --> 00:18:38.759
they can't access your account without that code. They could

339
00:18:38.839 --> 00:18:43.079
potentially clone your cell phone though, and get those codes

340
00:18:43.119 --> 00:18:46.759
for you. If you're using just text message validation, it's

341
00:18:46.799 --> 00:18:49.559
always important to use complex passwords that are at least

342
00:18:49.599 --> 00:18:53.119
twelve characters long, mixing upper lower case numbers and symbols,

343
00:18:53.480 --> 00:18:56.200
and change them frequently, and you can use a password

344
00:18:56.240 --> 00:18:59.920
manager like one password or bitwarden to keep them secure

345
00:19:00.119 --> 00:19:03.440
and unique. If you're looking to recover your account, that

346
00:19:03.559 --> 00:19:06.319
recovery is only going to happen through the official channels.

347
00:19:06.359 --> 00:19:08.960
So if it's a Facebook account or an Instagram account,

348
00:19:09.000 --> 00:19:12.839
that's only going to happen through meta. So HELPEDDI. Instagram

349
00:19:12.920 --> 00:19:15.880
dot com, Facebook dot com slash hacked, and they have

350
00:19:15.920 --> 00:19:19.119
pretty good tools for that. These days, no legitimate Meta

351
00:19:19.160 --> 00:19:22.079
employee will DM you to fix your account, and no

352
00:19:22.160 --> 00:19:25.359
one can verify you for a fee. We also recommend

353
00:19:25.359 --> 00:19:28.799
that you lock down your personal data, so we, for example,

354
00:19:28.839 --> 00:19:31.519
have all of our credit bureaus frozen so you can

355
00:19:31.559 --> 00:19:34.880
log into Experience, TransUnion and Equal Facts recommend you have

356
00:19:34.920 --> 00:19:37.440
an account with all of them, and if you freeze

357
00:19:37.440 --> 00:19:41.200
your account, it's free, reversible, and it stops new accounts

358
00:19:41.200 --> 00:19:44.400
from being opened in your name. We also use a

359
00:19:44.519 --> 00:19:47.759
data removal service called Incogni, but you can use delete

360
00:19:47.759 --> 00:19:51.079
me or any other data removal service that is reputable

361
00:19:51.440 --> 00:19:55.880
to reduce what data is available on public information sites

362
00:19:55.920 --> 00:20:00.440
like Peoplefinder and other broker sites. But essentially, just remember

363
00:20:00.440 --> 00:20:02.440
that if you're targeted by this sort of a scam,

364
00:20:02.519 --> 00:20:05.400
that fear and urgency are your red flags and they're

365
00:20:05.400 --> 00:20:08.279
your enemy. You have to slow down, confirm all the details,

366
00:20:08.319 --> 00:20:12.039
and verify through some other channel before acting. If you

367
00:20:12.160 --> 00:20:14.839
are targeted by a scam like this, make sure you

368
00:20:14.880 --> 00:20:18.640
don't just delete everything. Take screenshots of texts and URLs

369
00:20:18.960 --> 00:20:23.039
before deleting or blocking people, and report to the authorities

370
00:20:23.079 --> 00:20:27.000
You can report to the FBI's Internet Crime Complaint Center

371
00:20:27.039 --> 00:20:30.960
at IC three dot gov. And for imposter or family

372
00:20:31.000 --> 00:20:34.920
emergency scams, you can report to Report Fraud dot FDC

373
00:20:35.000 --> 00:20:39.279
dot gov. And you can forward spam texts to seven

374
00:20:39.359 --> 00:20:42.960
seven two six Spam or just report them to your carrier.

375
00:20:44.359 --> 00:20:48.240
And remember, don't pay or negotiate. Extortionists are rarely going

376
00:20:48.319 --> 00:20:51.279
to stop coming after you for money after just one payment.

377
00:20:51.480 --> 00:20:53.720
And it's important that you mentioned if your credit is

378
00:20:53.799 --> 00:20:56.440
locked and someone claims they have your social number and

379
00:20:56.480 --> 00:20:58.799
they're going to make it public if your credit's locked,

380
00:20:58.839 --> 00:21:00.480
is that something that would scare you to make you

381
00:21:00.559 --> 00:21:04.240
pay urgently If you already know your credit is protected.

382
00:21:04.000 --> 00:21:06.400
You should never pay urgently. If someone tells you they

383
00:21:06.400 --> 00:21:09.240
have your social Security number, you should report that to

384
00:21:09.279 --> 00:21:12.519
the authorities. But yes, they can't open a new account

385
00:21:12.559 --> 00:21:15.200
and your name if all of your credit is frozen, absolutely,

386
00:21:15.319 --> 00:21:18.720
so you shouldn't act rashally if that happens. All these

387
00:21:18.720 --> 00:21:21.720
scams rely on all that urgency and fear and panic,

388
00:21:22.039 --> 00:21:24.519
so you just have to slow down, verify, and you're

389
00:21:24.559 --> 00:21:27.400
basically going to take away their power. Remember to think

390
00:21:27.440 --> 00:21:29.200
of your online accounts like you think of your home

391
00:21:29.480 --> 00:21:32.039
lock the doors, know who you let in, and don't

392
00:21:32.079 --> 00:21:35.559
trust strangers with the spare key. Remember to harden the target.

393
00:21:35.720 --> 00:21:38.359
If you're a hard target, most attackers will move on

394
00:21:38.440 --> 00:21:39.279
to someone easier.

395
00:21:39.720 --> 00:21:41.559
Those are really good tips show on this really helpful.

396
00:21:41.839 --> 00:21:45.519
And even though Kiaba is locked up, we know that

397
00:21:46.079 --> 00:21:48.319
him just talking on that podcast probably educated a lot

398
00:21:48.400 --> 00:21:51.119
more people about how they could run scams like this.

399
00:21:51.240 --> 00:21:54.200
And there are so many bad actors out there.

400
00:21:54.839 --> 00:21:56.359
And it's not clear to me how many people he

401
00:21:56.440 --> 00:21:58.880
got that information out to, because he was selling those

402
00:21:58.960 --> 00:22:02.480
tlo he drops to other trappers. So I always be

403
00:22:02.519 --> 00:22:03.039
aware of that.

404
00:22:03.480 --> 00:22:05.759
Yeah, And I had never thought that before that there

405
00:22:05.759 --> 00:22:09.680
were folks that would steal your account simply for simply

406
00:22:09.720 --> 00:22:11.720
so they could make you pay so you could get

407
00:22:11.759 --> 00:22:15.039
it back, and that there's a whole industry of that

408
00:22:15.119 --> 00:22:18.000
kind of account stealing out there. I hadn't thought about

409
00:22:18.000 --> 00:22:21.079
that before we started talking about this case. Before we

410
00:22:21.119 --> 00:22:23.559
conclude this episode, we're going to talk about missing person

411
00:22:23.799 --> 00:22:28.279
Daniel Reza. This year. As we mentioned in previous episodes,

412
00:22:28.319 --> 00:22:30.920
we're going to cover a missing person's case on every

413
00:22:30.960 --> 00:22:33.440
one of our episodes this season and probably throughout this

414
00:22:33.519 --> 00:22:37.039
whole year. The LAS Vegas Metro Police earlier this year

415
00:22:37.039 --> 00:22:40.319
published a missing person's cold case website, and we want

416
00:22:40.359 --> 00:22:43.039
to continue to highlight people on this list and hope

417
00:22:43.079 --> 00:22:46.160
that someone can come forward with the lead or any

418
00:22:46.200 --> 00:22:50.160
information to help these families. Daniel Reza has been missing

419
00:22:50.200 --> 00:22:54.559
since August twenty fifth, twenty nineteen, so just over six years.

420
00:22:54.839 --> 00:22:57.400
He was thirty five years old when he was last seen.

421
00:22:57.799 --> 00:23:01.519
Today he would be forty one. Names are Fernando and Ida,

422
00:23:02.079 --> 00:23:04.240
and they were first alerted that Daniel was missing by

423
00:23:04.279 --> 00:23:07.359
his roommate, who told Fernando that Daniel had been missing

424
00:23:07.440 --> 00:23:11.240
for about two days. It was reported that he was

425
00:23:11.319 --> 00:23:13.920
last seen in the area of Warm Springs, Indicatur, which

426
00:23:13.920 --> 00:23:16.880
would be the southwest part of town, but according to

427
00:23:17.119 --> 00:23:19.680
Red Rock Search and Rescue, he was actually last seen

428
00:23:19.759 --> 00:23:23.480
on a trail at Mount Charleston. They have said that

429
00:23:23.559 --> 00:23:26.559
he was spotted on several trails during that week, which

430
00:23:26.640 --> 00:23:29.079
was the week leading up to Labor Day that year,

431
00:23:29.759 --> 00:23:32.920
and his car was located at the Cathedral Trail trail

432
00:23:32.960 --> 00:23:36.720
head on Mount Charleston, but Daniel never returned to it.

433
00:23:37.640 --> 00:23:40.200
Red Rock Search and Rescue and the Las Vegas Metro

434
00:23:40.240 --> 00:23:43.799
Police searched for him along with the Air Force's thirty

435
00:23:43.839 --> 00:23:47.440
fourth Weapons Squadron, which is based at Nellis Air Force Base,

436
00:23:48.000 --> 00:23:52.000
along with multiple hikers and folks on ATVs. They used

437
00:23:52.000 --> 00:23:55.920
helicopters to try and find him, but unfortunately. The Families

438
00:23:55.920 --> 00:23:59.000
Go Fundme explained that search and rescue efforts were called

439
00:23:59.039 --> 00:24:02.680
off after officials felt they had exhausted all measures available,

440
00:24:03.000 --> 00:24:07.079
which was approximately a week after he went missing. Rez

441
00:24:07.200 --> 00:24:10.279
is described as being a fair skinned, Hispanic mail five

442
00:24:10.319 --> 00:24:13.240
foot ten, one hundred and eighty five pounds, with brown

443
00:24:13.240 --> 00:24:16.000
eyes and brown or black hair, and you can see

444
00:24:16.000 --> 00:24:18.799
photos of him on our social media this week. On

445
00:24:18.839 --> 00:24:21.960
the day he disappeared, he was possibly wearing a long

446
00:24:22.039 --> 00:24:25.480
sleeved blue shirt and blue jeans. Red Rock Search and

447
00:24:25.519 --> 00:24:30.200
Rescue posted photos of the gear Daniel was using or wearing,

448
00:24:30.640 --> 00:24:36.000
including a blue backpack of wooden hiking stick, a tan

449
00:24:36.240 --> 00:24:39.359
sun hat with a colorful logo of mountains that says

450
00:24:39.680 --> 00:24:43.400
Spring Valley, and a black hooded jacket. He was also

451
00:24:43.880 --> 00:24:48.240
known to be carrying a blue battery operated lantern. If

452
00:24:48.279 --> 00:24:52.000
you have any information about Daniel, please contact the LVMPD

453
00:24:52.519 --> 00:24:57.759
at Missing Persons at lvmpd dot com. Thank you for

454
00:24:57.880 --> 00:25:01.440
listening as always and supporting the show. We really appreciate it,

455
00:25:01.920 --> 00:25:05.759
and we remind you that what happens here happens everywhere.

456
00:25:25.759 --> 00:25:29.920
Thanks for listening. Visit sinspod dot co, slash subscribe for

457
00:25:30.039 --> 00:25:34.200
exclusive bonus content and to listen ad free. Remember to

458
00:25:34.440 --> 00:25:38.119
like and follow us on Instagram, Facebook, TikTok, and threads

459
00:25:38.200 --> 00:25:41.799
at Sins and Survivors. If you're enjoying the podcast, please

460
00:25:41.880 --> 00:25:44.640
leave us a review on your podcast platform of choice.

461
00:25:44.799 --> 00:25:47.680
You can contact us at questions at Sins and Survivors

462
00:25:47.720 --> 00:25:48.839
dot com.

463
00:25:49.079 --> 00:25:51.359
If you are someone you know as affected by domestic

464
00:25:51.440 --> 00:25:54.720
violence or needs support, please reach out to local resources

465
00:25:54.799 --> 00:25:57.720
or the National Domestic Violence Hotline. A list of resources

466
00:25:57.759 --> 00:26:01.599
is available on our website, Sins and survi com. Sins

467
00:26:01.680 --> 00:26:05.079
and Survivors, a Las Vegas true crime podcast, is research, written,

468
00:26:05.160 --> 00:26:08.319
and produced by your hosts Sean and John. The information

469
00:26:08.400 --> 00:26:10.920
shared in this podcast is accurate at the time of recording.

470
00:26:11.359 --> 00:26:14.359
If you have questions, concerns, or corrections, please email us.

471
00:26:14.440 --> 00:26:16.839
Links to source material for this episode can be found

472
00:26:16.880 --> 00:26:20.200
on our website Sinsensurvivors dot com.

473
00:26:20.720 --> 00:26:23.680
The views and opinions expressed in this podcast are solely

474
00:26:23.799 --> 00:26:28.079
those of the podcast creators. Hosts and their guests. All

475
00:26:28.079 --> 00:26:32.039
individuals are innocent until proven guilty. This content does not

476
00:26:32.160 --> 00:26:36.240
constitute legal advice. Listeners are encouraged to consult with legal

477
00:26:36.240 --> 00:26:37.400
professionals for guidance.