Coordinated Takedown of Outsider Enterprise
In a significant blow to cybercrime, the FBI, alongside Google and Black Lotus Labs, has dismantled a sophisticated phishing-as-a-service operation known as Outsider Enterprise. This China-based network utilized artificial intelligence to create thousands of fake websites and over one million fraudulent URLs, impersonating well-known brands to steal credit card details and passwords. The operation, active since at least 2023, distributed phishing kits through text messages across major carriers like AT&T, T-Mobile, and Verizon, leading to the theft of an estimated 3.8 million credit card records and causing nearly $1.9 billion in losses.
Legal and Technical Actions Under Operation Riptide
The takedown, part of the FBI’s Operation Riptide, involved seizing administration servers, a Shopify storefront, and a Telegram bot containing customer data. Authorities also confiscated approximately $100,000 in USDT from the operation’s payment wallets. Thousands of phishing domains now redirect to an FBI warning page. Google, which filed a civil lawsuit targeting the infrastructure, worked with telecom providers to block fraudulent messages before they reach subscribers. Over a two-week period in May, Google detected 2.5 million SMS messages sent to Android users, with 55,000 flagged as fraudulent by victims.
