BleepingComputer reports that the Europol, in coordination with the Belgian and Dutch Police, has successfully disrupted a phishing group behind the theft of several millions of euros following the arrests of nine suspects in the Netherlands, from whom cash, cryptocurrency, electronic devices, jewelry, and firearms and ammunition have been seized.
Banking credentials exfiltrated from widespread email and mobile phishing campaigns have been leveraged by the phishing group in its operations, according to Europol.
"These messages were sent by the members of the gang and contained a phishing link leading to a bogus banking website. Thinking they were viewing their own bank accounts through this website, the victims were duped into providing their banking credentials to the suspects," Europol said.
The takedown comes weeks after Europol dismantled FluBot malware operations and two months after it had announced having seized the RaidForums hacking forum as part of Operation TOURNIQUET, which also led to the arrest of its founder and administrator.
Sixty thousand emails from U.S. State Department accounts were noted by a staffer working for Sen. Eric Schmitt, R-Mo., to have been exfiltrated by Chinese threat actors during the widespread compromise of Microsoft email accounts that commenced in May, according to Reuters.
Threat actors have leveraged the ZeroFont phishing attack technique, which initially involved the insertion of hidden characters or words in emails to evade security detection systems, to modify message previews as shown on Microsoft Outlook and other email clients, BleepingComputer reports.
BleepingComputer reports that individuals who have filed claims against bankrupt cryptocurrency lender Celsius have been subjected to phishing attacks involving the impersonation of the lender's claims agent, Stretto.
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news