Chinese cybercrime operation that used AI to scam âhundreds of thousands of victimsâ sued by Google
Google is suing to dismantle the infrastructure behind an alleged massive AI-powered cybercrime operation. On Friday, the tech giant announced a lawsuit against an alleged
Google is suing to dismantle the infrastructure behind an alleged massive AI-powered cybercrime operation. On Friday, the tech giant announced a lawsuit against an alleged Chinese cybercrime network called Outsider Enterprise, which Google says uses AI in its campaigns to send scam text messages impersonating Google and other brands to steal passwords and credit card numbers. Outsider Enterprise has financially scammed âhundreds of thousands of victimsâ with losses âestimated in the millions.â The group deployed 9,000 fake websites, one million fraudulent web domains, and 2.5 million texts sent to Android users in a two-week period, according to Google. The company said, â55,000 spam texts were flagged by Android users in just two weeks this past May â thatâs more than two text spam complaints a minute.â Google said it uses âAI-powered tools to fight AI-powered scams,â which enable the company to detect scams and alert users of suspicious calls and text messages, leading to the interception of more than 10 billion scam messages a month. The company said it has been collaborating with AT&T, T-Mobile, and Verizon to block the scam text messages, and said it is coordinating with the FBI. An FBI spokesperson told TechCrunch that the bureau, in coordination with Google and Lumenâs Black Lotus Labs, seized several domains used by the cybercriminals, as well as Shopify storefronts and accounts used to test the operationâs phishing service.
The spokesperson said that since July 2023, Outsider Enterpriseâs phishing platform enabled cybercriminals to steal âat least an estimated 3,870,000 stolen credit cards and a corresponding estimated $1.9B in losses.â Inside Outsider Enterprise In its complaint filed as part of the lawsuit, Google laid out the evidence it gathered against people involved in the Outsider Enterprise operations, whom the company said are foreign-based cybercriminals whose real identities are unknown. This group âbuilt, maintains, and uses a turn-key, online software suite that enables criminals, regardless of technical skill, to publish fraudulent websites designed to rob victims and enrich themselves,â according to the complaint. Google said this âphishing-for-dummiesâ software called Outsider, which costs $88 per week or $200 per month, allows operators to create fake websites with the help of AI platforms, including Googleâs own Gemini. The fake sites impersonate several services and companies, such as telecom providers, financial institutions, government agencies, and retailers. To lure people to the fake websites, the cybercriminals collaborate with one another to send victims malicious text messages, or purchase. The common goal is to steal passwords and corresponding multi-factor codes as well as financial information, which the scammers can do by receiving the data that victims input into the fake websites, with the information being transmitted through Outsiderâs platform in real-time.
The BriefWire