"Google has filed a civil lawsuit in the U.S. District Court for the Southern District of New York (SDNY) against China-based hackers who are behind a massive Phishing-as-a-Service (PhaaS) platform called Lighthouse that has ensnared over 1 million users across 120 countries. The PhaaS kit is used to conduct large-scale SMS phishing attacks that exploit trusted brands like E-ZPass and USPS to steal people's financial information by prompting them to click on a link using lures related to fake toll fees or package deliveries."
""They exploit the reputations of Google and other brands by illegally displaying our trademarks and services on fraudulent websites," Halimah DeLaine Prado, General Counsel at Google, said. "We found at least 107 website templates featuring Google's branding on sign-in screens specifically designed to trick people into believing the sites are legitimate." The company said it's taking legal action to dismantle the underlying infrastructure under the Racketeer Influenced and Corrupt Organizations (RICO) Act, the Lanham Act, and the Computer Fraud and Abuse Act."
Google filed a civil lawsuit in the Southern District of New York against operators of Lighthouse, a China-based Phishing-as-a-Service platform. Lighthouse facilitated large-scale SMS phishing attacks that impersonated trusted brands like E-ZPass and USPS to trick recipients into clicking malicious links and surrendering financial and payment information. The operation targeted over one million users across 120 countries and reportedly generated over $1 billion in three years. Google seeks to dismantle the platform’s infrastructure using RICO, the Lanham Act, and the Computer Fraud and Abuse Act. Lighthouse is linked to a broader ecosystem including Darcula, Lucid, and the Smishing Triad.
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]