level: technical
google is suing a cybercrime network called outsider enterprise, which it says used ai to send scam text messages impersonating google and other brands. the group allegedly stole passwords and credit card numbers from hundreds of thousands of victims, causing millions in losses. google reported that the operation deployed 9,000 fake websites, one million fraudulent domains, and sent 2.5 million texts to android users in just two weeks.
the group sold a phishing software suite called outsider for $88 per week, allowing even unskilled criminals to create fake websites using ai platforms like google's gemini. the software offered over 290 pre-built templates mimicking real sites and included guides on weaponizing ai-generated code. cybercriminals used telegram to collaborate, share strategies, and monetize stolen data, with the platform enabling real-time capture of victim credentials.
google collaborated with at&t, t-mobile, verizon, and the fbi to disrupt the operation. the fbi seized domains and shopify storefronts linked to the group, which since july 2023 allegedly stole an estimated 3.87 million credit cards, leading to $1.9 billion in losses. google is seeking damages and a court order to stop the criminals, highlighting the growing threat of ai-driven phishing at scale.
why it matters: this case shows how ai lowers the barrier for large-scale phishing, making it critical for data science and security teams to develop ai-based defenses against automated fraud.