Authorities in the Netherlands have arrested a 24-year-old believed to be a developer of phishing frameworks for a cybercrime ring named “Fraud Family.”
According to the Dutch National Police, the man worked together with a 15-year-old accomplice to develop and sell phishing panels that allowed cybercriminals to steal banking credentials from unsuspecting users.
According to threat intelligence company Group-IB, which helped the investigation, Fraud Family is a Dutch-speaking crime syndicate that builds, sells, and rents sophisticated phishing frameworks.
Impersonating legitimate financial organizations, the attackers typically approach victims via email, SMS, or WhatsApp messages, and trick them into clicking on malicious links that take them to phishing websites where they are prompted to share their login credentials.
The cybercriminals behind this Fraud-as-a-Service operation would provide other threat actors with phishing kits and web panels targeting bank users, mainly in the Netherlands and Belgium. The frameworks allow adversaries to interact with the phishing site in real time and also include data collection and management capabilities.
Fraud Family members used Telegram channels to advertise their services, including phishing tools and ready-to-use infrastructure. Prices ranged from €200 to €250 (approximately $235 to $295) per month, per panel.
According to Group-IB, the gang operated at least eight Telegram channels that had a total of roughly 2,000 subscribers. Half of these users could be actual buyers, the security firm says.
Dutch authorities announced that, while the 24-year-old remains in custody, the 15-year-old was released, pending further investigation. A third individual, 18 years of age, had their residence searched this week in relation to the investigation.
Related: Nigerian Arrested in US for Hacking Payroll Services Company
Related: Kenyan Arrested in Qatar First Targeted by Phishing Attack
Related: Police in Europe Bust Gang Hijacking Celeb Phones, Arrest 10
More from Ionut Arghire
- Critical Vulnerability Impacts Over 120 Lexmark Printers
- BIND Updates Patch High-Severity, Remotely Exploitable DoS Flaws
- Microsoft Urges Customers to Patch Exchange Servers
- Iranian APT Leaks Data From Saudi Arabia Government Under New Persona
- 820k Impacted by Data Breach at Zacks Investment Research
- US Government Agencies Warn of Malicious Use of Remote Management Software
- Chinese Hackers Adopting Open Source ‘SparkRAT’ Tool
- CISA Provides Resources for Securing K-12 Education System
Latest News
- Critical Vulnerability Impacts Over 120 Lexmark Printers
- BIND Updates Patch High-Severity, Remotely Exploitable DoS Flaws
- Industry Reactions to Hive Ransomware Takedown: Feedback Friday
- Microsoft Urges Customers to Patch Exchange Servers
- Iranian APT Leaks Data From Saudi Arabia Government Under New Persona
- US Reiterates $10 Million Reward Offer After Disruption of Hive Ransomware
- Cyberattacks Target Websites of German Airports, Admin
- US Infiltrates Big Ransomware Gang: ‘We Hacked the Hackers’
