British Hackers Convicted For Stealing £10m

Ten people have been convicted for their roles in a large-scale “diversion fraud” scam using hacking software following a six-month trial, and sentenced at Blackfriars Crown Court on  2 May. Detectives identified a total of 228 separate frauds committed by the same network between 2014 to 2018, and totalling £10,112,312.54.

A total of 69 victims provided evidence during the trial. Many of them have been unable to recover their losses. Several victims were traced with the help of the National Fraud Intelligence Bureau whose Action Fraud service allows both domestic and overseas victims to report fraud online.

The gang used computer malware to intercept and steal the log-in details of email accounts belonging to businesses and private individuals worldwide, with the intent of identifying high-value financial transactions. They then intercepted emails about these transactions and sent spoof emails, duping the victims into paying the funds into alternative UK-based “mule” bank accounts, accounts obtained and controlled by the fraudsters for this purpose, instead of the intended recipient.

A total of 165 “mule” accounts, opened with fake identification documents or bought from unscrupulous account holders, were identified by detectives. They were used to receive the proceeds of the diversion fraud, where the money was quickly transferred onto other accounts, some of which were untraceable.

The fraudsters also used the funds from mule accounts to buy and export thousands of pounds of baby milk to Nigeria, to launder the money. One of the fraud victims was a small construction company with a small team of employees based in the south west of England. It was defrauded out of nearly £13,000 by the group in 2017 and had to close as a result.

Officers will now begin confiscation proceedings under the Proceeds of Crime Act to try and recover the money stolen.
DC Chris Collins of the Falcon Fraud Squad said: “This gang of fraudsters were unscrupulous, organised and prolific, and over a period of four years stole millions of pounds from unsuspecting businesses and individuals, and lived an extremely comfortable life with the profits.

 “The frauds were brazen, and this gang clearly thought they could continue with their criminal lifestyle without detection. However, arrests followed what was a complex investigation carried out diligently by the Met’s Falcon Fraud Squad, with hundreds of fraud reports being reviewed by detectives trawling through financial records.

 “The evidence amassed by detectives and presented during the trial pointed towards a large-scale, planned fraud operation which involved payments arranged between two parties being successfully intercepted and diverted by this gang, into “mule” accounts set up for the purpose of receiving stolen funds.

 “I hope this conviction sends a strong message to online fraudsters: we have the ways and means of tracing you and we will seek to bring you to justice. 

“We would advise anyone conducting financial business by email to verify the bank account they are sending their money to, by contacting the intended recipient and taking precautions to ensure the money is going to the right place.”

As a result of the reports made to Action Fraud, the Falcon Unit has been able to achieve justice for the hundreds of victims affected by these substantial crimes.

Action Fraud

You Might Also Read:

Five Arrested In UK Cybercrime Raids:

 

 

 

« G7 To Simulate Cross-Border Cyber Attack
Snowden Accuses CIA Of 'A PR Fix' »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Navista

Navista

Navista's hardware and software modules are especially designed to ease the deployment of secure networks.

Organization for Security and Co-operation in Europe (OSCE)

Organization for Security and Co-operation in Europe (OSCE)

OSCE is the world's largest security-oriented intergovernmental organization. Areas of activity include Cyber/ICT security.

Ministry of Defence Georgia - Cyber Security Bureau

Ministry of Defence Georgia - Cyber Security Bureau

The aim of the Cyber Security Bureau is to establish and develop stable, effective and secure Information and Communication Technology systems for the Civil Office of MoD of Georgia.

AuthenTrend

AuthenTrend

AuthenTrend provide biometric authentication products to achieve high security with extreme ease-of-use for the user.

TruNarrative

TruNarrative

TruNarrative provides a unified solution for Identity Verification, Fraud Detection, eKYC, Risk Assessment, AML Compliance and Account Monitoring.

Redstor

Redstor

Redstor's complete data management helps you discover, manage and control your data from a single control centre, unifying backup and recovery, disaster recovery, archiving and search and insight.

Cyber Security Africa

Cyber Security Africa

Cyber Security Africa is a full-service Information Security Consulting firm offering a comprehensive range of Services and Products to help organizations protect their valuable assets.

archTIS

archTIS

archTIS specialises in the design and development of products, solutions and services for secure information sharing and collaboration.

State Service of Special Communications & Information Protection of Ukraine (SSSCIP)

State Service of Special Communications & Information Protection of Ukraine (SSSCIP)

State Service of Special Communications and Information Protection is the technical security and intelligence service of Ukraine, under the control of the President of Ukraine.

Path Forward IT

Path Forward IT

Path Forward IT has been troubleshooting, architecting, migrating, protecting, and securing IT environments for businesses across the USA since 2002.

Prism Infosec

Prism Infosec

Prism Infosec is an award-winning independent cyber security consultancy, CREST STAR, NCSC CHECK member, CAA ASSURE audit provider and PCI Qualified Security Assessor.

GM Sectec

GM Sectec

GM Sectec is the world's largest independent Cyber Defense and Fraud Prevention firm laser focused on payment security.

Advent One

Advent One

Advent One are recognised for solving intricate dilemmas, not only making technology work but building foundations that customers can grow upon in an effective and secure way.

Coffee Cup Solutions

Coffee Cup Solutions

We offer a full spectrum of IT Services, from our UK based Helpdesk to IT Consultancy and Cyber Security. Our team has the skills and experience to develop, deliver and manage IT for your business.

EPIQ Infotech

EPIQ Infotech

EPIQ Infotech is a trusted consulting and implementation partner for Oracle JD Edwards and Amazon Web Services (AWS).

Opal Security

Opal Security

Opal is an identity and access management platform that offers a consolidated view and control of your whole ecosystem from on-prem to cloud and SaaS.