Europol Breaks Open Mafia Cyber Crime Group

An organised crime group with ties to the Italian Mafia, which prospered on violence, intimidation and has made at least $12 million in online fraud profits, has now been taken down by international law enforcement. The group allegedly used phishing attacks to defraud hundreds of victims.

The suspects used various lures to convince victims - mostly Italian nationals but also Spanish, English, German and Irish targets,  to transfer money to bank accounts controlled by the criminal network, according to Europol

“The group, using hackers specialised in latest-generation phishing and in the use of social-engineering techniques, had taken possession of the home banking credentials of victims… arranging bank transfers for thousands of Euro,” according to a statement from the Italian National Police.

The organised crime group linked to the Italian Mafia was  involved in online fraud, money laundering, drug trafficking and property crime. 

The suspects defrauded hundreds of victims through phishing attacks and other types of online fraud such as SIM swapping and business email compromise before laundering the money through a wide network of money mules and shell companies. Last year alone, the illegal profit is estimated at about € 10 million. The gang also engaged in other types of online fraud such as SIM swapping and business email compromise (BEC), Europol said. In all cases, the attackers laundered the money through a wide network of money mules and shell companies.In total the criminals made  $12 million (€10 million) from their exploits in 2020.

“The stolen sums were later recycled through the purchase of cryptocurrency or reinvested in further criminal activities, such as prostitution, drug production and trafficking, and arms trafficking,” according to the Italian police. 

Spanish and Italian police officers, supported by Europol and Eurojust, made 106 arrests and the law enforcement agencies also froze 118 bank accounts and performed 16 house searches. Officers seized various collateral used in the operations, including electronic devices, 224 credit cards, SIM cards and point-of-sale terminals - as well as an electric shock machine, which speaks to the gang’s ancillary criminal activities.

“This large criminal network was very well organised in a pyramid structure, which included different specialised areas and roles...  Among the members of the criminal group were computer experts, who created the phishing domains and carried out the cyber-fraud; recruiters and organisers of the money muling; and money-laundering experts, including experts in crypto currencies.”according to a statement from Europol. 

The gang members are mostly Italian nationals but ran their operation from the Canary Islands. Some of those arrested were  fugitives, wanted for ties to organised crime groups like the Camorra in Naples, and Apulia’s Sacra Corona Unita. “This group of criminals had managed to settle and enter different levels of society: Business networks, law firms and banking entities, among others,” according to a Spanish Police statement. “This level of settlement not only gave the organisation impunity for money laundering, but also for the different criminal activities of these Mafia groups carried out in Spain.”

Those activities included robberies and assault, as well as the involvement of several of its members in two homicides. On one occasion they kidnapped a woman and took her at gunpoint to an ATM to steal all the money and open 50 online bank accounts for the organisation.  “The extreme violence of this group was also manifested in other criminal actions. They beat up, robbed and extorted both members of the organisation who deviated from internal regulations and other people or companies in Tenerife who, for fear of reprisals, did not report, which gave them a significant degree of impunity.” the Spanish Police said.

The arrests were carried out by traditional law enforcement as well as cyber experts: The Joint Cybercrime Action Taskforce (J-CAT) at Europol is a standing operational team that consists of cyber-liaison officers from different countries. Europol deployed two analysts and one forensic expert to Tenerife, Spain and one analyst to Italy,” according to the Europol statement. 

Europol:      Threatpost:     Polizia.it:     Policia.es:    Oodaloop:   Daily Advent:      @Oooda:      Image: Unsplash

You Might Also Read: 

International Police Sting Operation Disrupts The Dark Web:

 

« Telegram Is Where Cyber Criminals Do Business
Cyber Security Priorities For The New Normal »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Zayo

Zayo

Zayo is a leading global bandwidth infrastructure services provider for high-performance connectivity, secure colocation and flexible cloud services.

Wayra UK

Wayra UK

Wayra UK, part of Telefónica Open Future, has been chosen to run a new cyber accelerator facility to help UK start-ups grow and take the lead in producing the next generation of cyber security systems

Golden Frog

Golden Frog

Golden Frog is a Virtual Private Network services provider offering secure encrypted access to the internet.

Securitybulls

Securitybulls

Securitybulls is an information security firm offering an encyclopedic penetration testing & IT security assessment service for your organization.

StormWall

StormWall

StormWall is an Anti-DDoS protection service for websites and networks. We offer 100% protection from all types of DDoS attacks and 24/7 technical support.

ISEC7 Group

ISEC7 Group

ISEC7 Group is a global provider of mobile business services and software solutions. The company was one of the first movers in mobilising company and business processes.

Farsight Security

Farsight Security

Farsight Security provides the world’s largest real-time actionable threat intelligence on how the Internet is changing.

NetSecurity

NetSecurity

NetSecurity is a Brazilian company specializing in Information Security. We provide Managed Security Services (MSS), network security solutions and other specialist services.

CentricalCyber

CentricalCyber

CentricalCyber is a cyber risk consultancy and NIST CSF specialist set up to help business leaders better understand and manage cyber risk.

Secret Intelligence Service (SIS - MI6)

Secret Intelligence Service (SIS - MI6)

The UK’s Secret Intelligence Service, also known as MI6, has three core aims: stopping terrorism, disrupting the activity of hostile states, and giving the UK a cyber advantage.

PSafe

PSafe

PSafe is a leading provider of mobile privacy, security, and performance apps. We deliver innovative products that protect your freedom to safely connect, share, play, express and explore online.

Flatt Security

Flatt Security

Flatt Security is a cyber security startup based in Japan providing security assessments and other cyber security services.

ZINAD IT

ZINAD IT

ZINAD is an information security company offering state-of-the-art cybersecurity awareness products, solutions and services.

SMARTEST

SMARTEST

SMARTEST is a world-class IT solutions provider active in the most challenging and demanding industries such as the oil and gas industries.

ImmuneBytes

ImmuneBytes

ImmuneBytes is a cutting-edge security startup that aims to provide a secure blockchain environment for a dependable and open Web3 ecosystem.

BLOCX

BLOCX

BLOCX is designed to address the ever-growing challenges of managing and securing digital devices, from personal computers to corporate networks.