Europol Breaks Open Mafia Cyber Crime Group

An organised crime group with ties to the Italian Mafia, which prospered on violence, intimidation and has made at least $12 million in online fraud profits, has now been taken down by international law enforcement. The group allegedly used phishing attacks to defraud hundreds of victims.

The suspects used various lures to convince victims - mostly Italian nationals but also Spanish, English, German and Irish targets,  to transfer money to bank accounts controlled by the criminal network, according to Europol

“The group, using hackers specialised in latest-generation phishing and in the use of social-engineering techniques, had taken possession of the home banking credentials of victims… arranging bank transfers for thousands of Euro,” according to a statement from the Italian National Police.

The organised crime group linked to the Italian Mafia was  involved in online fraud, money laundering, drug trafficking and property crime. 

The suspects defrauded hundreds of victims through phishing attacks and other types of online fraud such as SIM swapping and business email compromise before laundering the money through a wide network of money mules and shell companies. Last year alone, the illegal profit is estimated at about € 10 million. The gang also engaged in other types of online fraud such as SIM swapping and business email compromise (BEC), Europol said. In all cases, the attackers laundered the money through a wide network of money mules and shell companies.In total the criminals made  $12 million (€10 million) from their exploits in 2020.

“The stolen sums were later recycled through the purchase of cryptocurrency or reinvested in further criminal activities, such as prostitution, drug production and trafficking, and arms trafficking,” according to the Italian police. 

Spanish and Italian police officers, supported by Europol and Eurojust, made 106 arrests and the law enforcement agencies also froze 118 bank accounts and performed 16 house searches. Officers seized various collateral used in the operations, including electronic devices, 224 credit cards, SIM cards and point-of-sale terminals - as well as an electric shock machine, which speaks to the gang’s ancillary criminal activities.

“This large criminal network was very well organised in a pyramid structure, which included different specialised areas and roles...  Among the members of the criminal group were computer experts, who created the phishing domains and carried out the cyber-fraud; recruiters and organisers of the money muling; and money-laundering experts, including experts in crypto currencies.”according to a statement from Europol. 

The gang members are mostly Italian nationals but ran their operation from the Canary Islands. Some of those arrested were  fugitives, wanted for ties to organised crime groups like the Camorra in Naples, and Apulia’s Sacra Corona Unita. “This group of criminals had managed to settle and enter different levels of society: Business networks, law firms and banking entities, among others,” according to a Spanish Police statement. “This level of settlement not only gave the organisation impunity for money laundering, but also for the different criminal activities of these Mafia groups carried out in Spain.”

Those activities included robberies and assault, as well as the involvement of several of its members in two homicides. On one occasion they kidnapped a woman and took her at gunpoint to an ATM to steal all the money and open 50 online bank accounts for the organisation.  “The extreme violence of this group was also manifested in other criminal actions. They beat up, robbed and extorted both members of the organisation who deviated from internal regulations and other people or companies in Tenerife who, for fear of reprisals, did not report, which gave them a significant degree of impunity.” the Spanish Police said.

The arrests were carried out by traditional law enforcement as well as cyber experts: The Joint Cybercrime Action Taskforce (J-CAT) at Europol is a standing operational team that consists of cyber-liaison officers from different countries. Europol deployed two analysts and one forensic expert to Tenerife, Spain and one analyst to Italy,” according to the Europol statement. 

Europol:      Threatpost:     Polizia.it:     Policia.es:    Oodaloop:   Daily Advent:      @Oooda:      Image: Unsplash

You Might Also Read: 

International Police Sting Operation Disrupts The Dark Web:

 

« Telegram Is Where Cyber Criminals Do Business
Cyber Security Priorities For The New Normal »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Zentek Digital Investigations

Zentek Digital Investigations

Zentek has been providing digital forensics services to the public and private sector for computers and mobile devices since 2004.

Axial

Axial

Axial Systems is one of the UK’s leading solution providers and systems integrators in network, security and services.

aeCERT

aeCERT

aeCERT is the national Computer Emergency Response Team for the United Arab Emirates.

Dionach

Dionach

Dionach are a certified information security specialists who provide Penetration Testing, IT Security Auditing and Information Security Consultancy.

ThreatMark

ThreatMark

ThreatMark provides fraud detection solutions for digital banking and payments.

Cyber Security Centre - Daffodil International University

Cyber Security Centre - Daffodil International University

Cyber Security Centre, DIU is a non-profitable organization which is focused on applied research in cyber security.

Cervello

Cervello

Cervello is a leading provider of comprehensive and proven solutions to protect railways against cyber attacks.

Security BSides

Security BSides

Security BSides is the first grass roots, DIY, open security conference in the world!. BSides is a community-driven framework for building events for and by information security community members.

Smoothstack

Smoothstack

Smoothstack is a technology talent incubator whose immersive training program kick starts IT careers and delivers a fresh source of IT talent.

CyberArmor

CyberArmor

Cyber Armor defend everyday IT and OT systems, from government agencies to critical infrastructure, from system integrators to small industries.

Certo Software

Certo Software

Certo are trusted experts in mobile security. At Certo, mobile security is not an afterthought, it’s what we do.

IgmGuru

IgmGuru

Igmguru offers certification online training courses for IT professionals and students. Get certified with high-in-demand job-oriented professional courses.

DartPoints

DartPoints

DartPoints helps bridge the digital divide by delivering cloud, colocation, managed services + edge infrastructure.

Telesign

Telesign

Telesign connect, protect, and defend online experiences with sophisticated digital identity and programmable communications solutions.

HaystackID

HaystackID

HaystackID provides industry-leading computer forensics, eDiscovery, and attorney document review experts to help with complex, data-intensive investigations and litigation.

Ingenics Digital

Ingenics Digital

Ingenics Digital is a recognized initiator and leading service provider in the areas of software development and embedded systems.