Europol Breaks Open Mafia Cyber Crime Group

Uploaded on 2021-09-28 in GOVERNMENT-Law Enforcement, FREE TO VIEW

An organised crime group with ties to the Italian Mafia, which prospered on violence, intimidation and has made at least $12 million in online fraud profits, has now been taken down by international law enforcement. The group allegedly used phishing attacks to defraud hundreds of victims.

The suspects used various lures to convince victims - mostly Italian nationals but also Spanish, English, German and Irish targets,  to transfer money to bank accounts controlled by the criminal network, according to Europol

“The group, using hackers specialised in latest-generation phishing and in the use of social-engineering techniques, had taken possession of the home banking credentials of victims… arranging bank transfers for thousands of Euro,” according to a statement from the Italian National Police.

The organised crime group linked to the Italian Mafia was  involved in online fraud, money laundering, drug trafficking and property crime. 

The suspects defrauded hundreds of victims through phishing attacks and other types of online fraud such as SIM swapping and business email compromise before laundering the money through a wide network of money mules and shell companies. Last year alone, the illegal profit is estimated at about € 10 million. The gang also engaged in other types of online fraud such as SIM swapping and business email compromise (BEC), Europol said. In all cases, the attackers laundered the money through a wide network of money mules and shell companies.In total the criminals made  $12 million (€10 million) from their exploits in 2020.

“The stolen sums were later recycled through the purchase of cryptocurrency or reinvested in further criminal activities, such as prostitution, drug production and trafficking, and arms trafficking,” according to the Italian police. 

Spanish and Italian police officers, supported by Europol and Eurojust, made 106 arrests and the law enforcement agencies also froze 118 bank accounts and performed 16 house searches. Officers seized various collateral used in the operations, including electronic devices, 224 credit cards, SIM cards and point-of-sale terminals - as well as an electric shock machine, which speaks to the gang’s ancillary criminal activities.

“This large criminal network was very well organised in a pyramid structure, which included different specialised areas and roles...  Among the members of the criminal group were computer experts, who created the phishing domains and carried out the cyber-fraud; recruiters and organisers of the money muling; and money-laundering experts, including experts in crypto currencies.”according to a statement from Europol. 

The gang members are mostly Italian nationals but ran their operation from the Canary Islands. Some of those arrested were  fugitives, wanted for ties to organised crime groups like the Camorra in Naples, and Apulia’s Sacra Corona Unita. “This group of criminals had managed to settle and enter different levels of society: Business networks, law firms and banking entities, among others,” according to a Spanish Police statement. “This level of settlement not only gave the organisation impunity for money laundering, but also for the different criminal activities of these Mafia groups carried out in Spain.”

Those activities included robberies and assault, as well as the involvement of several of its members in two homicides. On one occasion they kidnapped a woman and took her at gunpoint to an ATM to steal all the money and open 50 online bank accounts for the organisation.  “The extreme violence of this group was also manifested in other criminal actions. They beat up, robbed and extorted both members of the organisation who deviated from internal regulations and other people or companies in Tenerife who, for fear of reprisals, did not report, which gave them a significant degree of impunity.” the Spanish Police said.

The arrests were carried out by traditional law enforcement as well as cyber experts: The Joint Cybercrime Action Taskforce (J-CAT) at Europol is a standing operational team that consists of cyber-liaison officers from different countries. Europol deployed two analysts and one forensic expert to Tenerife, Spain and one analyst to Italy,” according to the Europol statement. 

Europol:      Threatpost:     Polizia.it:     Policia.es:    Oodaloop:   Daily Advent:      @Oooda:      Image: Unsplash

You Might Also Read: 

International Police Sting Operation Disrupts The Dark Web:

 

« Telegram Is Where Cyber Criminals Do Business
Cyber Security Priorities For The New Normal »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Techmeme

Techmeme

Techmeme is an online news curation service focused on leading edge technology, including cyber security.

DataCore Software

DataCore Software

DataCore Software is a leader in Software-Defined Storage. Solutions offered include back up and disaster recovery.

Boxcryptor

Boxcryptor

Boxcryptor encrypts your sensitive files before uploading them to cloud storage services.

GreatHorn

GreatHorn

GreatHorn offers the only cloud-native security platform that stops targeted social engineering and phishing attacks on communication tools like O365, G Suite, and Slack.

SySS

SySS

SySS is a market leader in penetration testing in Germany and Europe.

Devel

Devel

Devel is a LATAM cybersecurity company specialized in providing red, blue and purple team services for the financial sector.

IT Security Jobs

IT Security Jobs

IT Security Jobs is a dedicated portal for everything related to IT professionals looking for IT Security jobs.

AmWINS Group

AmWINS Group

AmWINS are a global specialty insurance distributor with expertise in property, casualty and professional lines including cyber liability.

CyberCyte

CyberCyte

CyberCyte provides a disruptive built-in integrated physical, network and perimeter security solution framework.

Cheops Technology

Cheops Technology

Cheops is a specialist in IT Business Technology Services. We help SMEs and large companies build, optimize and manage their IT so they can focus on their core business.

Easy Dynamics

Easy Dynamics

Easy Dynamics is a leading technology services provider with a core focus in Cybersecurity, Cloud Computing, and Information Sharing.

Nine23

Nine23

Nine23 are a highly focused cyber security solutions company that defines, builds and manages innovative services, enabling end-users to use technology securely in today’s workplace.

Park Place Technologies

Park Place Technologies

Park Place Technologies' mission is to drive uptime, performance and value for critical IT infrastructure.

CodeLock

CodeLock

Codelock is a patent-pending solution that continuously provides software security at the code level, while providing advanced management insights with performance metrics and data analytics.

Baselime

Baselime

Baselime, the cloud-native observability platform. Resolve issues in your cloud application before they become problems.

Assura

Assura

Assura provides innovative cybersecurity advisory and managed services to all industries including government, healthcare, financial, manufacturing, and transportation sectors.