Phishing-as-a-Service Platform LabHost  Is Turned Over

One of the most used phishing-as-a-service platforms, LabHost, has been taken down by an international group of law enforcement authorities co-ordinated by Europol. 

London's Metropolitan Police have  been working with Europol on an operation to infiltrate and close down a website used by more than 2,000 criminals to defraud victims worldwide in their  latest joint operation to tackle large-scale online fraud.  Now, 37 suspects have been arrested as part of the international operation led by Europol, including the original developer of the LabHost service and the LabHost platform is no longer available.

This is a second major blow to cyber crime following the takedown of Lockbit,  another 'managed service' cyber crime operator in February.

Cyber criminals who subscribed to LabHost were sent individualised, 90-second “LabHost Wrapped” videos informing them of the takedown operation as well as recording key evidence against them gathered by law enforcement, including:

  • When the individual first subscribed to LabHost.
  • How long they’ve been a subscriber.
  • How much they’ve paid to LabHost.
  • The number of IP addresses they’ve used to access LabHost
  • The domains they’ve used
  • The various countries and organisations they have targeted

LabHost is believed to have obtained 480,000 card numbers, 64,000 PIN numbers, and no less than one million account passwords. 

The cyber security  company Fortra has closely monitored LabHost in recent years and claims to to have mitigated tens of thousands of phishing attacks carried out by cyber criminals using the platform. Michael Tyler, Senior director of security operations at Fortra's Phish Labs unit commented “The takedown of LabHost by international law enforcement is sending shockwaves through the Phishing as a Service ecosystem... In addition to the high-profile arrests of LabHost operators, Fortra Threat Intelligence is observing other PhaaS platforms competing with LabHost experiencing service instability and suspending their communications and support channels."

LabHost was established up in 2021 and quickly gained a criminal user base. By this year it was operating more than 40,000 fraudulent sites had been created and 2,000 users were registered and paying a monthly subscription fee of  between $250 and $350, many of whom law enforcement officers are now been able to identify. 

The extent of of the data collected by this operation is remarkable and Forta expect numerous arrests as law enforcement uses this data to uncover the real-world identities of the criminals. Some have already been arrested, while others are now the focus of the ongoing investigation.

Phish Labs     |   Phish Labs    |    Europol    |       Metropolitan Police    |     

You Might Also Read: 

$15m Bounty To Identify LockBit Bosses:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« Overcoming Security Alert Fatigue
The Evolving Cybersecurity Vulnerability Landscape »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Bulletproof Cyber

Bulletproof Cyber

Bulletproof offer a range of security services, from penetration testing and vulnerability assessments to 24/7 security monitoring, and consultancy.

National Cyber Security Centre (NCSC) - Netherlands

National Cyber Security Centre (NCSC) - Netherlands

NCSC Netherlands coordinates enhancing the cyber resilience of the Netherlands in the digital domain.

Cycuity

Cycuity

Cycuity (formerly Tortuga Logic) is a cybersecurity company that is transforming the way we secure silicon with comprehensive hardware security assurance.

Cingo Solutions

Cingo Solutions

Cingo Solutions is a Managed Detection & Response company providing specialized data security services.

Project Moore

Project Moore

Project Moore is an Amsterdam law firm specialising in IT-law and privacy.

Defendify

Defendify

We built Defendify to help small businesses navigate the cybersecurity landscape with cybersecurity that is dead simple, affordable, and works around the clock.

CloudSphere

CloudSphere

CloudSphere’s flagship Cloud Governance Platform enables enterprises and cloud service providers to simplify and optimize cloud migration, management, and governance.

Towerwall

Towerwall

Towerwall offers a comprehensive suite of security services and solutions using best-of-breed tools and information security services.

Imageware

Imageware

Imageware is a leader in biometric cybersecurity. Protect against costly, damaging ransomware hacks by employing biometric cybersecurity solutions.

Integris

Integris

Integris offers best-in-class services like dedicated vCIOs, specialized security and compliance advisory services, a 24/7 help desk, and more.

EtherAuthority

EtherAuthority

EtherAuthority's engineering team has been helping blockchain businesses to secure their smart contract based assets since 2018.

Akamai Technologies

Akamai Technologies

Akamai's leading security, compute, and delivery solutions are helping global companies make life better for billions of people, billions of times a day.

IDECSI

IDECSI

IDECSI delivers cutting-edge technology and engages all employees in the security system for effective and cost-efficient data protection.

Anonos

Anonos

Anonos is a global software company that provides the only technology capable of protecting data in use with 100% accuracy, even in untrusted environments.

Threat Con

Threat Con

Threat Con is a one of its kind event in Nepal, a series of annual international security conventions similar to the famous Black Hat and DEF CON conferences.

CompassMSP

CompassMSP

CompassMSP deliver Managed IT and cybersecurity solutions designed to unleash your business's full potential.