Phishing-as-a-Service Platform LabHost  Is Turned Over

Uploaded on 2024-04-22 in NEWS-Cybersecurity News, GOVERNMENT-Law Enforcement, FREE TO VIEW, TECHNOLOGY--Hackers

One of the most used phishing-as-a-service platforms, LabHost, has been taken down by an international group of law enforcement authorities co-ordinated by Europol. 

London's Metropolitan Police have  been working with Europol on an operation to infiltrate and close down a website used by more than 2,000 criminals to defraud victims worldwide in their  latest joint operation to tackle large-scale online fraud.  Now, 37 suspects have been arrested as part of the international operation led by Europol, including the original developer of the LabHost service and the LabHost platform is no longer available.

This is a second major blow to cyber crime following the takedown of Lockbit,  another 'managed service' cyber crime operator in February.

Cyber criminals who subscribed to LabHost were sent individualised, 90-second “LabHost Wrapped” videos informing them of the takedown operation as well as recording key evidence against them gathered by law enforcement, including:

  • When the individual first subscribed to LabHost.
  • How long they’ve been a subscriber.
  • How much they’ve paid to LabHost.
  • The number of IP addresses they’ve used to access LabHost
  • The domains they’ve used
  • The various countries and organisations they have targeted

LabHost is believed to have obtained 480,000 card numbers, 64,000 PIN numbers, and no less than one million account passwords. 

The cyber security  company Fortra has closely monitored LabHost in recent years and claims to to have mitigated tens of thousands of phishing attacks carried out by cyber criminals using the platform. Michael Tyler, Senior director of security operations at Fortra's Phish Labs unit commented “The takedown of LabHost by international law enforcement is sending shockwaves through the Phishing as a Service ecosystem... In addition to the high-profile arrests of LabHost operators, Fortra Threat Intelligence is observing other PhaaS platforms competing with LabHost experiencing service instability and suspending their communications and support channels."

LabHost was established up in 2021 and quickly gained a criminal user base. By this year it was operating more than 40,000 fraudulent sites had been created and 2,000 users were registered and paying a monthly subscription fee of  between $250 and $350, many of whom law enforcement officers are now been able to identify. 

The extent of of the data collected by this operation is remarkable and Forta expect numerous arrests as law enforcement uses this data to uncover the real-world identities of the criminals. Some have already been arrested, while others are now the focus of the ongoing investigation.

Phish Labs     |   Phish Labs    |    Europol    |       Metropolitan Police    |     

You Might Also Read: 

$15m Bounty To Identify LockBit Bosses:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Overcoming Security Alert Fatigue
The Evolving Cybersecurity Vulnerability Landscape »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

WatchGuard

WatchGuard

WatchGuard is a leader in network security, secure Wi-Fi, and network intelligence products and services for SMBs and Enterprises worldwide.

CERT-FR

CERT-FR

CERT-FR is the French national government computer security incident response team.

ControlScan

ControlScan

ControlScan is a Managed Security Services Provider (MSSP) - our primary focus is protecting your business and securing your sensitive data.

Center for Internet Security (CIS)

Center for Internet Security (CIS)

CIS is a nonprofit entity that harnesses the power of a global IT community to safeguard private and public organizations against cyber threats.

Robert Half Technology

Robert Half Technology

Robert Half Technology offers a full spectrum of technology staffing solutions to meet contract and full-time IT recruitment needs.

Information Network Security Agency (INSA) - Ethiopia

Information Network Security Agency (INSA) - Ethiopia

INSA's vision is to realize a globally competent National Cyber capability which plays a key role in protecting the national interests of Ethiopia.

Cyber Defense Initiative Conference (CDIC)

Cyber Defense Initiative Conference (CDIC)

Cyber Defense Initiative Conference (CDIC) is one of the most distinguished Cybersecurity, Privacy and Information Security Conference in Thailand and Southeast Asia.

Cyberlitica

Cyberlitica

Cyberlitica (formerly iPhish) provides a Workforce Threat Intelligence application that significantly augments companies’ cyber threat prevention efforts.

Bangladesh Computer Council (BCC)

Bangladesh Computer Council (BCC)

Bangladesh Computer Council (BCC) is a government body providing support for ICT related activities including formulating national ICT strategy and policy.

Solvere One

Solvere One

Solvere One is a managed service provider (MSP) focused on corporate consulting and partnership.

ramsac

ramsac

ramsac provide secure, resilient IT management, cybersecurity, 24 hour support and IT strategy to businesses in London and the South East.

Eurotech

Eurotech

Eurotech provides Edge Computers and IoT solutions. We help to connect your assets and make them smarter through secure and agnostic hardware and software technologies.

Maltego Technologies

Maltego Technologies

Maltego is a comprehensive tool for graphical link analyses that offers real-time data mining and information gathering. Applications include cybersecurity threat intelligence and incident response.

Antivirus Tales

Antivirus Tales

Antivirus Tales offers a platform to resolve all types of antivirus-related issues. The platform also provide various blog articles and informative guides to fix antivirus software errors.

Myrror Security

Myrror Security

Myrror Security is a software supply chain security solution that aids lean security teams in safeguarding their software against breaches.

HanaByte

HanaByte

HanaByte is a security consultancy focused on delivering state of the art solutions in the cloud. We specialize in delivering cloud services with an emphasis on security.