Europol Breaks Open Mafia Cyber Crime Group

An organised crime group with ties to the Italian Mafia, which prospered on violence, intimidation and has made at least $12 million in online fraud profits, has now been taken down by international law enforcement. The group allegedly used phishing attacks to defraud hundreds of victims.

The suspects used various lures to convince victims - mostly Italian nationals but also Spanish, English, German and Irish targets,  to transfer money to bank accounts controlled by the criminal network, according to Europol

“The group, using hackers specialised in latest-generation phishing and in the use of social-engineering techniques, had taken possession of the home banking credentials of victims… arranging bank transfers for thousands of Euro,” according to a statement from the Italian National Police.

The organised crime group linked to the Italian Mafia was  involved in online fraud, money laundering, drug trafficking and property crime. 

The suspects defrauded hundreds of victims through phishing attacks and other types of online fraud such as SIM swapping and business email compromise before laundering the money through a wide network of money mules and shell companies. Last year alone, the illegal profit is estimated at about € 10 million. The gang also engaged in other types of online fraud such as SIM swapping and business email compromise (BEC), Europol said. In all cases, the attackers laundered the money through a wide network of money mules and shell companies.In total the criminals made  $12 million (€10 million) from their exploits in 2020.

“The stolen sums were later recycled through the purchase of cryptocurrency or reinvested in further criminal activities, such as prostitution, drug production and trafficking, and arms trafficking,” according to the Italian police. 

Spanish and Italian police officers, supported by Europol and Eurojust, made 106 arrests and the law enforcement agencies also froze 118 bank accounts and performed 16 house searches. Officers seized various collateral used in the operations, including electronic devices, 224 credit cards, SIM cards and point-of-sale terminals - as well as an electric shock machine, which speaks to the gang’s ancillary criminal activities.

“This large criminal network was very well organised in a pyramid structure, which included different specialised areas and roles...  Among the members of the criminal group were computer experts, who created the phishing domains and carried out the cyber-fraud; recruiters and organisers of the money muling; and money-laundering experts, including experts in crypto currencies.”according to a statement from Europol. 

The gang members are mostly Italian nationals but ran their operation from the Canary Islands. Some of those arrested were  fugitives, wanted for ties to organised crime groups like the Camorra in Naples, and Apulia’s Sacra Corona Unita. “This group of criminals had managed to settle and enter different levels of society: Business networks, law firms and banking entities, among others,” according to a Spanish Police statement. “This level of settlement not only gave the organisation impunity for money laundering, but also for the different criminal activities of these Mafia groups carried out in Spain.”

Those activities included robberies and assault, as well as the involvement of several of its members in two homicides. On one occasion they kidnapped a woman and took her at gunpoint to an ATM to steal all the money and open 50 online bank accounts for the organisation.  “The extreme violence of this group was also manifested in other criminal actions. They beat up, robbed and extorted both members of the organisation who deviated from internal regulations and other people or companies in Tenerife who, for fear of reprisals, did not report, which gave them a significant degree of impunity.” the Spanish Police said.

The arrests were carried out by traditional law enforcement as well as cyber experts: The Joint Cybercrime Action Taskforce (J-CAT) at Europol is a standing operational team that consists of cyber-liaison officers from different countries. Europol deployed two analysts and one forensic expert to Tenerife, Spain and one analyst to Italy,” according to the Europol statement. 

Europol:      Threatpost:     Polizia.it:     Policia.es:    Oodaloop:   Daily Advent:      @Oooda:      Image: Unsplash

You Might Also Read: 

International Police Sting Operation Disrupts The Dark Web:

 

« Telegram Is Where Cyber Criminals Do Business
Cyber Security Priorities For The New Normal »

CyberSecurity Jobsite
Check Point

Directory of Suppliers

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Trend Micro

Trend Micro

Trend Micro is a leader in hybrid cloud, endpoint, and network security solutions.

Cyber Security National Lab (CINI)

Cyber Security National Lab (CINI)

The Cyber Security National Lab brings together Italian academic excellence in Cyber Security research.

DNV

DNV

DNV are the independent expert in assurance and risk management. We deliver world-renowned testing, certification and technical advisory services.

Gemserv

Gemserv

Gemserv is a specialist market design, governance and assurance services consultancy.

Uniwan

Uniwan

Uniwan is an IT services company specializing in networking and security.

Dracoon

Dracoon

DRACOON is market leader in the German-speaking region for secure enterprise file sharing.

Scanmeter

Scanmeter

Scanmeter helps identifying vulnerabilities in software and systems before they can be exploited by an attacker.

Advisera 27001Academy

Advisera 27001Academy

Advisera is a market leader in providing documentation and online support for the implementation of business standards including ISO 27001, ISO 22301 and EU GDPR.

InnoValor

InnoValor

InnoValor realises value from digital innovation for organisations and government. We provide advisory services and develop innovative software solutions, based on our background in research.

Cyber Pop-Up

Cyber Pop-Up

Cyber Pop-Up provide on-demand access to top security experts. No recruiting. No onboarding. No overhead costs.

Venari Security

Venari Security

Venari is an award-winning cybersecurity SaaS provider that has developed an ETA (Encrypted Traffic Analysis) platform which fundamentally changes the way encrypted traffic is analysed.

International Cyber Threat Task Force (ICTTF)

International Cyber Threat Task Force (ICTTF)

The International Cyber Threat Task Force is a not-for-profit initiative promoting the ecosystem of an International independent non-partisan cyber security community.

Covenant Technologies

Covenant Technologies

Make Covenant Technologies the only choice for your IT and cybersecurity recruitment needs. We deliver quality candidates at the forefront of the cybersecurity and IT industry.

Kivera

Kivera

Kivera enforces your organisation governance and security policies across cloud deployments preventing misconfigurations turning into attack vectors.

AZCOMP Technologies

AZCOMP Technologies

AZCOMP provide professional network security consulting services as well as network security auditing and assessments.

Element

Element

Element is a new type of communications platform. It combines consumer messaging apps, collaboration tools and video conferencing to replace email, address shadow IT and improve security.