Phishing-as-a-Service Platform LabHost  Is Turned Over

Uploaded on 2024-04-22 in NEWS-Cybersecurity News, GOVERNMENT-Law Enforcement, FREE TO VIEW, TECHNOLOGY--Hackers

One of the most used phishing-as-a-service platforms, LabHost, has been taken down by an international group of law enforcement authorities co-ordinated by Europol. 

London's Metropolitan Police have  been working with Europol on an operation to infiltrate and close down a website used by more than 2,000 criminals to defraud victims worldwide in their  latest joint operation to tackle large-scale online fraud.  Now, 37 suspects have been arrested as part of the international operation led by Europol, including the original developer of the LabHost service and the LabHost platform is no longer available.

This is a second major blow to cyber crime following the takedown of Lockbit,  another 'managed service' cyber crime operator in February.

Cyber criminals who subscribed to LabHost were sent individualised, 90-second “LabHost Wrapped” videos informing them of the takedown operation as well as recording key evidence against them gathered by law enforcement, including:

  • When the individual first subscribed to LabHost.
  • How long they’ve been a subscriber.
  • How much they’ve paid to LabHost.
  • The number of IP addresses they’ve used to access LabHost
  • The domains they’ve used
  • The various countries and organisations they have targeted

LabHost is believed to have obtained 480,000 card numbers, 64,000 PIN numbers, and no less than one million account passwords. 

The cyber security  company Fortra has closely monitored LabHost in recent years and claims to to have mitigated tens of thousands of phishing attacks carried out by cyber criminals using the platform. Michael Tyler, Senior director of security operations at Fortra's Phish Labs unit commented “The takedown of LabHost by international law enforcement is sending shockwaves through the Phishing as a Service ecosystem... In addition to the high-profile arrests of LabHost operators, Fortra Threat Intelligence is observing other PhaaS platforms competing with LabHost experiencing service instability and suspending their communications and support channels."

LabHost was established up in 2021 and quickly gained a criminal user base. By this year it was operating more than 40,000 fraudulent sites had been created and 2,000 users were registered and paying a monthly subscription fee of  between $250 and $350, many of whom law enforcement officers are now been able to identify. 

The extent of of the data collected by this operation is remarkable and Forta expect numerous arrests as law enforcement uses this data to uncover the real-world identities of the criminals. Some have already been arrested, while others are now the focus of the ongoing investigation.

Phish Labs     |   Phish Labs    |    Europol    |       Metropolitan Police    |     

You Might Also Read: 

$15m Bounty To Identify LockBit Bosses:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Overcoming Security Alert Fatigue
The Evolving Cybersecurity Vulnerability Landscape »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

NPCore

NPCore

NPCore is specialized in defense solution against unknown APT and Ransomware and provides two-level defense on network and endpoint based on behavior.

Brainloop

Brainloop

Brainloop's security architecture enables you to work on and distribute strictly confidential documents both within and beyond the firewall.

Incognito Forensic Foundation Lab (IFF Lab)

Incognito Forensic Foundation Lab (IFF Lab)

IFF Lab is a premier cyber and digital forensics lab in India that offers forensic services and solutions, cyber security analysis and assessment, IT support, training and consultation.

Encore Media Group

Encore Media Group

Encore Media Group provide an international enterprise technology event series exploring IoT, Blockchain AI, Big Data, 5G, Cyber Security and Cloud.

Greenberg Traurig (GT)

Greenberg Traurig (GT)

Greenberg Traurig, LLP (GT) is a global law firm with offices in 40 locations in the United States, Latin America, Europe, Asia, and the Middle East.

Atakama

Atakama

With Atakama, data remains encrypted until the very moment it is used, and the ability to decrypt is based on zero trust architecture.

SynSaber

SynSaber

SynSaber is a data collection, detection, and visibility solution that forms the foundation of industrial cybersecurity.

Acmetek Global Solutions

Acmetek Global Solutions

Acmetek is a Global Distributor and a Trusted Advisor of PKI /IOT & SSL Security Products and a Managed Services Company.

FourthRev

FourthRev

FourthRev is an education-technology start-up with a mission to solve the skills crisis of the Fourth Industrial Revolution.

Seedcamp

Seedcamp

Seedcamp identify and invest early in world-class founders attacking large and global markets through disruptive technology in areas including AI, cybersecurity, and Fintech.

JLS Technology

JLS Technology

Since 2007, JLS Tech has been recognized as one of the world’s most innovative cybersecurity and technology operations leaders.

Geobridge

Geobridge

Geobridge was one of the first information security solutions providers to support cryptography and payment applications for payment processors, financial institutions and retail organizations.

Camms

Camms

Camms are a team of experienced professionals dedicated to providing innovative GRC software solutions that help organizations manage risk, make informed decisions, and drive positive change.

Amtivo Ireland

Amtivo Ireland

Amtivo Ireland (formerly Certification Europe and EQA) offers a range of certifications and related services.

Forensic IT

Forensic IT

Forensic IT is a specialised cyber security firm with expertise in Digital Forensics and Incident Response (DFIR).

Gathid

Gathid

Gathid is a unique and versatile identity governance platform providing organizations with the ability to model, explore, audit, and track complex access-related scenarios.