Europol, the European Union’s law enforcement agency, has announced the dismantling of a phishing-as-a-service operation that has been providing easily accessible password-stealing websites for several years. With over tens of thousands of clients, this deceptive network included more than 40,000 domains.
Each customer paid a starting service fee of $179 USD per month or approximately 6,000 THB to create fraudulent banking or postal websites from a selection of 170 sites instantly. Additionally, they offered the LabRat program to monitor whether the victim has been deceived or not, in order to immediately obtain the OTP login for the second step.
The LabHost service fee has 3 tiers, increasing according to the amount of fraudulent websites opened and the number of organizations wanting fake websites. While larger packages provide more options, the disclosed information indicates that LabHost does not currently offer fake website services in Thailand.
Source: Europol, Trend Micro
TLDR: Europol shuts down a phishing-as-a-service network that allowed clients to easily create fraudulent websites to steal passwords, with over 40,000 domains involved. Customers paid a monthly fee to access a range of deceptive sites and monitor victim deception, but fake website services are not available in Thailand through this operation.
Leave a Comment