Google Takes Legal Action Against AI-Driven Cybercrime Network
Google is seeking to dismantle the infrastructure behind a massive AI-powered cybercrime operation.
Unveiling the Outsider Enterprise
On Friday, tech giant announced a lawsuit targeting an alleged Chinese cybercrime syndicate known as Outsider Enterprise. According to Google, this group employs AI technology to facilitate scam text messages that impersonate Google and other recognized brands, aiming to steal sensitive information such as passwords and credit card details.
A Widespread Scam Operation
Outsider Enterprise has reportedly defrauded “hundreds of thousands of victims,” resulting in losses estimated in the millions. Google claims the group operated 9,000 fake websites and registered one million fraudulent domains, dispatching 2.5 million scam texts to Android users over a mere two weeks. Data from Google indicates that Android users flagged an alarming rate of 55,000 spam texts within just two weeks this past May, averaging more than two complaints per minute.
AI Tools in the Fight Against Scams
Google explained that it utilizes “AI-powered tools to combat AI-driven scams,” allowing the identification of scams and the alerting of users about suspicious communications. The result? Over 10 billion scam messages are intercepted each month.
Collaboration with Major Telecoms and Law Enforcement
In a collaborative effort, Google is working alongside telecom giants AT&T, T-Mobile, and Verizon to block scam messages. Additionally, the company is coordinating efforts with the FBI to tackle this cybercrime issue. An FBI spokesperson reported that, in conjunction with Google and Lumen’s Black Lotus Labs, several domains linked to the criminals have been seized, along with Shopify accounts used for phishing operations.
Outsider Enterprise’s Phishing Platform Exposed
Since July 2023, the Outsider Enterprise has allegedly enabled cybercriminals to steal an estimated 3.87 million credit cards, resulting in potential losses of around $1.9 billion.
Inside the Infrastructure of Outsider Enterprise
As detailed in its lawsuit complaint, Google provided evidence against the individuals involved with Outsider Enterprise, whom they believe are foreign-based cybercriminals operating under the veil of anonymity. This syndicate has allegedly built an online software suite, referred to as “Outsider,” that allows even those with minimal technical skills to establish fraudulent websites designed to defraud victims.
This phishing-for-dummies software is available for $88 per week or $200 monthly, enabling users to create fake sites utilizing AI platforms—including Google’s own Gemini. The counterfeit websites mimic various services ranging from telecom providers to financial institutions.
To attract victims, the criminals send out malicious texts or purchase online ads, aiming to harvest passwords and multi-factor authentication codes, transmitting this information in real time.
Ease of Use and Collaboration Among Cybercriminals
Google emphasized the Outsider software’s appeal lies in its user-friendliness, allowing those with little technical knowledge to engage in phishing operations. Members of Outsider Enterprise can connect through Telegram channels, where they share strategies, collaborate, and refine their attacks.
The Outsider platform purportedly offers more than 290 ready-made templates that swiftly replicate legitimate websites, alongside guides for weaponizing AI-generated code and monitoring phishing efforts.
The Scope of the Operation Highlighted
From November 14, 2025, to April 14, 2026, Google detected over 1.59 million URLs associated with Outsider Enterprise. The company reported that this criminal network has secured “at least 36,000 payment cards” from financial institutions across 95 countries.
Legal Action Against Cybercriminals
Google has accused the masterminds behind Outsider Enterprise of impersonating its brand, copyright infringement, racketeering, wire fraud, and false advertising. The tech giant is pursuing compensatory and punitive damages alongside a court order to halt their malicious activities.
This story was originally published at 10:26 a.m. PDT and has since been updated with new information from Google’s complaint and the FBI’s comments.
When you purchase through links in our articles, we may earn a small commission. This doesn’t affect our editorial independence.
Here are five FAQs regarding the Chinese cybercrime operation that used AI to scam victims and was recently sued by Google:
FAQ 1: What is the recent cybercrime operation discussed in the news?
Answer: The recent cybercrime operation involves a Chinese group that employed artificial intelligence to execute scams on a massive scale, affecting hundreds of thousands of victims. The group used sophisticated techniques to create fraudulent messages and websites, leading to financial losses for many individuals.
FAQ 2: Why has Google sued this cybercrime operation?
Answer: Google filed a lawsuit against the operation to hold it accountable for its deceptive practices and to protect its users from fraud. The company aims to combat the exploitation of its platforms by malicious actors who aim to mislead and defraud people using advanced technology.
FAQ 3: How did the cybercriminals use AI in their operations?
Answer: The criminals leveraged AI to automate their scams, including generating realistic phishing messages and creating counterfeit websites that mimicked legitimate services. This made their deceptive tactics more convincing and harder for victims to detect.
FAQ 4: What can individuals do to protect themselves from similar scams?
Answer: Individuals can protect themselves by being cautious with unsolicited messages, verifying the authenticity of websites before providing personal information, and using two-factor authentication on accounts. Regularly updating security software can also help guard against potential threats.
FAQ 5: What are the potential consequences for the cybercriminals involved in this operation?
Answer: If found guilty, the cybercriminals could face significant legal repercussions, including fines and imprisonment. Additionally, this case may lead to greater scrutiny and stricter regulations in the digital space to deter future cybercrime activities.
No comment yet, add your voice below!