Daryna Antoniuk
U.S. and Dutch law enforcement agencies have seized dozens of domains linked to a Pakistan-based cybercrime network operated by a group known as Saim Raza.
The group, also tracked under the name HeartSender, has been using these websites since at least 2020 to sell hacking tools — including phishing kits, scam pages and email extractors — to thousands of customers worldwide, according to a statement from the Justice Department.
“A cybercriminal can use these tools to send large amounts of spam or phishing emails or to steal someone’s login credentials,” the Dutch police said, adding that Saim Raza’s marketplaces also sold access to compromised infrastructure, including email servers, WordPress accounts, and web hosting control panels such as cPanel.
“With stolen cPanel or WordPress accounts, criminals can take control of a website or server’s management system,” the police warned.
Saim Raza’s customers primarily used these tools to carry out business email compromise (BEC) schemes, deceiving companies into transferring funds to accounts controlled by hackers. The group’s operations in the U.S. alone resulted in more than $3 million in losses, authorities said.
“The criminal group behind HeartSender operated very professionally,” the Dutch police noted.
No comments:
Post a Comment