Even the Mafia is getting involved in phishing attacks now

Hook on Keyboard
(Image credit: wk1003mike / Shutterstock )
Audio player loading…

Cybercriminals have raked in millions from phishing attacks (opens in new tab) which is why it's not a big surprise that the Italian Mafia has adopted similar tactics in recent years.

According to a new press release (opens in new tab) from Europol (opens in new tab), the Spanish National Police with support from the Italian National Police, Europol and Eurojust have dismantled an organized crime group linked to the Italian Mafia that was involved in online fraud, money laundering, drug trafficking and property crime.

However, the suspects in this case also used phishing attacks and other types of online fraud including SIM swapping (opens in new tab) and business email compromise (BEC (opens in new tab)) to defraud hundreds of victims. In the last year alone, they were able to bring in €10 million ($11.7 million) in illegal funds before laundering this money through a wide network of money mules and shell companies.

In total, the operation resulted in 106 arrests that were mostly in Spain with some in Italy, 16 house searches and 118 bank accounts frozen. Law enforcement agencies also seized a number of electronic devices as well as 224 credit cards, SIM cards, POS systems (opens in new tab) and a marijuana plantation.

Becoming cybercriminals

The large criminal network disrupted by the Spanish National Police and Italian National Police was very well organized in a pyramid structure that included different specialized areas and roles.

Among the members of the criminal group, there were computer experts who created the phishing sites used in their attacks and carried out cyber fraud. However, there were also recruiters and organizers responsible for finding mules to move the stolen money and money laundering experts including several cryptocurrency (opens in new tab) experts.

Most of the suspected members of the group are Italian nationals including some who have ties to the Italian Mafia. The operation was based out of Tenerife in the Spain's Canary Islands and the suspects tricked their victims (many of whom were Italian nationals) into sending large sums to bank accounts controlled by the criminal network. This money was then laundered through a wide network of money mules and shell companies.

Now that the Italian Mafia has shown that it's possible to use tactics commonly employed by cybercriminals, other criminal organizations may follow suit and try their hand at becoming cybercriminals themselves.

Via BleepingComputer (opens in new tab)

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home.