Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally

AMSTERDAM, Sept. 19, 2024 /PRNewswire/ -- Group-IB, a leading creator of cybersecurity technologies to investigate, prevent, and fight digital crime, announced today that it has contributed a international operation code named "Operation Kaerb" coordinated by Europol and Ameripol–in partnership with European and Latin American law enforcement agencies and judiciary authorities–which resulted in the arrest of 17 cybercriminals in Argentina, Chile, Colombia, Ecuador, Peru, and Spain, who were behind the iServer phishing-as-a-platform targeting mobile users worldwide. The iServer phishing-as-a-service platform, which was active for five years, is reported by law enforcement investigators to have targeted over 1.2-million mobile phones, and claimed approximately 483,000 victims worldwide. The administrator of the iServer phishing platform, an Argentinian national, was also arrested during the multi-agency law enforcement operation that took place between 10 to 17 September 2024.

Active for at least five years, the iServer platform was primarily used by Spanish-speaking criminals in North and South America, but it has since expanded its reach into Europe and other regions. While iServer was essentially an automated phishing platform, its specific focus on harvesting credentials to unlock stolen phones set it apart from typical phishing-as-a-service offerings. iServer's platform features a web interface that enables low-skilled criminals, known as "unlockers," to steal device passwords, user credentials from cloud-based mobile platforms and other personal information from victims. This allows them to bypass "Lost Mode" and unlock phones acquired through illegal means.

During its investigations into iServer's criminal activities, Group-IB specialists also uncovered the structure and roles of criminal syndicates operating with the platform: the platform's owner/developer sells access to "unlockers," who in their turn provide phone unlocking services to other criminals with locked stolen devices. The phishing attacks are specifically designed to gather data that grants access to physical mobile devices, enabling criminals to acquire users' credentials and local device passwords to unlock devices or unlink them from their owners. iServer automates the creation and delivery of phishing pages that imitate popular cloud-based mobile platforms, featuring several unique implementations that enhance its effectiveness as a cybercrime tool.

Unlockers obtain the necessary information for unlocking the mobile phones, such as IMEI, language, owner details, and contact information, often accessed through lost mode or via cloud-based mobile platforms. They utilize phishing domains provided by iServer or create their own to set up a phishing attack. After selecting an attack scenario, iServer creates a phishing page and sends an SMS with a malicious link to the victim.

A "redirector" link is used to filter and verify the visitor before leading them to the final phishing page; if they do not comply with the rules, access is denied. Once victims enter their credentials, these are verified by the platform, and additional information like OTP codes may be requested.

Ultimately, criminals receive the stolen and validated credentials through the iServer web interface, enabling them to unlock a phone, turn off "Lost mode" and untie it from the owner's account.

"We are honored to stop millions of cyber attacks targeting mobile users. The arrest of the syndicate members, including the mastermind, has averted significant fraud and safeguarded the personal lives of individuals across various regions," said Dmitry Volkov, CEO of Group-IB. "This serves as yet another great example of cross border collaboration, and we will continue to support local and international law enforcement efforts to combat cybercrime globally."

ABOUT GROUP-IB

Established in 2003, Group-IB is a leading creator of cybersecurity technologies to investigate, prevent, and fight digital crime globally. Headquartered in Singapore, and with Digital Crime Resistance Centers in the Middle East and Africa, Europe, Central Asia, and the Asia-Pacific, Group-IB analyses and neutralizes regional and country-specific cyber threats via its Unified Risk Platform, offering unparalleled defence through its industry-leading Threat Intelligence, Fraud Protection, Digital Risk Protection, Managed Extended Detection and Response (XDR), Business Email Protection, and External Attack Surface Management solutions, catering to government, retail, healthcare, gaming, financial sectors, and beyond. Group-IB collaborates with international law enforcement agencies like INTERPOL, EUROPOL, and AFRIPOL to fortify cybersecurity worldwide, and has been awarded by advisory agencies including Aite-Novarica, Gartner, Forrester, Frost & Sullivan, and KuppingerCole.

For more information, visit us at www.group-ib.com or connect with us on LinkedIn, X, Facebook, and Instagram.

FOR MEDIA INQUIRIES
Group-IB Public Relations
PR@Group-IB.com  

** The press release content is from PR Newswire. Bastille Post is not involved in its creation. **

Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally

Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally

Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally

Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally

Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally

Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally

OXFORD, England, Sept. 19, 2024 /PRNewswire/ -- Lacuna Space is revolutionising satellite technology to provide affordable, global Internet of Things (IoT) connectivity for remote devices and equipment. In an era where connectivity is often limited to densely populated areas, a significant challenge remains in extending this reach to less connected, yet crucial regions. Lacuna Space is at the forefront of addressing this challenge by designing a low-power and battery-efficient device that enables users to send data from even the most remote regions, eliminating the need for traditional infrastructure.

The battery-efficient IoT devices, which can operate for up to five years on a single charge, make Lacuna's system ideal for long-term monitoring in remote areas. Whether tracking environmental changes, managing agricultural systems, or monitoring equipment performance, Lacuna Space's satellite-enabled IoT ensures reliable, long-term data transmission from anywhere.

After several years of close collaboration with Australian regulators, during which Lacuna demonstrated their system and showcased its value, Lacuna Space has now secured the necessary licenses and regulatory approval for commercial operations in Australia.  

As the sixth-largest country in the world by land area, Australia's vast geographical expanse creates significant challenges in ensuring connectivity across all regions. This makes it an ideal environment for satellite IoT solutions. Agriculture is a particularly dominant industry in Australia, accounting for 55% of land use and 74% of the nation's water resources. Lacuna Space's satellite IoT enables remote, low-cost sensors to transmit critical data via its global constellation, offering insights where traditional infrastructure is impractical.

In Northern Queensland, a particularly dry and remote region, Lacuna Space is working with a company to manage water levels and drought conditions. Here, efficient water management is crucial to sustain livestock grazing and support local communities during droughts. By eliminating the need for expensive terrestrial infrastructure, Lacuna's satellite IoT can help provide long-term insights to help mitigate the impact of droughts by ensuring more efficient water and resource management.

Lacuna Space is uniquely positioned to address connectivity challenges across vast and remote regions such as Australia. The examples in this article highlight just a few of the potential solutions aimed at overcoming obstacles that are prevalent across Australia. Discover how Lacuna Space can help your business in remote regions – connect with us on LinkedIn or reach out today: https://lacuna-space.com/contact/

Contact:
Kitty Howie
kitty@lacuna-space.com

** The press release content is from PR Newswire. Bastille Post is not involved in its creation. **

Lacuna Space: Open for Business In Australia