Interpol dismantled Phishing-as-a-Service platform 16Shop

Under Interpol’s lead, international law enforcement successfully dismantled the notorious phishing-as-a-service platform, 16Shop, last Tuesday, August 8th, 2023.

Reports reveal that the hacking tools associated with 16Shop had covertly circulated within cybercriminal forums since at least November 2017. Over this period, these tools infiltrated the arsenals of more than 70,000 users hailing from 43 countries. As an illicit marketplace, these tools equipped hackers with the capabilities to craft convincing email scams, exploiting unsuspecting users’ personal and financial data.

The operation led to the arrest of a 21-year-old Indonesian mastermind alleged to have overseen the platform’s operations. Additionally, two accomplices from Indonesia and Japan were apprehended concerning the illicit venture. The authorities have confiscated a collection of the suspects’ electronic devices and luxury items.

 

The malicious tools devised by 16Shop comprised numerous phishing kits tailored to infiltrate trusted brands, luring victims into falling prey.

 

Investigators have also uncovered a web of phishing kits engineered to extract credentials and payment data from unsuspecting users of renowned services such as Apple, PayPal, American Express, and Amazon.

An analysis exposed the extent of the reach carried by these phishing kits, revealing that over 150,000 phishing domains were operated by 16Shop’s customers, with each domain a potential gateway to financial ruin for their targets.

Further, the campaign compromised users across multiple regions, extending to Germany, Japan, France, the US, the UK, Thailand, and many others.

These tools were available at an accessible price point of $60 to $150, depending on the targeted brand. The Amazon kit emerged as an affordable alternative, nearly $90 cheaper than its American Express counterpart.

According to Interpol, the rise of “phishing-as-a-service (PaaS)” tools has helped automate cyberattacks, enabling even those with basic skills to launch scams with a few clicks. Cybercriminals now effortlessly deploy phishing pages simultaneously, amplifying the risk to individuals and businesses alike.

The dismantling of 16Shop’s operations indicates successful coordinated efforts on a global scale. As society continues to march towards digitalisation, the success of this operation reaffirms its commitment to safeguarding the online space against cyber criminals.