US-Dutch action targets ‘Pakistani’ cybercrime outfit

Posted on by Mahi Bukhari

1. Scope of the Operation

  • The cybercrime network, known as The Manipulaters, operated for over a decade.
  • The US and Dutch authorities dismantled the network under Operation Heart Blocker.
  • 39 domains and multiple servers linked to the network were seized.
  • The estimated financial losses caused by the group in the US alone exceed $3 billion.

2. Main Cybercrime Activities

  • The group provided phishing kits that mimicked login pages of major platforms (e.g., Microsoft 365, iCloud).
  • Their spam delivery service, HeartSender, helped criminals bypass security filters and distribute phishing emails at scale.
  • They specialized in business email compromise (BEC) scams, tricking companies into fraudulent transactions.
  • Credential theft was a key component, enabling large-scale financial fraud.

3. Modus Operandi

  • They not only sold hacking tools but also trained cybercriminals via YouTube tutorials.
  • Their services were marketed as “fully undetectable” (FUD) to evade security systems.
  • Stolen credentials were resold on underground markets.

4. International Crackdown

  • Dutch authorities set up a platform for individuals to check if their emails were compromised.
  • As part of Operation Talent, two arrests were made in Spain, and 17 servers & 12 domains were seized.
  • Notorious hacking forums like Cracked.io and Nulled.to were also linked to the network.
  • FBI Houston Field Office, along with Dutch cybercrime units, played a key role in the takedown.

5. The Role of Saim Raza

  • Identified as the leader of The Manipulaters.
  • Operated under multiple aliases (e.g., Fudtools, Fudpage, Fudsender, FudCo).
  • Attempted to erase his cybercrime history, reaching out to journalist Brian Krebs in 2024.
  • Claimed he had left cybercrime and fled Pakistan, though his whereabouts remain unclear.

6. Impact and Implications

  • The dismantling of HeartSender is a major victory against cybercrime.
  • Despite the crackdown, similar phishing and hacking platforms continue to emerge.
  • It underscores the importance of cybersecurity awareness and strong international law enforcement collaboration.

Related Posts

Leave a Reply

Your email address will not be published. Required fields are marked *