FBI, Google Dismantle ‘Outsider Enterprise’ Phishing Service

The platform used more than 9,000 phishing sites, stealing nearly 4 million credit cards and causing roughly $1.9 billion in losses. The post FBI, Google Dismantle ‘Outsider Enterprise’ Phishing Service appeared first on SecurityWeek .

According to the report, the FBI, Google, and partners dismantled the China-based 'Outsider Enterprise' phishing-as-a-service platform, which used over 8,000–9,000 phishing domains and sites to steal an estimated 3.87 million credit cards and cause roughly $1.9 billion in fraud losses since mid-2023.[1][3][5] Other sources indicate Outsider Enterprise weaponized AI tools, including Google's Gemini, to generate phishing content and scale operations via 9,000 fake sites, 1 million domains, and millions of scam texts.[2][3][6] From a CyberSE.AI perspective, this illustrates how commercially available AI and turnkey phishing kits can drastically lower the barrier to large-scale, global fraud campaigns, making AI-powered social engineering a critical threat vector for enterprises. Organizations should continuously red team their email, SMS, and web channels against AI-generated phishing, and ensure CISOs have specific policies, controls, and vendor requirements addressing AI-assisted fraud and phishing-as-a-service ecosystems.