Google has initiated legal action against China-based individuals accused of orchestrating massive text-phishing campaigns. The lawsuit, filed in a New York federal court, targets three unnamed individuals alleged to be affiliates of a China-based criminal organization.

The tech giant refers to this organization in the lawsuit as “Spamouflage Dragon” or “Dragonbridge.” The legal action aims to disrupt the widespread smishing (SMS phishing) operations that have affected numerous users.

Details of the Phishing Operations

The lawsuit details how the accused individuals conducted extensive text-phishing attacks by sending millions of fraudulent messages. These messages often impersonated legitimate entities such as banks, utility providers, or package delivery services.

Victims received texts containing malicious links, which, if clicked, led to fake login pages designed to steal personal credentials or to sites that downloaded malware onto their devices. The hackers exploited Google’s platforms to facilitate their illicit activities. They registered thousands of Google accounts, including Google Voice accounts, and utilized Google Ads to purchase ad space for some of their malicious domains, further spreading their fraudulent schemes.

Google’s Legal Strategy and Response

Google’s lawsuit seeks to prevent the identified hackers from continuing to use its services for their criminal enterprises. In addition to seeking an injunction against their activities, Google is pursuing unspecified damages. This legal move underscores Google’s commitment to protecting its users and platforms from cyber threats.

The company has affirmed its intent to collaborate closely with law enforcement agencies to dismantle these sophisticated criminal networks. This specific legal action represents a proactive step by Google to combat organized cybercrime originating from abroad and to safeguard the digital ecosystem.

Source: https://www.cbsnews.com/news/google-lawsuit-text-message-phishing-attacks/