December 14, 2023 at 05:02PM
Microsoft took down US-based infrastructure and websites used by the cybercrime group, Storm-1152, to sell fraudulent online accounts, earning “millions of dollars” in ill-gotten gains. The gang leaders, based in Vietnam, operated and wrote code for the illicit websites, victimizing Microsoft and other tech companies, and aiding clients in ransomware and phishing attacks.
The meeting notes provided detailed information about Microsoft’s actions against a cybercrime group and its impact on fraudulent online accounts and criminal activities. Microsoft took down US-based infrastructure and websites used by the Storm-1152 gang to sell fraudulent Microsoft accounts, which resulted in significant financial gains for the criminals and cost to Microsoft’s customers. The seized websites included platforms for selling fraudulent accounts and CAPTCHA-solving tokens, and the leaders of the gang, based in Vietnam, were involved in the operation of these illicit websites and services. The criminal group’s client, Scattered Spider, used these phony accounts in other cybercrimes, including ransomware attacks against Microsoft customers. The notes also mention previous ransom demands from Caesars Entertainment and MGM Resorts, resulting in substantial financial damage.