Google has launched a major legal offensive against an alleged cybercrime syndicate accused of operating a vast phishing infrastructure that targeted internet users through fake websites, fraudulent messages, and identity theft schemes.

The technology giant claims the operation, identified as “Outsider Enterprise,” used sophisticated tactics, including artificial intelligence-powered tools, to impersonate trusted organizations and steal sensitive information from unsuspecting victims.

Thousands of Fraudulent Websites Identified

According to Google’s legal complaint, investigators uncovered an extensive network consisting of approximately 9,000 fraudulent websites and more than one million malicious URLs allegedly linked to the operation.

The company alleges that the network enabled cybercriminals to conduct large-scale phishing campaigns designed to capture passwords, banking details, credit card information, and other personal data.

Google stated that the objective of the lawsuit is to disrupt the infrastructure supporting the operation and prevent further harm to consumers.

Fake Messages Masquerading as Trusted Brands

Investigators claim the network distributed phishing kits that allowed criminals to send deceptive messages appearing to originate from well-known companies and legitimate services.

The fraudulent communications reportedly directed users to counterfeit websites engineered to collect login credentials and financial information. Google said the operation leveraged modern technologies to increase the credibility and effectiveness of its scams.

Millions of Suspicious Messages Detected

The company reported a significant spike in phishing-related activity during a recent monitoring period. Over a two-week span in May, Android users allegedly received millions of messages containing links associated with websites generated through the suspected network.

Google also noted a substantial increase in user reports involving spam and phishing attempts, highlighting the scale of the campaign.

Collaboration With Law Enforcement

Google confirmed that it is working closely with law enforcement agencies, including the Federal Bureau of Investigation (FBI), to identify individuals behind the operation and dismantle its infrastructure.

Cybersecurity officials have warned that criminal groups are increasingly using artificial intelligence to create more convincing scams, making detection and prevention more challenging for both users and security teams.

Telecom Industry Also Joins Fight

As part of its broader anti-fraud strategy, Google is collaborating with major telecommunications providers to reduce the number of malicious messages reaching consumers. The company is also supporting policy measures aimed at strengthening long-term protections against phishing and digital fraud.

Security experts say the case underscores the growing sophistication of cybercriminal organizations and the need for stronger cooperation between technology companies, telecom operators, and law enforcement agencies worldwide.

The legal proceedings remain ongoing as investigators continue tracking the network’s activities and identifying additional infrastructure linked to the operation.

Bengaluru, June 18, 2026: A 62-year-old Bengaluru resident has allegedly lost more than ₹7.44 lakh in a sophisticated SIM swap fraud, exposing ongoing vulnerabilities in mobile-linked banking security systems and raising concerns about the growing threat of cybercrime.

According to a police complaint, the victim’s mobile number suddenly became inactive for nearly a week, preventing him from receiving calls, messages, or banking alerts. During this period, cybercriminals are believed to have gained unauthorized access to his bank account and carried out multiple transactions without his knowledge.

Mobile Number Inactive for Several Days

The incident reportedly occurred between May 31 and June 7, 2026. The victim noticed that his mobile connection had stopped working and initially suspected a technical issue. He approached his telecom service provider seeking assistance, but the disruption continued for several days.

Investigators suspect that fraudsters exploited this interruption to execute a SIM swap attack—a cybercrime technique that allows criminals to take control of a victim’s phone number. Once access is gained, they can intercept banking alerts, verification messages, and one-time passwords (OTPs) used for account authentication.

Fraud Discovered After Service Restoration

The alleged scam came to light when the victim regained access to his mobile number and attempted to log into his banking application. After encountering login problems, he visited an ATM to review his account activity.

The account statement reportedly revealed several unauthorized transactions. Alarmed by the findings, the victim immediately contacted his bank and reported the suspicious activity.

Bank officials later confirmed that ₹7,44,831 had been withdrawn or transferred from the account through transactions that the account holder claims he did not authorize.

Police Launch Cyber Fraud Investigation

Following the discovery, the victim lodged a complaint through the National Cyber Crime Helpline and submitted a formal report to law enforcement authorities. Police have since registered a case and initiated a detailed investigation.

Officials are examining bank records, telecom logs, and digital evidence to identify how the attackers gained access to the victim’s mobile number and banking credentials. Authorities have also sought information from the telecom operator regarding the status and handling of the SIM during the period of disruption.

How SIM Swap Frauds Work

Cybersecurity specialists explain that SIM swap scams typically involve fraudsters convincing telecom providers to transfer a victim’s mobile number to a new SIM card under their control. Once successful, criminals can receive OTPs and security notifications intended for the legitimate user, enabling them to bypass two-factor authentication safeguards.

This method allows cybercriminals to access banking applications and conduct fund transfers before victims become aware of the breach.

Experts Urge Greater Vigilance

The case has renewed concerns about reliance on OTP-based verification systems for financial transactions. Security experts recommend that users immediately report unexpected loss of mobile network service, monitor bank accounts regularly, and enable additional security features wherever possible.

Authorities have also advised citizens to remain cautious of suspicious calls, phishing messages, and requests for personal or banking information. Any prolonged mobile service disruption should be reported promptly to both telecom providers and financial institutions.

Investigators are exploring whether the incident may be connected to a broader cybercrime operation targeting multiple victims through coordinated SIM swap attacks. The probe remains ongoing.

Indian law enforcement agencies are investigating an alleged cross-border cybercrime operation that reportedly exploits personal information collected from Indian visitors to casinos in Nepal. The probe has raised concerns about identity theft, financial fraud, and organized cybercrime networks operating beyond national boundaries.

Investigators claim that sensitive personal information belonging to tourists from several Indian states, including Delhi, Maharashtra, Bihar, and Rajasthan, may have been unlawfully accessed and later used in a range of cyber fraud schemes.

Personal Documents Allegedly Targeted

According to preliminary findings, cybercriminal groups are suspected of obtaining identity documents such as Aadhaar cards, passports, mobile numbers, and other Know Your Customer (KYC) records from Indian visitors. Authorities believe the data may have been collected through a network involving local contacts and individuals with access to visitor information.

Officials are examining whether insiders connected to hospitality or casino-related operations played any role in facilitating unauthorized access to customer records.

Stolen Data Used for Sophisticated Scams

Investigators say the alleged operation extends far beyond simple identity theft. Once personal information is acquired, cybercriminals reportedly create detailed profiles of potential targets, enabling highly customized fraud attempts.

One of the major concerns highlighted by authorities is the growing use of so-called “digital arrest” scams. In these schemes, fraudsters allegedly impersonate officials from law enforcement or regulatory agencies and falsely accuse victims of involvement in financial crimes. Victims are then pressured into transferring money to avoid fabricated legal consequences.

The use of authentic personal information reportedly makes these scams more convincing and difficult for victims to identify.

Fake Accounts and Money Laundering Concerns

Authorities are also investigating allegations that stolen identity documents have been used to open fraudulent bank accounts across multiple financial institutions. These accounts may have served as channels for moving and concealing proceeds generated through cyber fraud activities.

Investigators are tracing banking records and transaction patterns to determine whether the network has links to larger money laundering operations spanning multiple jurisdictions.

Blackmail and Extortion Tactics Emerge

Another aspect of the investigation involves allegations of blackmail targeting individuals who visited casinos and preferred to keep their travel activities private. Officials suspect that criminals gathered information about visitors and later threatened to disclose sensitive details to family members or associates unless payments were made.

Cybercrime experts note that such extortion methods combine social engineering techniques with personal data exploitation, increasing pressure on victims to comply with demands.

Border Operation Reveals Suspicious Documents

Security agencies recently reported the recovery of numerous suspicious identity documents during an operation near the Raxaul border. Officials believe the discovery may provide important leads regarding the movement of personal data and the creation of false identities used in cybercrime activities.

The findings have strengthened suspicions that the network operates across borders and may involve multiple individuals engaged in identity fraud, financial crime, and digital deception.

Investigation Expands Into International Links

Authorities are currently analyzing digital evidence, financial records, communication channels, and potential overseas connections linked to the suspected network. The objective is to identify those responsible and determine the full scale of the operation.

Officials say the investigation remains active and could uncover additional individuals, financial routes, and cybercrime cells connected to the alleged scheme.

The case highlights the growing threat posed by international cybercriminal networks and underscores the importance of protecting personal information while traveling abroad.