- Download the lawsuit here.
Google has sued hackers believed to be part of an alleged Chinese cybercrime gang called Outsider Enterprise, which used Gemini AI to steal private data from “hundreds of thousands” of users.
According to a lawsuit filed in New York, private information stolen by Outsider Enterprise, including passwords and credit card numbers, was used to swindle victims out of “millions of dollars.”
Using AI, the hackers created 9,000 fake websites, one million fraudulent web domains, and sent 2.5 million scam texts to Android users during a two-week period in May 2026 alone.
How Outsider Enterprise enabled AI scams: The Chinese cybercrime network used Gemini, Google’s own AI system, to create hundreds of fake websites impersonating companies such as Google and YouTube, as well as government services including the Postal Service and New York’s E-ZPass highway toll service, according to the lawsuit.
- Google alleged that the network coordinated through the Telegram messaging service to share tips and trade software kits that used AI to mass-produce scam messages across communication platforms.
- The gang “built, maintains, and uses a turn-key online software suite that enables criminals, regardless of technical skill, to publish fraudulent websites designed to rob victims,” the complaint states.
- According to Google, this “phishing-for-dummies” software, called Outsider, is available through subscriptions starting at as little as $88 per week. It allows users to create fake websites “in minutes,” launch phishing campaigns, and steal victims’ credit card numbers, bank account credentials, and personal data.
- The software enables scammers to request multiple forms of verification from victims, including SMS, PIN, email, and app-based verification. This allows the Enterprise to bypass various authentication measures, including 3D Secure protections that would otherwise prevent unauthorised credit card transactions.
- Outsider offers more than 290 pre-built templates designed to mimic legitimate websites belonging to financial service providers, brokerage firms, wireless telephone service providers, government agencies, and retailers.
- The group also infringed Google’s trademarks to lend false legitimacy to its criminal schemes. At least 14 Outsider-provided templates feature Google branding, including logos for YouTube, Google Pay, and Google Play.
- Scammers used Google Cloud infrastructure to host phishing websites and Google Drive to store stolen user data.
The scale of Outsider’s phishing operations: Over five months, from November 14, 2025, to April 14, 2026, Google detected more than 1.59 million URLs linked to Outsider Enterprise.
- Cybercriminals stole at least 36,000 payment cards issued by financial institutions across 95 countries using a…
Source link
Disclaimer
We strive to uphold the highest ethical standards in all of our reporting and coverage. We blogs.grocliq.com want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or companies we write about. However, we want to assure our readers that this will not have any impact on the integrity or impartiality of our reporting. We are committed to delivering accurate, unbiased news and information to our audience, and we will continue to uphold our ethics and principles in all of our work. Thank you for your trust and support.
Website Upgradation is going on for any glitch kindly connect at [email protected]
