Security News > 2024 > April > LabHost phishing service with 40,000 domains disrupted, 37 arrested
The LabHost phishing-as-a-service platform has been disrupted in a year-long global law enforcement operation that compromised the infrastructure and arrested 37 suspects, among them the original developer.
The phishing platform launched in 2021 and enabled cybercriminals paying a monthly subscription fee to launch effective attacks using a variety of phishing kits for banks and services in North America.
LabHost also offered infrastructure for hosting phishing pages and automatic phishing email generation and distribution, allowing low-skilled cybercriminals an easy way to carry out attacks.
"The investigation uncovered at least 40 000 phishing domains linked to LabHost, which had some 10 000 users worldwide," reads Europol's announcement.
Between April 14 and 17, 2024, police forces worldwide performed simultaneous searches at 70 addresses, arresting 37 individuals suspected to be connected to the LabHost service.
The Australian Joint Policing Cybercrime Coordination Centre also took down 207 servers that hosted phishing websites created through the LabHost service.