Hong Kong police and Interpol uncover servers and apps used by global phishing syndicate | South China Morning Post
Hong Kong police and Interpol uncover servers and apps used by global phishing syndicate
Bogus apps impersonated banks, media players and others to steal data from victims’ smartphones
Registered subscribers for servers were individuals in mainland China, Philippines and Cambodia
Clifford Lo
Clifford Lo
+ myNEWS
Published: 7:00am, 6 Feb, 2023
Why you can trust SCMP
56
3
The 11-month joint operation began last February and was code-named “Magicflame”. Photo: Shutterstock
The 11-month joint operation began last February and was code-named “Magicflame”. Photo: Shutterstock
Hong Kong police have cracked the local operation of an international phishing syndicate that used 563 bogus mobile applications to spy on phones globally and steal information.
Officers also tracked down 258 servers around the world that were linked with the apps, according to Senior Superintendent Raymond Lam Cheuk-ho of the force’s cyber security and technology crime bureau.
The 11-month joint operation with Interpol began last February and was code-named “Magicflame”.
The apps, planted with the Trojan virus, impersonated businesses such as banks and financial institutions. Photo: Shutterstock
The apps, planted with the Trojan virus, impersonated businesses such as banks and financial institutions. Photo: Shutterstock
It came amid a rise in cybercrime worldwide, with some victims losing their life savings after hackers stole their personal details and cleaned out their bank accounts.
Lam said the apps, planted with the Trojan virus, impersonated businesses such as banks, financial institutions, media players, and dating and camera apps.
He revealed that 192 of the servers were in the city and cybercriminals kept switching to different ones in Hong Kong and abroad to avoid detection.
The Post learned that the registered subscribers for the servers were individuals in mainland China, the Philippines and Cambodia who had set up their accounts online.
According to police, hackers sent phishing SMS messages that appeared to be from official sources and directed recipients to click on a link.
Hong Kong police arrest 13 syndicate suspects for laundering HK$168 million
6 Dec 2022
Clicking on the link would result in the bogus apps being downloaded into the recipients’ smartphones, allowing the hackers to steal their victims’ personal information such as bank account and credit card details, phone contacts and photographs.
Such data would be sent to the servers in Hong Kong and elsewhere before being transferred to another 153 overseas.
EVERY SATURDAY
Hong Kong Update Newsletter
Our weekly round-up of the best news, stories and opinion from Hong Kong.
GET THE NEWSLETTER
By registering, you agree to our T&C and Privacy Policy
Superintendent Wilson Fan Chun-yip, also from the cybercrime bureau, said the criminals could use the stolen data to transfer money from the victims’ accounts and shop online.
He said the hackers could read all text messages and emails, listen to audio recordings and track people’s locations, and could even turn on their victims’ smartphones to eavesdrop on conversations and take photographs secretly.
Police arrest 56 for scamming HK$7 million out of Hong Kong and Macau residents
16 Nov 2022
The investigation revealed that the servers stored personal data stolen from 519 phones belonging to people in different countries, mostly Japan and South Korea. None of the victims lived in Hong Kong, police said.
“We believe it was an overseas-based syndicate that made use of the city’s internet network to carry out its illegal activities,” Lam said.
No arrests were made in the city, but police identified some suspects and passed their information to related overseas enforcement agencies via Interpol.
“We believe the syndicate ceased its illegal operations after the joint operation with Interpol,” he said.
Meanwhile, Hong Kong police dealt with 473 phishing attacks in the first 10 months of last year, involving financial losses of HK$8.9 million (US$1.1 million). The biggest loss in a single case was HK$170,000.
There were 18,660 reports of cybercrimes over that period, up two-fifths from 13,163 cases in the same period of 2021. The amount victims reported lost rose by almost a tenth to HK$2.65 billion.
Hong Kong saw a sevenfold increase in technology-based crimes in the decade from 2011 to 2021.
Cybercrime reports jumped from 2,206 in 2011 to 16,159 in 2021, while the amount of money leapt 20 times to HK$3.02 billion in 2021.
HK$9.64 million love scam: ‘cancer patient in Poland’ dupes Hong Kong woman
1 Feb 2023
Police urged the public to stay alert and avoid connecting to any suspicious websites or mobile apps via hyperlinks embedded in emails or text messages, and to only download applications from official app stores.
To combat online and phone fraud, police introduced the “Scameter” search engine last September, accessible at the CyberDefender website.
Anyone who receives suspicious calls or comes across online sellers, friend requests, job advertisements and investment websites, can use the Scameter to check the risks
Bogus apps impersonated banks, media players and others to steal data from victims’ smartphones
Registered subscribers for servers were individuals in mainland China, Philippines and Cambodia
Clifford Lo
Clifford Lo
+ myNEWS
Published: 7:00am, 6 Feb, 2023
Why you can trust SCMP
56
3
The 11-month joint operation began last February and was code-named “Magicflame”. Photo: Shutterstock
The 11-month joint operation began last February and was code-named “Magicflame”. Photo: Shutterstock
Hong Kong police have cracked the local operation of an international phishing syndicate that used 563 bogus mobile applications to spy on phones globally and steal information.
Officers also tracked down 258 servers around the world that were linked with the apps, according to Senior Superintendent Raymond Lam Cheuk-ho of the force’s cyber security and technology crime bureau.
The 11-month joint operation with Interpol began last February and was code-named “Magicflame”.
The apps, planted with the Trojan virus, impersonated businesses such as banks and financial institutions. Photo: Shutterstock
The apps, planted with the Trojan virus, impersonated businesses such as banks and financial institutions. Photo: Shutterstock
It came amid a rise in cybercrime worldwide, with some victims losing their life savings after hackers stole their personal details and cleaned out their bank accounts.
Lam said the apps, planted with the Trojan virus, impersonated businesses such as banks, financial institutions, media players, and dating and camera apps.
He revealed that 192 of the servers were in the city and cybercriminals kept switching to different ones in Hong Kong and abroad to avoid detection.
The Post learned that the registered subscribers for the servers were individuals in mainland China, the Philippines and Cambodia who had set up their accounts online.
According to police, hackers sent phishing SMS messages that appeared to be from official sources and directed recipients to click on a link.
Hong Kong police arrest 13 syndicate suspects for laundering HK$168 million
6 Dec 2022
Clicking on the link would result in the bogus apps being downloaded into the recipients’ smartphones, allowing the hackers to steal their victims’ personal information such as bank account and credit card details, phone contacts and photographs.
Such data would be sent to the servers in Hong Kong and elsewhere before being transferred to another 153 overseas.
EVERY SATURDAY
Hong Kong Update Newsletter
Our weekly round-up of the best news, stories and opinion from Hong Kong.
GET THE NEWSLETTER
By registering, you agree to our T&C and Privacy Policy
Superintendent Wilson Fan Chun-yip, also from the cybercrime bureau, said the criminals could use the stolen data to transfer money from the victims’ accounts and shop online.
He said the hackers could read all text messages and emails, listen to audio recordings and track people’s locations, and could even turn on their victims’ smartphones to eavesdrop on conversations and take photographs secretly.
Police arrest 56 for scamming HK$7 million out of Hong Kong and Macau residents
16 Nov 2022
The investigation revealed that the servers stored personal data stolen from 519 phones belonging to people in different countries, mostly Japan and South Korea. None of the victims lived in Hong Kong, police said.
“We believe it was an overseas-based syndicate that made use of the city’s internet network to carry out its illegal activities,” Lam said.
No arrests were made in the city, but police identified some suspects and passed their information to related overseas enforcement agencies via Interpol.
“We believe the syndicate ceased its illegal operations after the joint operation with Interpol,” he said.
Meanwhile, Hong Kong police dealt with 473 phishing attacks in the first 10 months of last year, involving financial losses of HK$8.9 million (US$1.1 million). The biggest loss in a single case was HK$170,000.
There were 18,660 reports of cybercrimes over that period, up two-fifths from 13,163 cases in the same period of 2021. The amount victims reported lost rose by almost a tenth to HK$2.65 billion.
Hong Kong saw a sevenfold increase in technology-based crimes in the decade from 2011 to 2021.
Cybercrime reports jumped from 2,206 in 2011 to 16,159 in 2021, while the amount of money leapt 20 times to HK$3.02 billion in 2021.
HK$9.64 million love scam: ‘cancer patient in Poland’ dupes Hong Kong woman
1 Feb 2023
Police urged the public to stay alert and avoid connecting to any suspicious websites or mobile apps via hyperlinks embedded in emails or text messages, and to only download applications from official app stores.
To combat online and phone fraud, police introduced the “Scameter” search engine last September, accessible at the CyberDefender website.
Anyone who receives suspicious calls or comes across online sellers, friend requests, job advertisements and investment websites, can use the Scameter to check the risks