The US Department of Justice has successfully seized 39 domains and servers linked to a Pakistan-based cybercrime group called HeartSender. The network was responsible for operating websites that sold phishing kits and tools for fraud, which had been active since at least 2020, targeting businesses and individuals around the world. The operation, carried out in collaboration with the Dutch National Police, aims to disrupt this international cybercrime marketplace.
The group provided services like email extractors, scam pages, and phishing toolkits, primarily targeting victims in the US, leading to financial losses exceeding $3 million. In addition to the tools, Saim Raza also offered instructional content, including YouTube videos, to guide users on executing fraudulent schemes like business email compromise (BEC).
Also Read: Pakistan Achieves Top-Tier Cybersecurity Status
BEC scams have caused massive financial harm by deceiving companies into transferring payments to hacker-controlled accounts. The seizure of these malicious resources is a significant blow to the cybercrime infrastructure, especially since they were designed to bypass anti-spam protections and support widespread fraud operations.
This operation underscores the importance of international collaboration in combating cybercrime. The FBI, with the help of global partners, is continuing to investigate the full scope of the group’s activities and its impact on the digital world.
