LabHost: Authorities dismantle $249 per month international phishing service utilized by 2,000 cybercriminals

Law enforcement officials in 19 countries have successfully shut down an online platform known as LabHost that was generating at least $1 million in revenue by selling phishing kits to cybercriminals. This platform enabled hackers to create fake websites aimed at deceiving individuals into divulging sensitive information such as email addresses, passwords, and bank details. The Metropolitan Police in the United Kingdom spearheaded this operation, which resulted in the arrest of 37 suspects and the execution of search warrants at over 70 locations in the UK and abroad. LabHost had amassed a significant amount of data, including 480,000 bank card numbers, 64,000 pin numbers, and over 1 million passwords for various online services.

Europol, the European Union’s law enforcement agency, played a crucial role in coordinating this international police action. According to Europol, four individuals connected to the operation of LabHost, including the service’s developer, were apprehended. The investigation into LabHost revealed the presence of approximately 40,000 phishing domains and around 10,000 users worldwide. LabHost offered a variety of illicit services for a monthly subscription fee averaging $249, allowing criminals to easily customize and deploy phishing attacks on targets such as financial institutions, postal delivery services, and telecommunication providers. Additionally, LabHost provided criminals with a campaign management tool called LabRat, which enabled real-time monitoring and control of phishing attacks, while circumventing security measures like two-factor authentication.

The Metropolitan Police in London disclosed that LabHost had garnered close to £1 million ($1,173,000) in payments from its criminal users, many of whom were identified by cybercrime detectives. Approximately 2,000 users had registered with the site and were paying for monthly subscriptions. The takedown of LabHost marks a significant victory in the global fight against cybercrime, as it dealt a severe blow to the operations of cybercriminals who rely on phishing to perpetrate fraudulent activities. The success of this operation underscores the importance of international cooperation among law enforcement agencies in combatting the ever-evolving threat posed by cybercriminals and their sophisticated tactics.

The closure of LabHost not only disrupted the flow of revenue to cybercriminals but also prevented the further proliferation of phishing attacks that could have targeted tens of thousands of individuals worldwide. The collaboration between law enforcement agencies from 19 countries highlights the significance of cross-border partnerships in dismantling criminal enterprises that operate on a global scale. By dismantling LabHost and apprehending its operators, authorities have sent a clear message to cybercriminals that their illicit activities will not go unpunished. This operation serves as a reminder of the ongoing efforts to safeguard individuals and organizations from falling victim to cyber threats and underscores the commitment of law enforcement agencies to hold perpetrators of cybercrimes accountable for their actions.