Google Sues Chinese Cybercrime Network Behind AI-Powered Phishing Operation Targeting Hundreds of Thousands:
AI vs. AI: How Google Is Fighting Back Against Criminals Weaponizing Gemini:
"Outsider Enterprise" used AI to mass-produce fake websites and scam texts — Google fights back with AI of its own:
A Massive AI-Driven Scam Network Exposed:
On Friday, Google announced a lawsuit aimed at dismantling the infrastructure behind an alleged Chinese cybercrime operation called Outsider Enterprise. According to Google, the group used AI to power scam campaigns that sent fraudulent text messages impersonating Google and other major brands in an effort to steal passwords and credit card information.
The scale of the operation is staggering: Google says Outsider Enterprise has scammed hundreds of thousands of victims, with losses estimated in the millions, deploying 9,000 fake websites, one million fraudulent web domains, and 2.5 million scam texts sent to Android users in just two weeks.
Fake Websites Deployed: 9,000
Fraudulent Domains: 1,000,000+
Scam Texts (2-Week Period): 2.5 million
Spam Reports from Users (2 Weeks): 55,000
Fighting AI-Powered Scams with AI:
Google says it's using AI-powered detection tools to identify scam patterns and warn users of suspicious calls and texts, a system that intercepts more than 10 billion scam messages every month across its platforms.
The company has also partnered with major telecom carriers, including AT&T, T-Mobile, and Verizon, to help block scam messages at the network level, and is coordinating directly with the FBI on enforcement.
"55,000 spam texts were flagged by Android users in just two weeks this past May — that's more than two text spam complaints a minute." — Google
Inside the 'Phishing-for-Dummies' Software:
At the center of the operation is a tool called Outsider, a turn-key software suite Google describes as enabling criminals of any technical skill level to publish fraudulent websites designed to steal from victims. The software reportedly costs as little as $88 per week or $200 per month.
The platform offers more than 290 pre-built templates that can replicate legitimate websites — including those of telecom providers, financial institutions, government agencies, and retailers — in a matter of minutes, complete with AI-generated code and a dashboard for tracking phishing campaigns.
Notably, Google alleges the cybercriminals leveraged Google's own Gemini AI platform, as well as Google Drive and Google Cloud infrastructure, to build and host parts of the fraudulent operation.
The Hidden AI War
Nobody Is Telling You About
Our latest documentary deep-dive into the geopolitical struggle for machine intelligence dominance. Explore the two paths of AI development: open source vs. closed architecture.
A Coordinated Criminal Ecosystem:
Google's complaint describes Outsider Enterprise as a division of labor among multiple specialized groups: developers who build and maintain the phishing software and templates, data brokers who supply target lists from public records and breached data, a spammer group that operates the bulk-texting infrastructure (including SIM card banks and modems), and a final group responsible for laundering stolen funds and monetizing stolen credentials.
Much of this coordination, according to Google, happens openly on Telegram channels, where members allegedly train each other, share strategies, and even sell stolen credit card data to one another.
Federal Law Enforcement Steps In:
The FBI confirmed to TechCrunch that, in coordination with Google and Lumen's Black Lotus Labs, it has seized several domains tied to the operation, along with Shopify storefronts and accounts used to test the phishing platform.
Since July 2023, the FBI estimates Outsider Enterprise's phishing platform has enabled the theft of at least 3.87 million credit cards, resulting in approximately $1.9 billion in losses. Google separately reported that over a five-month period from November 2025 to April 2026, it detected more than 1.59 million URLs connected to the network, with at least 36,000 stolen payment cards issued by financial institutions in 95 countries traced back to the operation.
Estimated Stolen Credit Cards Since 2023: 3,870,000+
Estimated Total Losses: $1.9 billion
URLs Detected (Nov 2025 - Apr 2026): 1.59 million+
Countries Affected: 95
The Legal Fallout:
Google's lawsuit accuses the operators behind Outsider Enterprise of brand impersonation, copyright infringement, racketeering, wire fraud, and false advertising. The company is seeking both compensatory and punitive damages, as well as a court order to halt the group's activities entirely.
What This Means for Enterprise Security:
This case is a stark reminder that AI is now a double-edged sword in cybersecurity: the same generative tools that help businesses move faster are being weaponized to create convincing phishing sites and scam campaigns at unprecedented scale. For enterprises, the lesson is clear — security and AI strategy can no longer be treated as separate conversations.
At Otherworlds AI, we help businesses deploy AI responsibly and securely through our Agent+ Business AI platform, giving organizations the control and visibility they need to protect their operations while still benefiting from automation.
Whether it's safeguarding customer data, monitoring for suspicious activity, or building secure enterprise AI workflows integrated with tools like Google Opal automated workflows, the future of enterprise AI has to be built on a foundation of trust and security from day one.
