techcrunch.com web signal

Google Sues AI Phishing Ring Outsider Enterprise

google cybersecurity ai-crime phishing

Key insights

  • Outsider Enterprise rents its phishing kit for $88 per week, offering 290-plus AI-generated templates that let non-technical criminals launch attacks immediately.
  • The FBI estimates the platform enabled $1.9 billion in losses and 3.87 million stolen credit cards since July 2023.
  • Google, AT&T, T-Mobile, and Verizon collaborated on message blocking while Google intercepts more than 10 billion scam messages monthly.

Why this matters

Outsider Enterprise shows that AI has reduced large-scale phishing to a commodity subscription, with an $88-per-week price point giving unsophisticated actors access to 290-plus ready-made impersonation templates. The group's use of Google's own Gemini to generate fake sites turns AI providers into unwitting infrastructure for fraud, forcing every major AI platform to answer whether its tools are being similarly weaponized. With the FBI tracking $1.9 billion in losses since July 2023, the lawsuit establishes a civil-remedy framework that AI companies can now replicate to pursue criminal networks exploiting their platforms.

Summary

Google has sued Outsider Enterprise, a Chinese cybercrime network that turned phishing into a subscription product using AI. Operators pay $88 per week or $200 per month for access to 290-plus templates mimicking banks, telecoms, and government agencies. Using Google's own Gemini among other AI platforms, they built 9,000 fake sites and 1 million fraudulent domains, sending 2.5 million texts to Android users in just two weeks. Essentially: (Google, FBI) vs. Outsider Enterprise. - The FBI links the platform to $1.9 billion in losses and 3.87 million stolen credit cards since July 2023. - Google blocks more than 10 billion scam messages monthly, partnering with AT&T, T-Mobile, and Verizon to intercept messages. - Four internal groups handle development, targeting, delivery, and cash-out, all coordinating through Telegram. When phishing kits rent by the week, takedowns reduce volume but rarely end the threat.

Potential risks and opportunities

Risks

  • Outsider Enterprise's developer group could reconstitute the subscription platform under new domains quickly if seized infrastructure targets only URLs rather than the underlying operators.
  • The 3.87 million credit card holders whose data was already stolen face ongoing fraud exposure regardless of how the lawsuit resolves.
  • Other AI platform operators face immediate pressure to demonstrate their tools are not being used at scale to generate phishing templates, creating compliance and reputational risk across the sector.

Opportunities

  • Google's civil litigation strategy creates a replicable playbook for other AI platform operators to pursue criminal networks misusing their infrastructure without relying solely on law enforcement.
  • AT&T, T-Mobile, and Verizon can market their demonstrated AI-powered SMS filtering as a differentiated enterprise security offering following their coordinated response with Google.
  • The FBI's detailed financial damage estimates, $1.9 billion in losses and 3.87 million stolen cards, provide prosecutors a strong evidentiary foundation for parallel criminal charges that could reach individual Outsider Enterprise operators.

What we don't know yet

  • Whether Google's discovery that Gemini was used to generate phishing content will trigger platform-level AI usage audits or new detection policies at Google.
  • Whether the specific individuals behind Outsider Enterprise are named in the complaint, as public reporting only identifies the group by its platform name.
  • Whether the FBI-coordinated domain seizures also disrupted the Telegram channels Outsider Enterprise used to coordinate its four internal groups.

Originally reported by techcrunch.com

Read the original article →

Original headline: Google Sues AI-Powered Chinese Phishing Ring 'Outsider Enterprise' — 9,000 Fake Sites, 1M Fraudulent Domains, $1.9B Estimated Losses Since 2023