$1.9 billion
Estimated losses caused by Outsider Enterprise AI phishing operation since July 2023, per FBI estimate
3.87 million
Credit card records stolen by Outsider Enterprise via Gemini-generated fake brand portals
9,000+
Fake websites created by Outsider Enterprise using Google Gemini to clone brand portals including Google, YouTube, USPS, and E-ZPass
90%
Iranian bank card failure rate during June 13 attack on Bank Melli, Tejarat, Saderat, and Export Development Bank shared infrastructure

SponsoredRetool

Retool's new app builder is where AI-generated code ships safely

Building apps with AI is easy. Getting them to production safely is another story.

Start building for free today

A Chinese cybercrime network called Outsider Enterprise used Google's own Gemini AI model to steal 3.87 million credit card records and cause $1.9 billion in estimated losses by generating near-perfect replicas of Google, YouTube, USPS, and E-ZPass portals, with Google filing a civil lawsuit against the gang in a New York federal court on June 12, 2026. This is the week's most consequential story, and it establishes a new operational baseline where AI language models are confirmed weapons in industrial-scale fraud.

The Outsider Enterprise AI phishing operation ran from July 2023 through at least early 2026, building a phishing-as-a-service platform that sold Gemini-generated phishing kits on Telegram for $88 per week. The FBI confirmed the gang created over 9,000 fake websites and more than one million fake URLs during this period. Any criminal could deploy a convincing fake brand portal without writing a single line of code. Google has partnered with AT&T, T-Mobile, and Verizon to intercept fraudulent messages and is backing seven bipartisan bills in Congress targeting AI-enabled scams.

Three additional threats demand action before end of day. Four Iranian banks lost ATM, POS, and mobile banking services simultaneously on June 13, 2026, after a coordinated attack on their shared communications infrastructure brought card failure rates to 90%. One hundred fifty-two Chrome live wallpaper extensions were caught harvesting IP addresses, ISP data, and browsing behavior from 105,000 users despite declaring zero data collection in their Chrome Web Store listings. Europol dismantled AudiA6, a cryptocurrency laundering service used by ransomware gangs across Europe, on June 12, creating displacement risk as criminal groups now seek alternative laundering channels under operational pressure.

How Does Outsider Enterprise's Gemini AI Phishing Operation Work?

Outsider Enterprise AI phishing operates through four industrialized stages that remove technical skill as a barrier to large-scale fraud.

Stage one is brand selection and target profiling. The gang identified organizations with high name recognition, frequent consumer interactions, and financial data exposure. Google, YouTube, the US Postal Service, and E-ZPass emerged as primary targets because their brands condition users to enter credentials and payment data without questioning the source.

Stage two is AI-powered site cloning using Gemini. The gang used Google's Gemini model to generate HTML, CSS, and JavaScript that reproduced the visual design of target brand portals with near-perfect fidelity. Gemini produced clean, responsive code that renders correctly on both desktop and mobile, creating fake login pages and payment portals indistinguishable from their legitimate counterparts on casual visual inspection. The FBI confirmed 9,000 fake websites and over one million fake URLs were generated through this process.

Stage three is kit distribution via Telegram. Outsider Enterprise packaged the AI-generated fake site templates, SMS spoofing infrastructure for smishing campaigns, and deployment documentation into weekly subscription kits priced at $88. This model democratized phishing: any buyer with $88 could operate a convincing brand-spoofing campaign without technical knowledge or infrastructure investment.

Stage four is automated credential harvesting. Victims who entered credentials or payment data on the fake portals had that information immediately exfiltrated to Outsider Enterprise's servers. The operation ran from July 2023 until Google's legal action in June 2026, accumulating 3.87 million stolen credit card records during that period.

For more context on how Chinese threat actors deploy AI-generated content in phishing and malware campaigns, see the breakdown of Silver Fox's AI-powered AbcDoor and ValleyRAT deployment.

The gang used Gemini to generate HTML code that produced near-perfect replicas of trusted brands: Google, YouTube, USPS, and E-ZPass: making convincing phishing portals accessible to any criminal with $88 per week.

FBI / Google Lawsuit Filing, June 12, 2026

This Week's Top 5 Threats: What Security Teams Must Prioritize Monday Morning

Security teams starting the week face five concurrent active threats, each with a distinct remediation clock. Ranked by urgency and remediation lead time:

Outsider Enterprise credential exposure requires immediate employee communication. Any employee who has interacted with Google, YouTube, USPS, or E-ZPass services since July 2023 may have encountered a fake portal from this operation. Organizations should send a targeted awareness communication today and instruct employees who receive unusual payment or credential prompts to report them immediately. The FBI's 3.87 million stolen card figure represents only confirmed theft through the end of the lawsuit period. The actual total may be higher.

Microsoft Patch Tuesday June 2026 remediation is now overdue. Microsoft released 208 CVEs on June 9, including the actively exploited CVE-2026-42897, an Exchange Server cross-site scripting vulnerability confirmed under attack before the patch dropped. CISA's new Binding Operational Directive 26-04, issued June 11, requires federal civilian agencies to remediate critical flaws within three days. Exchange Server and Windows administrators who have not yet applied June patches face escalating exploitation risk.

Iranian banking sector monitoring applies to organizations with financial relationships or supply chain connections to Iranian institutions. No attribution has been confirmed for the June 13 attack on four Iranian banks. Treat all credentials connected to affected institutions as potentially exposed until full forensics are published.

Chrome extension audit. Socket's June 14 research identified 152 extensions using the tabplugins.com, yowgames.com, and chromewallpaper.com publisher network. Enterprise Chrome deployments should audit installed extensions immediately using Socket's published extension identifier list.

AudiA6 displacement watch. Ransomware groups that relied on AudiA6 for cryptocurrency laundering will seek alternatives after Europol's June 12 disruption. Increased ransomware activity is statistically likely over the next 2-4 weeks as displaced criminal groups test new laundering infrastructure.

Free daily briefing

Briefings like this, every morning before 9am.

Threat intel, active CVEs, and campaign alerts, distilled for practitioners. 50,000+ subscribers. No noise.

Four Iranian Banks Hit: What the June 13 Cyberattack Targeted

Four of Iran's largest financial institutions lost normal operations on June 13, 2026, following a coordinated attack targeting their shared communications network rather than any individual bank's systems. Bank Melli, Bank Tejarat, Bank Saderat, and the Export Development Bank of Iran all reported service failures simultaneously, with card failure rates reaching 90% at peak disruption.

The attack's target selection reveals strategic planning. Rather than hitting any single bank, the threat actor identified the shared infrastructure layer connecting all four institutions and attacked that chokepoint. ATMs stopped dispensing cash across Iran. POS terminals failed in retail environments. Mobile banking applications lost connectivity. Online banking portals went offline. The simultaneous multi-institution failure was the direct result of attacking a single shared communications dependency.

Iranian officials stated that customer account data was not accessed and no information was deleted, but did not disclose whether logs or transaction records had been exfiltrated before disruption began. Recovery efforts were immediate and most services were restored within hours.

No individual, group, or government claimed responsibility for the attack as of June 15, 2026. The technical sophistication required to identify and attack shared banking infrastructure rather than individual bank endpoints exceeds typical criminal ransomware operations. This targeting pattern is consistent with state-sponsored disruption campaigns documented against financial sectors in other geopolitical contexts. Attribution analysis will take weeks, but security teams with Middle East exposure should treat this as a state-level threat scenario until evidence indicates otherwise.

152 Chrome Extensions Caught Harvesting Data From 105,000 Users

Socket's Threat Research Team identified 152 Chrome extensions in the Chrome Web Store that secretly collect user data despite explicit declarations of zero data collection in every listing. The extensions together report approximately 105,000 active users and share a single codebase distributed across 38 publisher accounts.

The publisher network operates three brand identities: tabplugins.com, yowgames.com, and chromewallpaper.com. Each extension presents as a live wallpaper new-tab replacement using entertainment themes including anime, gaming, football, and automotive content to attract installs through organic Chrome Web Store search. The multi-account distribution strategy prevents Google from removing the entire extension family through a single publisher account action.

Despite declaring "no data collected" in their Chrome Web Store privacy disclosures, the extensions harvest IP addresses, ISP identifiers, click counts, and referrer data in the background. This telemetry is transmitted to servers operated by the publisher network. The operation is primarily adware: the collected browsing data generates what appears to be legitimate Google organic search traffic, inflating analytics metrics for advertisers and corrupting measurement data.

For enterprise security teams, the risk extends beyond adware. Employee IP addresses, ISP data, and browsing behavior flowing to an external operator represents a data exfiltration surface that can support targeted spear phishing. Organizations running Chrome on managed devices should audit installed extensions using Socket's June 14 identifier list, enforce a policy-based extension allowlist via Google Admin, and restrict employee installation of extension categories that include themes and new-tab replacements outside the approved list.

Subscribe to unlock Indicators of Compromise

Free subscribers unlock full IOC lists, Sigma detection rules, remediation steps, and every daily briefing.

Europol Dismantles AudiA6: What Happens When Ransomware Laundering Goes Dark

Europol disrupted AudiA6 on June 12, 2026, taking down a cryptocurrency laundering service that ransomware gangs and criminal networks across Europe used to convert ransomware proceeds into untraceable funds. The operation targeted the service's infrastructure and the individuals operating it, though arrest details were not fully disclosed at publication time.

AudiA6 is a specialized cryptocurrency mixing and layering service that accepted ransomware proceeds, split them into smaller transactions across multiple wallets and blockchains, and returned clean funds to criminal clients. This type of service is critical infrastructure for ransomware operations: ransom payments in Bitcoin and Monero must pass through multiple laundering layers before they can be converted to fiat currency and withdrawn without triggering financial crime alerts.

The disruption creates an immediate operational problem for ransomware groups dependent on AudiA6. Criminal organizations with open campaigns cannot wait months for alternative laundering infrastructure to be established. The predictable outcome is a spike in ransomware deployment frequency as groups under financial pressure compress attack timelines and attempt to generate reserve capital through alternative channels.

Historical disruptions of similar criminal infrastructure services have been followed by elevated ransomware activity within 2-4 weeks. Security teams should treat this period as a heightened ransomware threat window and verify backup integrity, confirm tested restore procedures, and review endpoint behavioral detection coverage for known ransomware deployment patterns including shadow copy deletion and volume encryption events.

Monday Morning Remediation: 7 Actions Before End of Day

The five threats identified this week each require different defensive actions. Work through these seven steps in priority order across today and tomorrow.

Subscribe to unlock Remediation & Mitigation steps

Free subscribers unlock full IOC lists, Sigma detection rules, remediation steps, and every daily briefing.

Why Outsider Enterprise AI Phishing Matters for Your Organization

The Outsider Enterprise case is the clearest evidence yet that AI language models have crossed from theoretical attack enabler to confirmed industrial-scale fraud tool. Prior AI phishing concerns focused on better-written spear phishing emails. Outsider Enterprise used Gemini to automate the creation of convincing fake websites at scale, removing the technical barrier that previously limited how many brands a criminal operation could simultaneously spoof.

The $88 per week subscription model is the most alarming data point. It means the technology to deploy a convincing fake brand portal is now priced as a consumer subscription service. Organizations whose brands are trusted by large consumer bases are permanent targets for this model, regardless of prior threat history. The 9,000 fake websites Outsider Enterprise created represent one operation across a three-year period. The phishing-as-a-service market will absorb Gemini-class capabilities across dozens of competing operations rapidly.

For any organization with a recognizable consumer brand, credential-sharing portals, or financial services exposure to the American public: brand monitoring for fake domain registration, DMARC enforcement at reject policy, and regular dark web scanning for credential dumps linked to your domain are no longer optional security investments. They are table-stakes responses to a threat environment where any criminal with $88 per week can deploy a convincing impersonation of your brand and collect credentials at scale before detection.

Google's lawsuit establishes legal precedent for holding AI model providers able to act against misuse at the network level, and sets the stage for further AI platform accountability actions. The FBI and DOJ involvement signals that AI-powered fraud is now a federal enforcement priority, not just an industry concern. Expect increased criminal indictments and civil actions targeting AI-enabled fraud networks throughout 2026.

For more on how AI coding tools and infrastructure are being weaponized, see our recent analysis of agentjacking attacks that convert AI coding agents into attack vectors against developer environments.

The bottom line

Outsider Enterprise AI phishing operations produced the week's defining story: a Chinese cybercrime network used Google's Gemini model to steal 3.87 million credit cards and cause $1.9 billion in losses by making convincing brand impersonation available for $88 per week. Three actions are non-negotiable this week: apply June 2026 Patch Tuesday Exchange Server patches before Friday, audit Chrome extensions against Socket's 152-extension list, and send employees a targeted credential exposure alert covering Google, YouTube, USPS, and E-ZPass interactions since July 2023. Treat any new ransomware incident through end of June as potentially AudiA6-displacement activity requiring elevated response speed and immediate backup integrity verification.

This analysis is generic — the platform version scores threats like this against your own stack.

Frequently asked questions

What is Outsider Enterprise?

Outsider Enterprise is a Chinese cybercrime network that used Google's Gemini AI model to generate HTML code for fake websites impersonating major brands including Google, YouTube, the US Postal Service, and E-ZPass. The group operated a phishing-as-a-service platform selling Gemini-generated phishing kits on Telegram for $88 per week. Since July 2023, the operation stole 3.87 million credit card records and caused an estimated $1.9 billion in losses. Google filed a civil lawsuit against the network in New York federal court on June 12, 2026.

How does Google Gemini get used for phishing attacks?

Outsider Enterprise used Gemini to generate HTML, CSS, and JavaScript that reproduced the visual appearance of target brand websites with near-perfect accuracy. The AI model produced clean, responsive code on demand, allowing the criminal network to create convincing fake brand portals rapidly and at scale without manual coding. Gemini's ability to generate functional HTML from a brand reference reduced the technical barrier for creating fake websites to near zero. The FBI confirmed 9,000 fake websites were created through this process between July 2023 and Google's June 2026 legal action.

What is phishing-as-a-service and how does Outsider Enterprise use it?

Phishing-as-a-service is a criminal business model in which a threat actor creates phishing infrastructure and sells access to other criminals on a subscription basis. Outsider Enterprise built this model around Gemini-generated fake websites and SMS spoofing tools, packaging them into weekly subscription kits priced at $88. Buyers could deploy convincing brand-spoofing campaigns without writing code or building infrastructure. This model is dangerous because it removes technical barriers to entry and allows a single operation's capabilities to multiply across many criminal actors simultaneously.

What is smishing and how does it work?

Smishing is phishing conducted via SMS text messages. Attackers send messages that appear to come from trusted brands, government agencies, or financial institutions, directing victims to click a link leading to a fake website designed to steal credentials or payment information. Outsider Enterprise conducted smishing campaigns using SMS spoofing capabilities bundled in their subscription kits. Google has partnered with AT&T, T-Mobile, and Verizon to intercept Outsider Enterprise smishing messages before they reach recipients.

How do I know if my credit card was stolen by Outsider Enterprise?

No public database of Outsider Enterprise-stolen cards is available for individual lookup. The strongest indicators of compromise are unauthorized transactions or card-not-present fraud notices from your bank, particularly on accounts used with Google, YouTube, USPS, or E-ZPass services since July 2023. Monitor card statements for unrecognized charges below $5, which are common test transactions before larger fraud attempts. Report suspicious charges to your card issuer immediately and request a replacement card. Organizations should issue a targeted awareness communication to employees covering all four targeted brand categories.

What happened to Iran's banking system in June 2026?

A coordinated cyberattack on June 13, 2026, disrupted Bank Melli, Bank Tejarat, Bank Saderat, and the Export Development Bank of Iran simultaneously by targeting the shared communications infrastructure connecting all four institutions. ATMs, POS terminals, mobile banking apps, and online portals failed across Iran, with card failure rates reaching 90% at peak disruption. Iranian officials stated no customer data was accessed or deleted. No individual, group, or government has claimed responsibility as of June 15, 2026.

How do I detect and remove malicious Chrome extensions?

Socket's June 14, 2026, research identified 152 extensions across three publisher networks: tabplugins.com, yowgames.com, and chromewallpaper.com. Review installed Chrome extensions at chrome://extensions and remove any published under these three domains. Enterprise Chrome administrators should enforce an extension policy via Google Admin Console that restricts installation to a pre-approved allowlist and blocks themes and new-tab extensions outside reviewed identifiers. Cross-reference installed extension IDs against Socket's published research list for precise identification.

What is AudiA6 and why does its takedown increase short-term ransomware risk?

AudiA6 is a cryptocurrency laundering service that ransomware gangs used to convert ransomware proceeds into untraceable funds by mixing and layering payments across multiple wallets and blockchains. Europol disrupted the service on June 12, 2026. When criminal laundering infrastructure is taken down, ransomware groups dependent on it face operational pressure to accelerate attacks and generate alternative revenue while transitioning to new laundering channels. Historical disruptions of similar services have been followed by elevated ransomware deployment frequency within 2-4 weeks of the takedown.

Sources & references

  1. The Hacker News: Google Sues Chinese Smishing Network Accused of Using Gemini AI
  2. Decrypt: Google Sues Chinese Crime Group for Allegedly Using Gemini AI for Mass Phishing Scams
  3. IranWire: Cyberattack on Four Iranian Banks
  4. Cybersecurity News: 152 Chrome Extensions Hide Ad Tracking and Fake Google Search Traffic
  5. SOCRadar: CISA KEV LiteLLM RCE and Check Point VPN Auth Bypass
  6. BleepingComputer: Microsoft June 2026 Patch Tuesday Fixes 6 Zero-Days, 200 Flaws

Free resources

25
Free download

Critical CVE Reference Card 2025–2026

25 actively exploited vulnerabilities with CVSS scores, exploit status, and patch availability. Print it, pin it, share it with your SOC team.

No spam. Unsubscribe anytime.

Free download

Ransomware Incident Response Playbook

Step-by-step 24-hour IR checklist covering detection, containment, eradication, and recovery. Built for SOC teams, IR leads, and CISOs.

No spam. Unsubscribe anytime.

Free newsletter

Get threat intel before your inbox does.

50,000+ security professionals read Decryption Digest for early warnings on zero-days, ransomware, and nation-state campaigns. Free, daily, no spam.

Unsubscribe anytime. We never sell your data.

Eric Bang
Author

Founder & Cybersecurity Evangelist, Decryption Digest

Cybersecurity professional with expertise in threat intelligence, vulnerability research, and enterprise security. Covers zero-days, ransomware, and nation-state operations for 50,000+ security professionals every morning.

Black Hat Giveaway

Win a $2,495 Black Hat pass.

Full-access to Black Hat USA 2026 in Las Vegas. Subscribe free to enter.

Joins Decryption Digest daily briefing. Unsubscribe anytime.

Giveaway: Black Hat USA 2026 Full-Access Pass ($2,495 value)

Details →
Daily Briefing

Subscribe to enter the giveaway

Every subscriber is automatically entered. You also get daily threat intel every morning: zero-days, ransomware, and nation-state campaigns. Free. No spam.

Already subscribed? You're already entered.

Giveaway

Win a $2,495 Black Hat USA 2026 pass.