CyberHappenings logo
Home Browse About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

U.S. sanctions cyber scam operations in Southeast Asia

First reported
Last updated
2 unique sources, 3 articles

Summary

Hide ▲

The U.S. Department of the Treasury has sanctioned several large cyber scam networks in Southeast Asia, primarily in Burma and Cambodia. These operations, which used forced labor and human trafficking, stole over $10 billion from Americans in 2024, a 66% increase from the previous year. The scams included romance baiting and fake cryptocurrency investments. The sanctions target individuals and entities linked to the Karen National Army (KNA) and various organized crime networks. The U.S. has established a new task force, the Scam Center Strike Force, to disrupt Chinese cryptocurrency scam networks. This task force, supported by the U.S. Attorney's Office, the Department of Justice, the FBI, and the Secret Service, has already seized over $401 million in cryptocurrency and filed forfeiture proceedings for an additional $80 million in stolen funds. The Treasury Department’s Office of Foreign Assets Control has imposed additional sanctions on the Democratic Karen Benevolent Army (DKBA) and related entities. The sanctions block these entities from the U.S. financial system, freeze their U.S.-based assets, and limit their access to international financial services. The move aims to disrupt the operations and impose legal and financial consequences on the perpetrators. The cybercriminal syndicates in Southeast Asia net nearly $40 billion annually in illicit profits. The U.S. actions are part of a broader effort to degrade the infrastructure supporting these scams and punish the system enabling their crimes.

Timeline

  1. 14.11.2025 16:54 1 articles · 23h ago

    U.S. establishes Scam Center Strike Force

    The U.S. has established a new task force, the Scam Center Strike Force, to disrupt Chinese cryptocurrency scam networks. The strike force is supported by agents from the U.S. Attorney's Office, the Department of Justice, the FBI, and the Secret Service. The strike force has already seized over $401 million in cryptocurrency and filed forfeiture proceedings for an additional $80 million in stolen funds. The Treasury Department’s Office of Foreign Assets Control imposed sanctions on the Democratic Karen Benevolent Army (DKBA) and four of its senior leaders for running cyber-scam operations in Burma. The sanctions also targeted Thailand-based firms Trans Asia International Holding Group Thailand Company Limited and Troth Star Company Limited, as well as Thai national Chamu Sawang.

    Show sources
    Open in new tab
  2. 09.09.2025 23:25 3 articles · 2mo ago

    U.S. sanctions cyber scam operations in Southeast Asia

    The cybercriminal syndicates in Southeast Asia net nearly $40 billion annually in illicit profits. The scam centers have forced thousands of people into labor camps, including foreign nationals from Indonesia, Vietnam, and Taiwan. The U.S. sanctions block any property or assets in the U.S. or in the custody of any U.S. person, risking civil and criminal penalties. The U.S. actions are part of a broader effort to degrade the infrastructure supporting these scams and punish the system enabling their crimes. The cybercriminal syndicates are expanding globally, targeting new populations and weaker legal frameworks.

    Show sources
    Open in new tab

Information Snippets

Similar Happenings

NCA Launches Campaign Against Crypto Investment Scams Targeting Men Under 45

The UK’s National Crime Agency (NCA) has launched a public awareness campaign to warn men under 45 about crypto-investment scams. The campaign, titled “Crypto Dream Scam Nightmare,” aims to educate potential victims on recognizing fraudulent schemes that promise high returns but result in financial losses. Action Fraud received over 17,000 reports of investment fraud last year, with victims often tricked by professional-looking websites and apps. Scammers use tactics like romance baiting and unsolicited messages to lure victims into non-existent investment schemes. The campaign includes a video of a victim who lost £28,000 and an info sheet with 10 tips to spot and avoid investment fraud.

Open in new tab

Cryptocurrency fraud network dismantled by European authorities

European law enforcement agencies have dismantled a cryptocurrency fraud network that stole over €600 million from victims across multiple countries. The fraudsters created fake cryptocurrency investment platforms promising high returns and recruited victims through social media, cold calling, and other methods. The stolen funds were laundered using blockchain tools. The coordinated operation took place between October 27 and 29 in Cyprus, Spain, Germany, France, and Belgium, resulting in the seizure of €800,000 in bank accounts, €415,000 in cryptocurrencies, €300,000 in cash, and a set of luxury watches worth €100,000. The investigation started in 2023, and the suspects face six charges, each with between five and 10 years in prison and between €1875 and €1m in fines. Several real estate properties are currently being appraised.

Open in new tab

Increased Cryptocurrency and Forex Investment Scams in Asia

A surge in fake investment platforms targeting cryptocurrency and forex exchanges is driving a new wave of financial crime across Asia. These scams, orchestrated by organized cross-border groups, exploit social media and messaging apps to lure victims. The schemes use sophisticated trading interfaces and complex backend systems to steal funds. Group-IB's research outlines two key models: a Victim Manipulation Flow and a Multi-Actor Fraud Network. These models detail how trust is built and exploited, and how distinct roles cooperate within a single operation. The report highlights shared technical fingerprints, such as reused SSL certificates and identical chatbot systems, linking multiple scam campaigns. The growing international threat is exemplified by the August 2025 arrest of 20 individuals in Vietnam connected to the $1bn Paynet Coin crypto fraud. This case illustrates how online investment scams have scaled beyond borders, with operators recruiting globally and leveraging fake corporate accounts, stolen identity data, and mule networks to move funds undetected.

Open in new tab

Meta Enhances Scam Protection for Messenger and WhatsApp

Meta has introduced new tools to protect users of Messenger and WhatsApp from scams. The tools include warnings for screen sharing during video calls on WhatsApp, a scam detection feature on Messenger, and a new security feature to help users spot potential scams when being added to a group chat by unknown contacts. Meta also reported actions taken against fraudulent accounts and scam centers. Meta's efforts are part of ongoing measures to combat scams, including romance baiting schemes operated by cybercrime syndicates in Southeast Asia. These scams often involve psychological manipulation and financial fraud.

Open in new tab

SIM-box operation dismantled, enabling global telecom fraud

European law enforcement dismantled a sophisticated cybercrime-as-a-service (CaaS) platform that operated a SIM farm, enabling over 49 million fake online accounts and facilitating over 3,200 fraud cases resulting in at least 4.5 million euros in losses. The service provided phone numbers for various telecommunication crimes, including phishing, investment fraud, impersonation, extortion, migrant smuggling, and the distribution of child sexual abuse material (CSAM). The operation, codenamed 'SIMCARTEL,' involved multiple countries and seized significant infrastructure and assets. The SIM-box service operated through two websites, gogetsms.com and apisim.com, which have been seized. The service rented out phone numbers registered in over 80 countries, enabling the creation of fraudulent online accounts. The operation resulted in the arrest of seven individuals, including five Latvian nationals, and the seizure of 1,200 SIM-box devices, 40,000 SIM cards, five servers, and luxury vehicles. Financial assets totaling EUR 431,000 and $333,000 in crypto were also frozen. The operation's main raids occurred during an action day in Latvia on October 10, where 26 searches were carried out and five Latvian nationals were arrested. Three suspects were subject to a non-custodial security measure and a court imposed a security measure on a man born in 1982. Latvian law enforcement shared footage of a raid on a workspace packed with computer hardware, specialized equipment and large quantities of SIM cards.

Open in new tab