Skip to content

Information Security News

  • Home
  • Cyber Security
  • Cybercriminals
  • Data Leak
  • Google
    • Android
  • Information Security
  • Linux
  • Malware
  • Microsoft
    • Windows
  • Open Source Tool
  • Vulnerability
  • Technology

Information Security News

  • Home
  • Cyber Security
  • Cybercriminals
  • Data Leak
  • Google
    • Android
  • Information Security
  • Linux
  • Malware
  • Microsoft
    • Windows
  • Open Source Tool
  • Vulnerability
  • Technology
  • Cybercriminals

The Ad Trap Closed: DOJ Seizes Global Control Hub Behind $28M Bank Fraud

by Nam Phong · December 24, 2025

U.S. law enforcement authorities have announced the seizure of a domain used in a large-scale scheme to steal bank accounts. According to the U.S. Department of Justice, the site—web3adspanels[.]org—served as a control hub for harvesting stolen credentials and enabling remote access to victims’ banking accounts. Visitors to the domain now see a notice stating that it has been confiscated as part of a joint international operation between the United States and Estonia.

Investigators say the perpetrators placed fraudulent advertisements in search engines, including Google and Bing, carefully designed to mimic legitimate bank ads. These ads redirected users to counterfeit websites where sensitive information was collected. Embedded malware on those pages intercepted submitted usernames and passwords, which were then used to access real banking accounts.

The operation affected 19 victims across the United States, including two companies based in northern Georgia. Claimed losses totaled $28 million, with approximately $14.6 million confirmed as stolen. At the time of the seizure, the domain still hosted a database containing thousands of compromised credentials, along with backend infrastructure used to manage the scheme. Activity linked to the site had continued until very recently.

The FBI added that since January 2025, its Internet Crime Complaint Center has received more than 5,100 reports tied to similar bank account takeover schemes. The cumulative losses associated with those complaints exceed $262 million.

Related coverage

  • NovaCookies Phishing Service Emerges as Sneaky2FA Successor
  • Poland Busts SIM Swapping Gang Behind Crypto Theft
  • Iranian Hacker Arrested in Montenegro Over US Cyberattacks
  • Poisoned Tenant Attack Abuses OpenAI Organization Invites
  • DOJ Seizes Huione Group Infrastructure Behind $31B Scam Market

Support Our Threat Intelligence

If you find our technology report and cybersecurity news helpful, consider supporting our work.

Buy Me a Coffee Logo Buy Me a Coffee PayPal
Crypto QR Code
USDT (TRC20):
TN8BdV8cp4T1Cd28gK9qTAnZknzzuwyUtm
USDT (ERC20):
0x3725e1a7d3bc5765499fa6aaafe307fabcd75bce

Tags: Bank Account TakeoverCybercrime 2025DOJEstoniaFBIGeorgiaGoogle AdsIC3phishingSearch Engine Fraudweb3adspanels

Follow:

  • Next story Automation Crisis: Critical 9.9 CVSS Flaw Exposes 103K n8n Instances to Full Takeover
  • Previous story The Admin’s Shadow: How Hackers Turned the Nezha Monitoring Tool into a Stealth RAT

  • Recent Posts
  • Popular Posts
  • Tags
  • ACSC CMS exploitation campaign web shells installed via WordPress and Joomla CVEs globally

    Cybercriminals

    ACSC Warns: CMS Campaign Installs Web Shells via 17 CVEs

    July 14, 2026

  • U-Boot FIT image signature verification vulnerabilities CVE Binarly bootloader exploit firmware

    Vulnerability

    6 U-Boot Vulnerabilities Let Attackers Hijack Boot Process

    July 14, 2026

  • Progress Software ShareFile Storage Zone Controller shut down over external threat CVE-2026-2699

    Vulnerability

    Progress Software Shuts Down ShareFile Over External Threat

    July 14, 2026

  • Diagram illustrating the jscrambler supply chain attack and IronWorm malware infection process

    Malware

    Jscrambler Supply Chain Attack Analysis

    July 14, 2026

  • GhostCommit AI vulnerability diagram illustrating prompt injection against AI coding assistants

    Vulnerability

    The GhostCommit Vulnerability: AI Assistants Weaponized via Images

    July 14, 2026

  • Apache Camel vulnerabilities enabling server-side request forgery and authentication bypass in JMS and WebSocket connectors

    Vulnerability

    Apache Camel Patches Five High-Severity Vulnerabilities

    July 9, 2026

  • OpenSUSE Leap 15.4 Beta releases, Linux distributions

    Linux

    OpenSUSE Leap 15.4 Beta releases, Linux distributions

    May 30, 2020

  • Ubuntu 16.04.6 LTS released: fix security vulnerabilities

    Linux

    Ubuntu 16.04.6 LTS released: fix security vulnerabilities

    March 1, 2019

  • GhostBSD 23.10.1 released, FreeBSD distribution

    Linux

    GhostBSD 23.10.1 released, FreeBSD distribution

    May 1, 2020

  • Solus 4.4 Fortitude releases, Linux distribution

    Linux

    Solus 4.4 Fortitude releases, Linux distribution

    January 26, 2020

  • AI AI security Android Apple APT BOTNET China CISA cloud security cryptocurrency cyberattack cybercrime Cyber Espionage cybersecurity Cybersecurity 2026 data breach Github google hacking Infosec InfoSec 2026 Infostealer Linux Linux Kernel malware Microsoft network security open source Penetration Testing phishing privacy privilege escalation Prompt Injection ransomware RCE remote code execution security Social Engineering supply chain attack Tech News 2026 threat intelligence vulnerability windows Windows 11 zero-day
  • Home
  • About Us
  • Contact Us
  • DMCA NOTICE
  • Privacy Policy

Information Security News © 2026. All Rights Reserved.

Powered by  - Designed with Hueman Pro