“`html
Europol and Microsoft dismantle Massive ‘Phishing Factory’ Network
Table of Contents
A joint operation between the European Police Agency (europol) and technology giant Microsoft has taken down a sprawling online fraud infrastructure responsible for distributing over a million phishing emails globally each month.The network, dubbed RedVDS, allowed cybercriminals to launch large-scale phishing campaigns with alarming ease.
Europol and Microsoft collaborated to dismantle the network, which operated as a readily accessible service for malicious actors. The operation highlights the growing sophistication and accessibility of cybercrime tools.
RedVDS: A Subscription Service for Fraud
The RedVDS network functioned as a “phishing factory,” offering criminals a subscription service for as little as $24 per month. This remarkably low cost of entry enabled widespread abuse. According to published information, the system was easily discoverable through standard search engines, making it accessible to even novice cybercriminals.
the network’s infrastructure consisted of virtual servers spread across multiple countries, allowing perpetrators to bypass traditional security filters and target victims worldwide. Microsoft reported that its customers alone received approximately one million phishing emails monthly originating from RedVDS.
Financial Impact and targeted Sectors
Since march 2025, fraudulent activities linked to RedVDS have resulted in estimated losses of $40 million in the United States. However,authorities caution that this figure likely represents a significant undercount,as it only includes reported cases of fraud.
The real estate sector was particularly vulnerable, with over 9,000 customers defrauded of deposits or payments during the final stages of transactions.Beyond financial losses, the network also compromised a significant number of email accounts.
Widespread Account Breaches
Microsoft estimates that more than 191,000 Outlook email accounts, belonging to approximately 130,000 organizations globally, have been compromised since September 2025. The countries most affected by these breaches include the United States, Canada, the United Kingdom, France, and India.
Europol and Microsoft revealed that RedVDS provided a complete toolkit for phishing attacks. This included access to lists of email addresses harvested from previous data breaches, as well as the ability to maintain long-term access to compromised mailboxes for continued information theft and illicit transactions.
Current Status and Ongoing Examination
The RedVDS website is currently offline, and access to most of its servers has been blocked.However, authorities emphasize that a comprehensive system cleanup is still underway. Despite the takedown, the individuals responsible for operating the network remain at large.
“A full system cleanup is underway,” a senior official stated, “but apprehending those behind this operation remains a top priority.”
The dismantling of RedVDS represents a significant victory in the ongoing fight against cybercrime, but it also underscores the need for continued vigilance and collaboration between law enforcement and the technology industry. The ease with which this network was established and operated serves as a stark reminder of the evolving threat landscape.
source: https://www.viet
