Google Sues Chinese Crime Ring for Weaponizing Gemini AI in Mass Phishing

Google sued Chinese cybercrime network Outsider Enterprise for weaponizing Gemini AI to create 8,000 phishing sites and steal payment card data from 3.87 million victims, causing $1.9 billion in losses.

On June 12, Google filed a civil lawsuit in a New York federal court against a China-based cybercrime network called Outsider Enterprise. The accusation is unusual: the group used Google's own Gemini AI to mass-produce phishing websites and scam text messages that drained bank accounts and cryptocurrency wallets across dozens of countries.

The operation ran like a factory floor. Members coordinated through Telegram channels, sharing ready-made prompts for Gemini that could generate convincing fake telecom and banking pages in minutes. Those pages were fed directly into the group's toolkit and deployed at scale — resulting in more than 8,000 fraudulent websites, 2.5 million scam text messages, and, according to FBI estimates, 3.87 million stolen payment card numbers. Total losses since July 2023 are put at roughly $1.9 billion.

Cryptocurrency users were a specific target. Some phishing pages mimicked exchange login screens and wallet interfaces to capture seed phrases and passwords. Once entered, recovery is essentially impossible since blockchain transactions cannot be reversed. In just two weeks ending June 1, Google logged 55,000 suspicious message complaints in Google Messages alone.

What sets this lawsuit apart is the legal theory behind it. Rather than handing evidence to prosecutors, Google is suing the group directly in civil court — arguing that unauthorized, harmful use of an AI platform is its own cause of action. "We intend to permanently dismantle this criminal organization," the company said. If that argument holds up, it could give AI companies a new legal tool against groups that turn their own models against users.

The Outsider Enterprise case maps out what AI-enabled crime now looks like structurally. The group ran as a phishing-as-a-service platform: affiliates got Telegram access, received templates and AI prompts, and launched attacks without writing a single line of code themselves. Generative AI lowers the skill floor for everyone — including criminals. How widely this model has spread to other platforms is the question the industry has yet to face squarely.

Questions and answers

Frequently asked questions about this article

Who is Outsider Enterprise?

Outsider Enterprise is a China-based cybercrime network organized as a phishing-as-a-service platform. It distributed ready-made templates, code, and AI prompts through Telegram channels, allowing affiliates with no coding skills to build and deploy phishing sites and scam text campaigns at scale.

Why did the group use Gemini specifically?

Gemini is publicly accessible and doesn't require technical expertise. Group members shared prompts that generated convincing fake telecom and banking pages in minutes. This lowered the entry barrier: affiliates needed only to copy-paste the output into the group's toolkit, no coding required.

What does this mean for cryptocurrency holders?

Some Outsider Enterprise pages mimicked cryptocurrency exchange interfaces and wallet screens to capture seed phrases and passwords. Once entered, recovery is nearly impossible since blockchain transactions are irreversible. The case is a reminder that phishing remains the top threat to crypto holders, regardless of how secure the underlying blockchain is.

What legal precedent could this lawsuit create?

This appears to be the first civil lawsuit filed by a major AI company specifically over criminal misuse of its model. If Google prevails, it could establish a legal basis for similar actions by other AI platforms — OpenAI, Anthropic, Microsoft — against groups that weaponize their systems to commit fraud.

Where does the $1.9 billion figure come from?

The $1.9 billion estimate comes from the FBI and covers cumulative losses tied to Outsider Enterprise since July 2023, including stolen funds from bank accounts, credit cards, and cryptocurrency wallets across multiple countries.

Read also

News

SEC Proposes Scrapping the 20-Year Rule Blocking Tokenized Stocks

The SEC proposed scrapping Rule 611, a 2005 order-protection standard that made it technically impossible for AMMs to trade US equities. The change could open DeFi markets to tokenized stocks.

4 hours ago

3 min

News

Morpho Raises $175M from Paradigm and a16z in Record DeFi Round

Morpho, the DeFi lending protocol challenging Aave, closed a $175 million round led by Paradigm, a16z, and Ribbit Capital. With $11B in user deposits, it is the largest fundraise in DeFi history.

6 hours ago

4 min

News

US Orders Anthropic to Shut Down Fable 5 and Mythos 5 Worldwide

On June 12, the US ordered Anthropic to disable Fable 5 and Mythos 5 globally under export controls. The alleged jailbreak behind the order is a security technique Anthropic says GPT-5.5 can already do.

12 hours ago

4 min