Google Takes Legal Action Against Chinese ‘Darcula’ Group for Alleged Phishing Operation
Alphabet Inc.’s Google has taken a significant step in the fight against cybercrime by filing a lawsuit against a group of alleged Chinese cybercriminals. This group, known as “Darcula,” is accused of orchestrating a widespread phishing campaign aimed at deceiving Americans into revealing their credit card information.
According to the complaint filed on Wednesday, the Darcula group developed a sophisticated malicious software kit that allows individuals with minimal technical skills to send out mass text messages. These messages falsely claimed to offer free versions of popular Google services, such as YouTube Premium. However, the real intent was to trick recipients into providing sensitive financial information, which the scammers could then exploit to steal money from their victims.
The scale of the operation is alarming. Over a span of seven months, the Darcula enterprise reportedly stole nearly 900,000 credit card numbers, including around 40,000 from American citizens. Google estimates that this scheme accounted for up to 80% of all phishing messages during its peak, involving approximately 600 cybercriminals.
In response to such threats, technology giants like Google and Microsoft frequently pursue legal action to gain court approval for seizing the web infrastructure utilized by these cybercrime groups. By taking control of domains and other online services, they aim to disrupt the operations of scammers, forcing them to either adapt their tactics or cease their activities altogether.
The latest iteration of the Darcula software reportedly includes a feature that leverages artificial intelligence to create convincing replicas of nearly any website within minutes, further complicating the fight against cyber fraud.
As of now, the Darcula group has not responded to the allegations. Notably, a Telegram channel associated with the group, which was mentioned in Google’s complaint, has since been taken down.
Google, headquartered in Mountain View, California, stated in its lawsuit that it is compelled to take action due to the misuse of its branding by the cybercriminals, which has forced the company to allocate significant resources to combat these fraudulent efforts.
This is not the first time Google has taken legal action against cybercriminals. In November, the company filed a lawsuit against another group it accused of sending fraudulent texts that warned individuals about unpaid tolls or failed package deliveries.
NBC News previously reported on this legal action, highlighting the ongoing battle between tech companies and cybercriminals.
Photo: Photographer: David Paul Morris/Bloomberg
Copyright 2025 Bloomberg.
Interested in Cyber?
Get automatic alerts for this topic.
Alphabet Inc.’s Google has taken a significant step in the fight against cybercrime by filing a lawsuit against a group of alleged Chinese cybercriminals. This group, known as “Darcula,” is accused of orchestrating a widespread phishing campaign aimed at deceiving Americans into revealing their credit card information.
According to the complaint filed on Wednesday, the Darcula group developed a sophisticated malicious software kit that allows individuals with minimal technical skills to send out mass text messages. These messages falsely claimed to offer free versions of popular Google services, such as YouTube Premium. However, the real intent was to trick recipients into providing sensitive financial information, which the scammers could then exploit to steal money from their victims.
The scale of the operation is alarming. Over a span of seven months, the Darcula enterprise reportedly stole nearly 900,000 credit card numbers, including around 40,000 from American citizens. Google estimates that this scheme accounted for up to 80% of all phishing messages during its peak, involving approximately 600 cybercriminals.
In response to such threats, technology giants like Google and Microsoft frequently pursue legal action to gain court approval for seizing the web infrastructure utilized by these cybercrime groups. By taking control of domains and other online services, they aim to disrupt the operations of scammers, forcing them to either adapt their tactics or cease their activities altogether.
The latest iteration of the Darcula software reportedly includes a feature that leverages artificial intelligence to create convincing replicas of nearly any website within minutes, further complicating the fight against cyber fraud.
As of now, the Darcula group has not responded to the allegations. Notably, a Telegram channel associated with the group, which was mentioned in Google’s complaint, has since been taken down.
Google, headquartered in Mountain View, California, stated in its lawsuit that it is compelled to take action due to the misuse of its branding by the cybercriminals, which has forced the company to allocate significant resources to combat these fraudulent efforts.
This is not the first time Google has taken legal action against cybercriminals. In November, the company filed a lawsuit against another group it accused of sending fraudulent texts that warned individuals about unpaid tolls or failed package deliveries.
NBC News previously reported on this legal action, highlighting the ongoing battle between tech companies and cybercriminals.
Photo: Photographer: David Paul Morris/Bloomberg
Copyright 2025 Bloomberg.
Interested in Cyber?
Get automatic alerts for this topic.
