Connect with us

Technology

FBI helps take down AI phishing ring

Published

on

FBI helps take down AI phishing ring

NEWYou can now listen to Fox News articles!

That suspicious text about a package, toll bill or account problem may look harmless at first. You glance at it, see a familiar brand name and think, “I’ll just check.” That quick tap can lead straight into a professional scam funnel.

The FBI, Google and Black Lotus Labs helped disrupt a massive China-based phishing-as-a-service operation known as Outsider Enterprise. Authorities say the operation powered fake websites built to steal credit card numbers, passwords and other personal information.

What makes this one especially troubling is how polished these scams have become. Criminals no longer need to build every fake page from scratch. They can rent phishing kits, use AI to speed up the work and send waves of scam texts to unsuspecting people. That should make every one of us pause before tapping a link in a text.

Sign up for my FREE CyberGuy Report

Advertisement
  • Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
  • For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com trusted by millions who watch CyberGuy on TV daily.
  • Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.

GENAI, THE FUTURE OF FRAUD AND WHY YOU MAY BE AN EASY TARGET

The FBI, Google and Black Lotus Labs helped disrupt a China-based phishing service that used fake texts and scam sites to steal personal data. (Anna Barclay/Getty Images)

What is the Outsider Enterprise phishing scam?

Outsider Enterprise was a phishing-as-a-service operation. In other words, it gave other criminals the tools to run scams. Instead of one scammer typing out sloppy messages from a laptop, this setup worked more like a criminal software business. It offered phishing kits, fake websites and infrastructure that helped criminals impersonate trusted brands.

Google says the network was tied to more than 9,000 fake websites and over 1 million fraudulent URLs. Those sites were designed to look real enough to trick people into entering credit card details, passwords or other sensitive information.

The scams often started with text messages. Some appeared to come from major wireless carriers, delivery services, toll agencies or other familiar companies. That’s what makes these attacks so dangerous. The text may arrive in the same place you get real alerts from banks, delivery services or phone providers.

How AI phishing texts stole credit card data

AI helped give this operation speed and polish. In a civil lawsuit filed in federal court in New York, Google alleges the phishing kit used AI tools, including Gemini, to help criminals create fraudulent sites and scam content. That means the messages can look cleaner, the websites can appear more convincing and the operation can move faster.

Advertisement

That’s a big shift. Many people still expect scam messages to have bad grammar, strange wording or obvious red flags. Those clues still show up, but they are becoming less reliable. A fake page can now look like the real thing. A scam text can sound normal. A payment request can appear urgent without feeling ridiculous. That to me is scary because the average person has less time to spot the trap.

How big was the Outsider Enterprise scam?

The scale was huge. Google says 2.5 million messages were sent to Android users from Outsider Enterprise infrastructure over a two-week period in May. Android users flagged 55,000 of those messages as fraudulent.

FBI Cyber Division Assistant Director Brett Leatherman said Outsider infrastructure was tied to an estimated 3.87 million stolen credit cards and $1.9 billion in losses.

That number tells you something important. These scams are not random annoyances. They are part of an organized criminal business built to reach huge numbers of people fast.

How the FBI and Google disrupted Outsider Enterprise

The action against Outsider Enterprise included both technical and legal steps. The FBI said the technical takedown was dubbed Operation Ghost Hook. Leatherman also tied the effort to Operation Riptide, a broader FBI campaign aimed at disrupting cybercrime operations.

Advertisement

The FBI and its partners seized administration servers, phishing domains, a Shopify storefront and about $100,000 from payment wallets tied to the operation.

Google’s civil lawsuit is part of the broader effort to disrupt Outsider Enterprise’s infrastructure. The company says it is working with AT&T, T-Mobile and Verizon to help block fraudulent messages before they reach subscribers. Google says its Android protections also help detect suspicious calls and block malicious messages. Still, no filter catches everything.

GLOBAL SCAM CRACKDOWN LEADS TO 276 ARRESTS

Authorities say Outsider Enterprise powered thousands of phishing websites designed to steal credit cards, passwords and other sensitive information. (FBI)

Why text scams fool so many people

Text scams often arrive when you are distracted. Maybe you are heading into a meeting, paying bills or waiting for a package. A message about an account problem can make you react fast before you stop to question it.

Advertisement

Scammers count on that split-second panic. A fake text might say your delivery failed, your phone bill has an issue or your account will be locked. The link then sends you to a page that looks real enough to steal your login, credit card number or one-time code. The whole trick depends on speed. The less time you spend thinking, the better the scam works.

Ways to stay safe from AI phishing scams

These steps can help you avoid the fake texts, fake websites and account traps that phishing operations rely on.

1) Do not tap links in unexpected texts

Treat unexpected links like a warning sign, even when the message looks official. Go directly to the company’s app or website instead. Type the address yourself or use a saved bookmark.

2) Slow down when a message creates urgency

Scammers want you to panic. Take a breath before you act. Real companies usually give you more than a few minutes to fix an issue.

3) Check the web address before entering anything

Look closely at the domain name before typing in a password, card number or code. A scam site may use one extra word, a strange ending or a spelling that looks close to the real company.

Advertisement

4) Never share one-time passcodes

A legitimate company will not ask you to send back a one-time code by text. If someone asks for a code, assume they are trying to break into your account.

5) Avoid entering payment details from a text link

If a text asks for a credit card number, password or account login, stop. Open the official app or call the company using a number from your card, bill or trusted website.

6) Turn on spam protection on your phone

Spam protection can help move suspicious texts out of your main inbox before you accidentally tap a bad link.

On iPhone: Go to Settings > Apps > Messages > Unknown Senders > turn on Screen Unknown Senders. You can also open Messages, tap Filters and review messages under Unknown Senders or spam/junk filtering when available.

For suspicious texts on iPhone, use Report Junk when it appears under the message.

Advertisement

On Samsung using Google Messages: Open Google Messages > tap your profile icon or initials > tap Messages settings > tap Spam protection or Protection & Safety > turn on Enable spam protection.

For suspicious texts on Samsung, open the message in Google Messages, tap the three dots, tap Details and choose Block & report spam.

IS THAT TRAFFIC TICKET TEXT A SCAM OR REAL?

The FBI said infrastructure linked to the phishing service was tied to millions of stolen credit cards and billions in losses. (Kurt “CyberGuy” Knutsson)

7) Lock down your wireless carrier account

Set a strong account password and add a carrier PIN when your provider offers one. This helps protect your phone number from criminals who try to hijack accounts or reset passwords.

Advertisement

8) Use a data removal service

Scammers often sound convincing because they already know something about you. That information can come from people-search sites, data brokers, old breaches or public records. Consider using a data removal service to reduce how much personal information is floating around online. Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting Cyberguy.com

9) Use strong antivirus protection

Strong antivirus software can help block malicious links, fake websites and phishing pages before they cause damage. It adds another layer of protection when a scam slips past your first line of defense. Get my picks for the best 2026 antivirus protection winners for your Windows, Mac, Android & iOS devices at Cyberguy.com

10) Use a password manager

A password manager can help you avoid reusing passwords across accounts. It can also make fake login pages easier to spot because it may not autofill your credentials on a bogus site.

11) Turn on two-factor authentication

Use two-factor authentication (2FA) on important accounts, especially email, banking and wireless carrier accounts. An authentication app or hardware security key gives you stronger protection than texted codes.

12) Consider virtual card numbers for online shopping

Some banks and card issuers offer virtual card numbers. These can limit the damage if a shopping site, fake checkout page or scam link steals payment details.

Advertisement

13) Watch your credit card statements

Check your accounts often for small mystery charges. Criminals sometimes test a stolen card with a small purchase before going bigger.

14) Freeze your credit if your personal data was exposed

A credit freeze can stop criminals from opening new accounts in your name. You can freeze your credit for free with Equifax, Experian and TransUnion.

15) Report scam texts

Forward suspicious texts to 7726, which spells SPAM. You can also report phishing attempts to the company being impersonated and to the FBI’s Internet Crime Complaint Center at IC3.gov.

Kurt’s key takeaways

Taking down Outsider Enterprise is great news. But let’s be real here. Scammers are not going away because one operation got hit. What worries me most is how real these fake texts and websites can look now. AI gives criminals another way to clean up the wording, copy trusted brands and move faster than most people expect. So my advice is simple. Don’t tap the link. Open the company’s real app or type in the website yourself. Those few extra seconds can be the difference between staying safe and handing a scammer your credit card, password or one-time code.

CLICK HERE TO DOWNLOAD THE FOX NEWS APP

Advertisement

Does this takedown make you feel better about the fight against scammers, or do you still think the crooks are one step ahead? Let us know by writing to us at Cyberguy.com

Sign up for my FREE CyberGuy Report

  • Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
  • For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com trusted by millions who watch CyberGuy on TV daily.
  • Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.

Copyright 2026 CyberGuy.com. All rights reserved.

Advertisement

Technology

Meta is reportedly working on smart glasses that would be recording all the time

Published

on

Meta is reportedly working on smart glasses that would be recording all the time

Meta might be the next company to make an always-on AI wearable. The company is working on prototype “super sensing” always-aware smart glasses that could continuously record audio and snap photos “every few seconds,” according to the Financial Times. The wearer could then ask Meta AI about the captured audio and images.

However, the images and audio might not be directly available to the user. Here’s how the FT describes one way the glasses could use the data:

In one proposed system, raw footage and audio would not be stored by Meta or made available to the user, several people said. Instead, the metadata from that audio and images would be extracted and uploaded to the server for Meta’s AI to query, which proponents argue would have fewer privacy implications.

But currently, Meta is planning for the LED recording indicator to remain off in “super sensing” mode, the FT reports. In a July 2025 whitepaper, the company said that it would reserve the LED indicator for “active capture” scenarios where the user is saving photos or videos, and leave it off during “AI Feature” use — such as scanning a menu — to avoid users becoming too used to the indicator. (If the indicator was on during the “super sensing” mode, it might also be harder to know when the glasses are actually recording video.)

Meta is also discussing if it would use the captured data for training its AI models. It may also bring the “super sensing” features to glasses it has already released, the FT says.

“While we don’t comment on internal prototypes, we’re committed to getting our glasses right because they need to be loved by both people wearing them and those around them,” Meta spokesperson Dave Arnold says in a statement to The Verge. Arnold also notes that “Our approach has been to develop new technologies that will help people throughout their day, with privacy built in from the ground up.”

Advertisement

Meta hasn’t been shy about some type of always-aware glasses being a possibility. CEO Mark Zuckerberg, in the company’s Q1 2026 earnings call, said that he was “really excited to see the glasses evolve from being able to answer questions to being able to be a personal agent that’s with you all day long, helping you remember things and achieve your goals.” In a March blog post about new Ray-Ban Meta glasses, the company wrote that “with ongoing software updates, Meta AI on glasses will transition from something you have to prompt with a question each time, to a more continuous, in-the-moment assistant that can help throughout the day.”

Continue Reading

Technology

Get a $30 credit when you reserve Samsung’s upcoming Galaxy phones

Published

on

Get a  credit when you reserve Samsung’s upcoming Galaxy phones

Even though they haven’t been officially announced yet, Samsung is giving you a chance to save some cash when you preorder what we’re expecting to be the brand’s updated Galaxy Z Fold phones. The next Galaxy Unpacked event will take place on July 22nd, 2026, and features the tagline “A new shape unfolds.” In addition to seeing updated versions of the existing Flip and Fold form factors, we anticipate the debut of a new, wider foldable phone. If you register your interest ahead of time and end up preordering one of the new phones shortly after they’re announced, Samsung will give you a $30 store credit at checkout.

There are some caveats to this offer. You have to use the credit when you preorder the phone. No saving it for later. Also, the credit can’t be applied to the cost of the phone either, so you’ll have to put it towards the cost of accessories or extra services. Samsung specifically calls out that select Galaxy rings, earbuds, watches, and tablets are eligible, or you can use it to help pay for Samsung Care Plus.

There are no downsides to registering your interest, so if you think you might be interested in buying one of the upcoming phones, it’s worth filling out the form. As long as you use the same email during checkout, the credit will be automatically applied.

Continue Reading

Technology

Apple AI security update proves hackers move fast

Published

on

Apple AI security update proves hackers move fast

NEWYou can now listen to Fox News articles!

A security update rarely feels dramatic. You see the alert, promise yourself you will install it later and then go right back to whatever you were doing. This time, Apple is giving you a stronger reason to pay attention.

Advertisement

Apple released iOS 26.5.2, iPadOS 26.5.2 and macOS Tahoe 26.5.2 on June 29, 2026. The updates include security fixes for vulnerabilities tied to the kernel, WebKit and WebRTC. Apple says these fixes were first made available through the iOS 26.6, iPadOS 26.6 and macOS Tahoe 26.6 betas before being pushed out early to everyone.

That is the part that should make you pause. Apple usually rolls many security fixes into larger software updates. This time, the company moved faster.

AI IS NOW POWERING CYBERATTACKS, MICROSOFT WARNS

Apple pushed out security fixes early because AI can help hackers study software flaws faster. (Nikolas Kokovlis/NurPhoto via Getty Images)

Sign up for my FREE CyberGuy Report

Advertisement
  • Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
  • For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
  • Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.

Why Apple released this AI security update early

Apple reportedly accelerated the updates because artificial intelligence can help speed the creation of malicious hacking tools. Once a fix appears in a beta, attackers may be able to study it, reverse-engineer the weakness and move faster than before.

Apple said there was no evidence that the newly patched vulnerabilities had been exploited. Still, the company wanted to shrink the time between when fixes were first visible and when they reached your devices.

That is a major shift. It suggests Apple sees AI as a force that changes the timing of security. A flaw that once gave defenders more breathing room may now become a race.

What Apple fixed in iOS 26.5.2

Apple’s iOS 26.5.2 and iPadOS 26.5.2 notes list fixes for iPhone 11 and later, along with several supported iPad models. The security content includes kernel vulnerabilities that could let an app crash the system, corrupt kernel memory or leak sensitive kernel state.

The update also fixes multiple WebKit issues. WebKit powers Safari and web content inside many apps. Some of these flaws involved malicious web content that could lead to crashes, memory corruption, data leaks or sandbox escapes.

Apple also fixed WebRTC issues that could be triggered by malicious web content and lead to Safari or process crashes.

Advertisement

For Mac, Apple lists macOS Tahoe 26.5.2 as the current release. If your Mac runs macOS Sonoma or macOS Sequoia, Apple also lists Safari 26.5.2 as a June 29, 2026, security release.

A woman uses a smartphone outside an Apple Store on June 20, 2026, in Shenzhen, Guangdong Province, China. (Cheng Xin/Getty Images)

Why AI hacking tools change the security race

AI can help legitimate researchers find bugs faster. That is good when the work leads to stronger software and responsible disclosure. However, the same general capability can also help bad actors move faster. A criminal does not need to understand every line of code if an AI tool can help summarize a patch, compare software changes or suggest where a weakness may be hiding.

That is why Apple’s move is important. It shows that big tech companies may need to release security fixes sooner and more often, even when those updates do not include flashy new features. The wider AI world adds pressure here. Frontier AI companies have released or tested systems with stronger coding and cybersecurity capabilities. Some models are available only through limited previews, approved access or extra safeguards because of their potential cyber use.

Similar efforts are also emerging outside the United States. Several international AI labs and security companies now promote models designed to find vulnerabilities, analyze code and assist cyber defense. The takeaway for you isn’t that AI is automatically bad. The real point is speed. Security teams, attackers and AI tools are now moving on a shorter clock.

Advertisement

How to update your iPhone or iPad

Before you update, plug in your device and connect to Wi-Fi. You may also want to back up your iPhone or iPad first.

Then do this: Open Settings > General > Software Update > Download and Install.

After the update finishes, go back to Settings > General > Software Update > Automatic Updates. Make sure automatic updates are turned on. Apple also lets your device automatically install system file updates that improve security without changing the full software version. If you do not see the update right away, check again later. Apple releases updates in stages, and your device also needs enough battery and storage.

How to update your Mac

On a Mac, start with a backup. Then click the Apple menu > System Settings > General > Software Update . Choose Update Now if macOS Tahoe 26.5.2 appears.

Next, check your background update settings. On macOS Tahoe 26 or later, go to Apple menu > System Settings > General > Software Update . Click the More Info button next to Automatic Updates and make sure Install system data files and security updates is turned on.

Advertisement

If your Mac runs Sonoma or Sequoia, look for Safari 26.5.2 in Software Update as well. That Safari update may be the protection your Mac needs if you are not on Tahoe.

BEWARE OF HACKERS SHOWING UP PRETENDING TO BE IT

What this Apple security update means to you

You may see more security updates that feel sudden or small. That can be annoying, especially when you are busy or your device needs to restart.

Still, these updates are becoming more important. Apple is reacting to a world where AI can help shorten the time between a public fix and a possible attack.

So, when your iPhone, iPad or Mac asks you to update, do not treat it like background noise. The update may be closing a door someone else is already trying to find.

Advertisement

Updating your iPhone, iPad and Mac helps close security holes before attackers get more time to exploit them. (Katharina Kausche/picture alliance via Getty Images)

How to stay safe after the Apple security update

Installing the Apple AI security update is the best first move. After that, tighten a few habits that make attacks harder.

1) Keep your apps updated

Your operating system is only part of the security picture. Outdated apps can still create risk, especially if they handle messages, web links, photos, files or account logins. Open the App Store and install available updates regularly.

2) Watch out for suspicious links

Be careful with links in texts, emails and social media messages. WebKit and browser flaws are a reminder that malicious web content can be part of an attack. When in doubt, open the official app or website yourself instead of tapping a link.

3) Use strong passwords and two-factor authentication

Use strong, unique passwords for every account and store them in a password manager. Then turn on two-factor authentication (2FA) wherever possible. If one password gets exposed, you do not want it opening the door to your email, bank or Apple account.

Advertisement

4) Use strong antivirus protection

Use strong antivirus protection on your Mac and other connected devices. It can help catch malicious files, phishing attempts and suspicious activity before they do damage. Get my picks for the best 2026 antivirus protection winners for your Windows, Mac, Android and iOS devices at CyberGuy.com.

5) Back up your data regularly

Back up your iPhone, iPad and Mac before problems hit. A recent backup can help you recover faster if an update fails, your device gets stolen or malware locks you out of important files. CyberGuy’s guide to backing up your devices walks you through ways to protect your files using cloud storage, an external drive or both.

6) Use a personal data removal service

Use a personal data removal service to reduce how much of your personal information is floating around online. Data brokers and people-search sites can expose your name, address, phone number and relatives. Scammers can use those details to make phishing messages feel more believable. Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting CyberGuy.com.

Kurt’s key takeaways

Apple’s early security release shows how fast the cyber threat landscape is changing. The company says there is no evidence these newly patched flaws were exploited, but it still moved the fixes out before the wider 26.6 release. That tells me the old habit of waiting weeks to update is getting riskier. AI can help defenders, but it can also help criminals study weaknesses faster. My advice is direct: update your Apple devices now, turn on automatic security updates and stop putting off patches that protect the phone and computer you use every day.

Do you think AI will make your devices safer because companies can find flaws faster, or more vulnerable because hackers can move faster too? Let us know by writing to us at CyberGuy.com.

Advertisement

Automatic updates, strong passwords and a personal data removal service can make you a harder target after the update. (Silas Stein/picture alliance via Getty Images)

CLICK HERE TO DOWNLOAD THE FOX NEWS APP

Sign up for my FREE CyberGuy Report

  • Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
  • For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
  • Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.

Copyright 2026 CyberGuy.com. All rights reserved.

Continue Reading
Advertisement

Trending