Google sued a Chinese cybercrime network on Friday, accusing the group of using the company's Gemini artificial intelligence system to deploy financial scams targeting hundreds of thousands of Americans. The tech giant warned that AI tools are accelerating the scale and sophistication of online fraud, prompting a joint takedown effort with federal law enforcement and major wireless carriers.
The Outsider Enterprise network
The lawsuit, filed in U.S. District Court for the Southern District of New York, targets a network known as Outsider Enterprise. Google accused the group of using its technology and brand for fraudulent purposes, seeking a restraining order to shut down the operation. The network coordinated via the Telegram messaging service to share tips and trade software kits, using AI to mass-produce scam messages across communications platforms.
Using AI, the Chinese network developed 131 software kits that simplified the creation of thousands of fake websites. These sites mimicked major companies like Google and YouTube, as well as government operations such as the Postal Service and New York's E-ZPass toll system. Cybersecurity professionals tracking these trends can explore specialized training through an AI Learning Path for Cybersecurity Analysts to better identify and mitigate automated threats.
Scale of the fraud
The volume of the attack highlights the efficiency of automated fraud. In a two-week period in May, the group sent 2.5 million messages to Android phone users. These messages contained links to 9,000 fake websites and over one million fraudulent internet addresses connected to the group. While Google could not pinpoint the exact amount of damages, the company said the losses reached into the millions.
AI-powered scams are growing faster than other types of online phishing and fraud schemes. Cybercriminals defrauded Americans of nearly $21 billion last year, with about $893 million in losses directly linked to AI, according to the FBI.
Industry and law enforcement response
Google is coordinating for the first time with the Federal Bureau of Investigation and wireless providers including AT&T, T-Mobile, and Verizon to dismantle the network. "This is our first coordinated effort and lawsuit and that speaks to the breadth of impact that this particular scam has," said Halimah DeLaine Prado, Google's general counsel.
Law enforcement officials emphasize that the technology lowers the barrier to entry for sophisticated attacks. "Criminals increasingly use A.I. to make fraud like this more convincing and harder to detect," said Brett Leatherman, the assistant director of the F.B.I.'s Cyber Division. Developers and IT teams managing enterprise systems can review Google AI Courses to understand the underlying mechanics of these generative models and how to secure their deployments.
Why this matters for IT and development professionals
The Outsider Enterprise case demonstrates how generative AI reduces the time and technical skill required to deploy large-scale phishing campaigns. IT and development teams must assume that attackers can generate convincing, domain-specific clone sites at scale. Verifying the authenticity of internal and external communications, enforcing strict domain validation, and monitoring for anomalous traffic spikes are now baseline requirements for network defense.
Your membership also unlocks:
