 |
AMSTERDAM, Sept. 19, 2024 /PRNewswire/ -- Group-IB, a leading creator of cybersecurity technologies to investigate, prevent, and fight digital crime, announced today that it has contributed a international operation code named "Operation Kaerb" coordinated by Europol and Ameripol–in partnership with European and Latin American law enforcement agencies and judiciary authorities–which resulted in the arrest of 17 cybercriminals in Argentina, Chile, Colombia, Ecuador, Peru, and Spain, who were behind the iServer phishing-as-a-platform targeting mobile users worldwide. The iServer phishing-as-a-service platform, which was active for five years, is reported by law enforcement investigators to have targeted over 1.2-million mobile phones, and claimed approximately 483,000 victims worldwide. The administrator of the iServer phishing platform, an Argentinian national, was also arrested during the multi-agency law enforcement operation that took place between 10 to 17 September 2024.
Active for at least five years, the iServer platform was primarily used by Spanish-speaking criminals in North and South America, but it has since expanded its reach into Europe and other regions. While iServer was essentially an automated phishing platform, its specific focus on harvesting credentials to unlock stolen phones set it apart from typical phishing-as-a-service offerings. iServer's platform features a web interface that enables low-skilled criminals, known as "unlockers," to steal device passwords, user credentials from cloud-based mobile platforms and other personal information from victims. This allows them to bypass "Lost Mode" and unlock phones acquired through illegal means.
During its investigations into iServer's criminal activities, Group-IB specialists also uncovered the structure and roles of criminal syndicates operating with the platform: the platform's owner/developer sells access to "unlockers," who in their turn provide phone unlocking services to other criminals with locked stolen devices. The phishing attacks are specifically designed to gather data that grants access to physical mobile devices, enabling criminals to acquire users' credentials and local device passwords to unlock devices or unlink them from their owners. iServer automates the creation and delivery of phishing pages that imitate popular cloud-based mobile platforms, featuring several unique implementations that enhance its effectiveness as a cybercrime tool.
Unlockers obtain the necessary information for unlocking the mobile phones, such as IMEI, language, owner details, and contact information, often accessed through lost mode or via cloud-based mobile platforms. They utilize phishing domains provided by iServer or create their own to set up a phishing attack. After selecting an attack scenario, iServer creates a phishing page and sends an SMS with a malicious link to the victim.
A "redirector" link is used to filter and verify the visitor before leading them to the final phishing page; if they do not comply with the rules, access is denied. Once victims enter their credentials, these are verified by the platform, and additional information like OTP codes may be requested.
Ultimately, criminals receive the stolen and validated credentials through the iServer web interface, enabling them to unlock a phone, turn off "Lost mode" and untie it from the owner's account.
"We are honored to stop millions of cyber attacks targeting mobile users. The arrest of the syndicate members, including the mastermind, has averted significant fraud and safeguarded the personal lives of individuals across various regions," said Dmitry Volkov, CEO of Group-IB. "This serves as yet another great example of cross border collaboration, and we will continue to support local and international law enforcement efforts to combat cybercrime globally."
ABOUT GROUP-IB
Established in 2003, Group-IB is a leading creator of cybersecurity technologies to investigate, prevent, and fight digital crime globally. Headquartered in Singapore, and with Digital Crime Resistance Centers in the Middle East and Africa, Europe, Central Asia, and the Asia-Pacific, Group-IB analyses and neutralizes regional and country-specific cyber threats via its Unified Risk Platform, offering unparalleled defence through its industry-leading Threat Intelligence, Fraud Protection, Digital Risk Protection, Managed Extended Detection and Response (XDR), Business Email Protection, and External Attack Surface Management solutions, catering to government, retail, healthcare, gaming, financial sectors, and beyond. Group-IB collaborates with international law enforcement agencies like INTERPOL, EUROPOL, and AFRIPOL to fortify cybersecurity worldwide, and has been awarded by advisory agencies including Aite-Novarica, Gartner, Forrester, Frost & Sullivan, and KuppingerCole.
For more information, visit us at www.group-ib.com or connect with us on LinkedIn, X, Facebook, and Instagram.
FOR MEDIA INQUIRIES
Group-IB Public Relations
PR@Group-IB.com
AMSTERDAM, Sept. 19, 2024 /PRNewswire/ -- Group-IB, a leading creator of cybersecurity technologies to investigate, prevent, and fight digital crime, announced today that it has contributed a international operation code named "Operation Kaerb" coordinated by Europol and Ameripol–in partnership with European and Latin American law enforcement agencies and judiciary authorities–which resulted in the arrest of 17 cybercriminals in Argentina, Chile, Colombia, Ecuador, Peru, and Spain, who were behind the iServer phishing-as-a-platform targeting mobile users worldwide. The iServer phishing-as-a-service platform, which was active for five years, is reported by law enforcement investigators to have targeted over 1.2-million mobile phones, and claimed approximately 483,000 victims worldwide. The administrator of the iServer phishing platform, an Argentinian national, was also arrested during the multi-agency law enforcement operation that took place between 10 to 17 September 2024.
Click to Gallery
Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally
Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally
Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally
Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally
Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally
Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally
Active for at least five years, the iServer platform was primarily used by Spanish-speaking criminals in North and South America, but it has since expanded its reach into Europe and other regions. While iServer was essentially an automated phishing platform, its specific focus on harvesting credentials to unlock stolen phones set it apart from typical phishing-as-a-service offerings. iServer's platform features a web interface that enables low-skilled criminals, known as "unlockers," to steal device passwords, user credentials from cloud-based mobile platforms and other personal information from victims. This allows them to bypass "Lost Mode" and unlock phones acquired through illegal means.
During its investigations into iServer's criminal activities, Group-IB specialists also uncovered the structure and roles of criminal syndicates operating with the platform: the platform's owner/developer sells access to "unlockers," who in their turn provide phone unlocking services to other criminals with locked stolen devices. The phishing attacks are specifically designed to gather data that grants access to physical mobile devices, enabling criminals to acquire users' credentials and local device passwords to unlock devices or unlink them from their owners. iServer automates the creation and delivery of phishing pages that imitate popular cloud-based mobile platforms, featuring several unique implementations that enhance its effectiveness as a cybercrime tool.
Unlockers obtain the necessary information for unlocking the mobile phones, such as IMEI, language, owner details, and contact information, often accessed through lost mode or via cloud-based mobile platforms. They utilize phishing domains provided by iServer or create their own to set up a phishing attack. After selecting an attack scenario, iServer creates a phishing page and sends an SMS with a malicious link to the victim.
A "redirector" link is used to filter and verify the visitor before leading them to the final phishing page; if they do not comply with the rules, access is denied. Once victims enter their credentials, these are verified by the platform, and additional information like OTP codes may be requested.
Ultimately, criminals receive the stolen and validated credentials through the iServer web interface, enabling them to unlock a phone, turn off "Lost mode" and untie it from the owner's account.
"We are honored to stop millions of cyber attacks targeting mobile users. The arrest of the syndicate members, including the mastermind, has averted significant fraud and safeguarded the personal lives of individuals across various regions," said Dmitry Volkov, CEO of Group-IB. "This serves as yet another great example of cross border collaboration, and we will continue to support local and international law enforcement efforts to combat cybercrime globally."
ABOUT GROUP-IB
Established in 2003, Group-IB is a leading creator of cybersecurity technologies to investigate, prevent, and fight digital crime globally. Headquartered in Singapore, and with Digital Crime Resistance Centers in the Middle East and Africa, Europe, Central Asia, and the Asia-Pacific, Group-IB analyses and neutralizes regional and country-specific cyber threats via its Unified Risk Platform, offering unparalleled defence through its industry-leading Threat Intelligence, Fraud Protection, Digital Risk Protection, Managed Extended Detection and Response (XDR), Business Email Protection, and External Attack Surface Management solutions, catering to government, retail, healthcare, gaming, financial sectors, and beyond. Group-IB collaborates with international law enforcement agencies like INTERPOL, EUROPOL, and AFRIPOL to fortify cybersecurity worldwide, and has been awarded by advisory agencies including Aite-Novarica, Gartner, Forrester, Frost & Sullivan, and KuppingerCole.
For more information, visit us at www.group-ib.com or connect with us on LinkedIn, X, Facebook, and Instagram.
FOR MEDIA INQUIRIES
Group-IB Public Relations
PR@Group-IB.com
** The press release content is from PR Newswire. Bastille Post is not involved in its creation. **
Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally
Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally
Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally
Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally
Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally
Group-IB contributes to international "Operation Kaerb" that led to the arrest of the masterminds behind the iServer phishing-as-a-service platform which claimed more than 483,000 victims globally
LAS VEGAS, Dec. 24, 2025 /PRNewswire/ -- Kosmera, a brand dedicated to forging the future of intelligent mobility, announced today that its first-ever prototype—a new energy hypercar—will make its global debut at the 2026 Consumer Electronics Show (CES) in Las Vegas from January 6–9.
Positioned in the premium segment, these 2 prototypes blend classic supercar heritage with next-generation technology, guided by the philosophy of being "stunning to behold, thrilling to drive, and exhilarating to enjoy." Kosmera aims to make personalized mobility accessible, transforming it from a niche pursuit into a daily lifestyle.
At CES, Kosmera will present two static display vehicles, highlighting their industrial design and showcasing exterior and interior styling. Planned for "dual-mode mastery," the prototype is engineered to deliver high comfort for daily use alongside extreme track performance. It is designed to incorporate a revolutionary active linear motor suspension system, which is planned to seamlessly transition between a smooth "zero-sensation" ride and a rigid, race-ready chassis setup. The vehicle also plans to feature a dual-steering-wheel unlock mechanism, further enhancing its adaptive driving character—catering directly to a new generation of Innovation Seekers and Performance Enthusiasts.
Kosmera's prototype serves as a showcase of integrated "black technologies." Its powertrain is engineered to deliver up to 350 kW per wheel, targeting a near 1:1 power-to-weight ratio for explosive acceleration. The chassis is planned to use aerospace-grade composites and 3D-printed metals, aiming for exceptional torsional stiffness. Central to the driving experience is the AI Coach—a system designed to leverage AI, steer-by-wire technology, and an AR HUD to guide drivers with professional racing lines and techniques, helping users build expert-level skills on the track.
"Our presence at CES is a statement. We are not just showcasing a car—we are introducing a new paradigm for intelligent, high-performance mobility," said Winter Chen, CEO at Kosmera. "This prototype embodies our mission to break boundaries, challenging the notion that extreme performance must come at the expense of daily usability and intelligent experience."
Kosmera invites media, industry partners, and technology pioneers to witness the unveiling at its CES booth(LVCC - West Hall, Booth 7067). This debut marks a significant step in Kosmera's journey toward creating a seamless, uncompromising ecosystem that connects people, vehicles, and environments.
About Kosmera
At Kosmera, we don't just create vehicles — we forge the future of movement. Our innovations are designed to break boundaries and challenge what's possible. Empowered by advanced technology and a global supply chain foundation, our mission is to seamlessly integrate the digital and physical worlds. Through a fully connected ecosystem of people, vehicles, environments, and experiences, we exist to create, innovate, and empower those who seek more than the ordinary. For the visionaries and the doers, we exist for you – always, and without compromise.
Media Contact
wangshifu@kosmera.tech
PR Manager at Kosmera
** The press release content is from PR Newswire. Bastille Post is not involved in its creation. **
CES 2026 Preview: Kosmera Prototype Debuts, Redefining the Intelligent Hypercar
