According to BleepingComputer , Storm-1152 has registered more than 750 million fraudulent accounts and made millions of dollars selling them to criminal groups. It is a provider of criminal services and fraudulent Outlook accounts, as well as services like automatically solving CAPTCHAs to bypass authentication and registering multiple email accounts from Microsoft.
Storm-1152 operates websites and social media pages to sell fraudulent accounts and tools that bypass identity verification software on popular technology platforms. These services help criminals reduce the time and effort required to commit a variety of online crimes, said the general manager of Microsoft's Digital Crimes Unit.
Microsoft said that since 2021, the group has been involved in a scheme to obtain millions of Microsoft Outlook email accounts under the names of fictitious users, then sell them to other groups for use in various forms.
Storm-1152's Illegal Websites
According to Microsoft Threat Intelligence, multiple criminal groups involved in ransomware distribution and data theft have purchased and used accounts provided by Storm-1152. Criminal gangs Storm-0252, Storm-0455, and Octo Tempest (also known as Scattered Spider) have used accounts from Storm-1152 to infiltrate organizations around the world and deploy ransomware. The resulting service disruptions have resulted in losses estimated by Microsoft to be in the hundreds of millions of dollars.
On December 7, Microsoft seized the infrastructure of US-based Storm-1152 and removed the websites after receiving a court order in New York, including the website selling fraudulent Microsoft Outlook accounts, hotmailbox.me, websites supporting tools, infrastructure and selling CAPTCHA solving services, bypassing identity verification for other technology platforms, as well as social media pages used to market these services.
The company also sued Duong Dinh Tu, Nguyen Van Linh, and Nguyen Van Tai for participating in organizing cybercrime activities on the seized domains. The defendants managed and developed the source code for the seized websites. They also participated in publishing instructional videos on how to use fraudulent Outlook accounts and providing chat support to other criminals using their fraudulent services.
Source link
![[Photo] Prime Minister Pham Minh Chinh attends the World Congress of the International Federation of Freight Forwarders and Transport Associations - FIATA](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/10/08/1759936077106_dsc-0434-jpg.webp)
![[Photo] Prime Minister Pham Minh Chinh inspects and directs the work of overcoming the consequences of floods after the storm in Thai Nguyen](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/10/08/1759930075451_dsc-9441-jpg.webp)
Comment (0)