US DoJ Seizes Domain Used in $14.6 Million Bank Account Takeover Scheme

US DoJ Seizes Fraud Domain Behind $14.6 Million Bank Account Takeover Scheme

The U.S. Justice Department (DoJ) seized the domain web3adspanels[.]org, used by criminals to steal bank login credentials and facilitate a $14.6 million bank account takeover scheme impacting 19 U.S. victims. The fraudulent operation relied on malicious advertisements mimicking legitimate bank ads on search engines like Google and Bing.

Why This Matters

Current security models often assume users can reliably identify legitimate websites, but sophisticated phishing attacks leveraging search engine advertising bypass this assumption. The scale of this fraud—$14.6 million in actual losses from 19 victims—demonstrates the financial impact of these attacks and the increasing sophistication of cybercriminals exploiting user trust and search engine vulnerabilities.

Key Insights

• IC3 received over 5,100 complaints related to bank account takeover fraud since January 2025, with reported losses exceeding $262 million.
• Search engine ad fraud: Attackers exploit the trust associated with sponsored search results to redirect users to malicious websites.
• Backend web panels: Criminals use centralized panels like web3adspanels[.]org to manage stolen credentials and orchestrate account takeovers.

Practical Applications

• Use Case: Financial institutions should implement advanced ad fraud detection and monitoring to identify and block malicious advertisements impersonating their brands.
• Pitfall: Relying solely on user education to prevent phishing attacks is ineffective, as attackers continuously refine their techniques to bypass awareness.

References:

• https://thehackernews.com/2025/12/us-doj-seizes-fraud-domain-behind-146.html