The Feds Took Down a 'Full-Service Cybercrime Platform' Behind $20M in Phishing

Cybercrime is a big business, driving nearly $21 billion in fraud and theft in 2026 alone. The FBI and the Indonesian National Police took a chunk out of that late last week when the pair took down infrastructure vital to the W3LL phishing kit, a piece of software that could steal someone's account credentials and data to bypass multi-factor authentication. 

The W3LL phishing kit was best known for targeting Microsoft 365 accounts, but a crook could purchase it for $500 online and target any number of services. They could then deploy a website that captures a user's login information and session data, giving the criminal access to the account without going through multi-factor authentication. 

Read more: Best Password Manager in 2025

The cybersecurity firm Group-IB, which first documented the W3LL phishing kit in 2023, described it as an all-in-one phishing tool capable of making ...