Google has initiated a landmark civil lawsuit in the U.S. District Court for the Southern District of New York against a suspected China-based cybercrime network dubbed the "Outsider Enterprise." Filed on June 12, this action marks the first U.S. litigation explicitly targeting the misuse of Google’s Gemini AI technology to facilitate phishing scams.
The scale of the alleged operation is substantial. Between November and April, the group reportedly generated over 1.5 million malicious URLs. In a concentrated two-week period in early May alone, the network distributed approximately 2.5 million fraudulent text messages. The complaint identifies the "Outsider kit" as the primary tool, enabling users to create convincing replicas of high-profile entities including Google, YouTube, and the U.S. Postal Service.
Access to such sophisticated phishing infrastructure was notably affordable, with similar kits previously available for roughly $88 per week. Google’s legal claims encompass trademark infringement, violations of the Racketeer Influenced and Corrupt Organizations (RICO) Act, and unauthorized use of Google Cloud and Drive services. The company is seeking injunctive relief to dismantle the operation entirely.
This enforcement effort involves coordination with the FBI and major telecommunications carriers AT&T, T-Mobile, and Verizon. The aggressive invocation of RICO charges signals that authorities view these cyber operations as organized criminal enterprises rather than isolated incidents. A successful outcome could accelerate congressional interest in federal anti-scam legislation, aligning with Google’s advocacy for stricter regulatory frameworks.
Disclosure: This article was edited by Editorial Team. For more information on how we create and review content, see our Editorial Policy.