Organized crime group dealing with computer frauds dismantled

In November 2023 was initiated joint investigation code-named TRICK between Moldovan and Romanian authorities against an organized crime group that was dealing since 2022 with crimes of fraud, unauthorized access to an IT system, fraudulent operations, computer forgery, material falsification in official documents, forgery in documents under private signature, use of forgery, blackmail and money laundering.

During the investigations it was revealed that the same organized crime group is involved in conducting fraud schemes by deceiving the victims to make financial investments, approximately 2000 victims being identified so far.

Thus, another joint investigation, code-named DEEP FAKE, was initiated in relation to these crimes, being established that the victims viewed advertisements regarding financial investment services on various social media platforms that were using „deep-fake” material, in the sense that a number of public figures from Romania seem to present realistic investment opportunities.

These ads had attached links to webpages created by the members of the organized crime group that simulated remote investment platforms in stocks/virtual currencies. When accessed, a registration form type web page would open, where the person  had to fill his/her contact details.

Later, the individuals were contacted by the members of the crime group who, by using false names and qualities, misled the victims during phone conversations, to invest in shares/virtual currencies by using their services so as to obtain safe, substantial and quick earnings.  In order to make investments, under the pretext of creating accounts on trading platforms, injured persons are asked to provide photos of their identity document, bank card and utility bills.

After submitting the documents and transferring the amount to accounts indicated by the group members, the victims were instructed to install on their computer systems computer programs that allow remote control of the computer on which it is installed, in this way  the perpetrators gaining access both to the victims’ computer systems and to the computer programs or applications installed on them (mobile/internet banking applications) and implicitly to bank accounts and accounts opened on virtual currency platforms.

During the action day that took place in August 2024 it was revealed that the call centers were based in Republic of Moldova; the Moldovan authorities issuing 60 warrants and ordered preventive measure of detention against 12 defendants.

The damages recorded by the victims amount up to 3 million EUR.

Exchange of information was made through SELEC, which supported operational meetings between the competent officers and prosecutors involved in the case.