An exchange, Microsoft, and Europol jointly shut down the phishing platform Tycoon 2FA and seized 330 domains.

PANews, March 5th — According to Cryptopolitan, a certain exchange, together with Microsoft, Europol, and more than ten other organizations, successfully shut down the phishing-as-a-service platform Tycoon 2FA and seized 330 related domains. Since its launch in August 2023, Tycoon has had about 2,000 users, operated over 24,000 domains, and sent tens of millions of fraudulent emails each month to more than 500,000 businesses worldwide. By stealing session cookies and tokens to bypass multi-factor authentication, Tycoon mainly targeted email and online service accounts such as Microsoft 365, Outlook, and Gmail. In this operation, the exchange assisted in tracking crypto payments that funded Tycoon's operations and supported civil litigation for domain seizures. The main developer was identified as Saad Fridi, a Pakistani national.