Fighting Back Against the “Lighthouse” Scam Network
A complex criminal network, dubbed “Lighthouse,” is exploiting trusted brands like Google to perpetrate widespread financial fraud. The scam operates by sending deceptive text messages containing links that lead to fraudulent websites designed to steal sensitive information - email credentials, banking details, and more. These sites illegally mimic legitimate services, wiht over 107 website templates discovered using Google’s branding on fake sign-in screens.
the impact of this operation is substantial. “Lighthouse” has already victimized over one million people in more then 120 countries, and is estimated to have compromised between 12.7 and 115 million credit cards within the United States alone. This represents a dramatic increase – a five-fold surge – in these types of attacks since 2020.
Google is responding with a multi-pronged approach, beginning with legal action.The company is pursuing claims under the Racketeer Influenced and Corrupt Organizations Act, the Lanham Act, and the Computer Fraud and Abuse Act, aiming to dismantle the core infrastructure supporting this criminal enterprise and protect both users and other brands from similar exploitation.
Recognizing that legal action alone isn’t enough, Google is actively advocating for stronger public policy to combat the broader threat of scams. The company is endorsing key bipartisan bills currently before the U.S. Congress, including:
* The GUARD Act: Sponsored by Senators Britt, scott, and Gillibrand, and Representatives nunn, Fitzgerald, and Gottheimer, this legislation would provide state and local law enforcement with federal grant funding to investigate scams targeting retirees.
* The Foreign Robocall Elimination Act: Introduced by Senators Budd and Welch, this bill proposes the creation of a taskforce dedicated to blocking illegal robocalls originating from foreign sources before they reach consumers.
* The SCAM Act: Sponsored by Senators Cornyn and Shaheen, this legislation focuses on developing a national strategy to counter “scam compounds,” strengthening sanctions, and supporting survivors of human trafficking often found within these operations.
Beyond legal and policy efforts, Google is also bolstering its technological defenses. New features powered by artificial intelligence are being launched to proactively identify and flag common scam messages, such as those falsely claiming toll fees or package delivery issues. Enhanced security measures are also being implemented within Google Messages to protect users from malicious links and scams. Furthermore, Google is expanding account recovery options through “recovery Contacts” to make it safer and easier for users to regain access to compromised accounts. These efforts are coupled with ongoing public education initiatives designed to help users recognize and avoid fraudulent schemes.
Google emphasizes that combating these attacks requires a collaborative effort. By pursuing legal remedies, advocating for stronger legislation, and developing smarter, AI-driven security tools, the company aims to create a more secure digital habitat for everyone.
