Overview

• An international phishing scheme led by 24-year-old Yucheng C., alias 'Darcula,' has stolen credit card data from around 900,000 victims globally since late 2023.
• The operation uses the 'Magic Cat' software to create realistic fake websites mimicking DHL, Hermes, Telekom, and other services, harvesting sensitive data like TAN codes.
• Victims often lose hundreds to thousands of euros, with banks frequently denying reimbursement claims, citing customer negligence.
• German authorities, including the BKA, have monitored the network since October 2024 but have not initiated active investigations, citing difficulties in international cooperation.
• Consumer protection agencies have intensified warnings, advising users to avoid clicking on unsolicited links and to verify messages directly through official channels.