DOJ Seizure of Tai Chang Scam Compound Domains Targeting Investors
The U.S. Department of Justice has seized the domain of the notorious Tai Chang scam compound in Myanmar, disrupting a major 'pig butchering' fraud operation. The scam compound, located in Kyaukhat, was responsible for orchestrating large-scale investment fraud schemes, including spoofing legitimate trading platforms to lure victims into depositing funds under false pretenses. This action is part of a broader crackdown on scam compounds in Southeast Asia, which have collectively defrauded victims of billions of dollars.
One of the seized domains, tickmilleas.com, was a fake version of the legitimate TickMill trading platform and was used to trick victims into sending cryptocurrency and downloading fraudulent apps. The FBI, working with the newly formed Scam Center Strike Force and international partners, identified multiple victims who lost money through the site in just the past month. Law enforcement has placed a warning splash page on the seized domain and coordinated with Google and Apple to remove associated malicious apps, further disrupting the scammers' operations.
Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
4 events from the most recent confirmed update back to the earliest known activity.
DOJ seizes tickmilleas.com linked to Myanmar scam center
On 2025-12-03, the U.S. Department of Justice announced the seizure of tickmilleas.com, a fraudulent website tied to the Tai Chang scam compound and used to spoof TickMill for cryptocurrency investment fraud. The action was described as part of the U.S. Scam Center Strike Force campaign to disrupt Southeast Asian scam compounds associated with pig-butchering fraud.
International law enforcement action targets the Tai Chang scam compound
Authorities carried out recent international law enforcement action against the Tai Chang scam compound in Myanmar. By the time of the TickMill-related seizure, this broader effort had already resulted in two other domain seizures connected to the compound.
Google and Apple remove fraudulent mobile apps tied to the scam
After being notified by investigators, Google and Apple removed some mobile applications associated with the fake investment platform. The apps had been used to support the spoofed trading scheme and lend credibility to the fraud.
Fraudsters use TickMill spoofing site to steal cryptocurrency from victims
Operators linked to the Tai Chang scam compound in Kyaukhat, Myanmar used the domain tickmilleas.com to impersonate the legitimate TickMill trading platform in a pig-butchering investment scam. Victims were shown fake returns and staged deposits, and were also directed to fraudulent mobile apps to make the scheme appear legitimate.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
2 references tracked. Mallory keeps watching after this page renders.
See the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
International Takedown Disrupts Dubai-Based Pig-Butchering Crypto Scam Network
U.S., Chinese, Thai, and Dubai law enforcement agencies disrupted a major cryptocurrency investment fraud network by raiding at least nine scam centers in Dubai and arresting 276 people across the Middle East and Southeast Asia. The investigation began after the FBI received complaints from American victims who lost millions of dollars in so-called pig-butchering schemes, and authorities said the operation used fake online personas, romance-style social engineering, and fraudulent crypto investment platforms to steal funds from victims worldwide. U.S. prosecutors in San Diego unsealed fraud and money laundering charges against alleged operators **Thet Min Nyi**, **Wiliang Awang**, **Andreas Chandra**, and **Lisa Mariam**, along with two fugitive co-conspirators. Investigators said the network operated through **Ko Thet Company**, **Sanduo Group**, and **Giant Company**, luring victims to bogus platforms including `CoinswiftTrading` and `SwiftLedger`, then moving stolen money through cryptocurrency accounts to obstruct recovery. The Justice Department said the action forms part of its broader Scam Center Strike Force campaign against cyber-enabled fraud that reportedly cost Americans **$16 billion** in the prior year.
May 1, 2026
DOJ-led crackdown disrupted Southeast Asia pig butchering networks
The U.S. Department of Justice said a coordinated **"Disruption Week"** operation under its Scam Center Strike Force disrupted cyber-enabled fraud and cryptocurrency investment scam networks targeting Americans, including so-called **pig butchering** operations tied to compounds in Cambodia, Laos, and Burma near the Thailand border. Working with U.S. agencies, foreign law enforcement, major technology firms, and blockchain companies, the effort disrupted more than **1.4 million** social media and email accounts, interrupted malicious network activity, decommissioned scam infrastructure, and froze more than **$3.8 million** in cryptocurrency allegedly used to launder victim funds. Authorities said the networks are linked to transnational organized crime, including Chinese syndicates, and often rely on trafficked workers forced to run fraud schemes under threat of violence. The operation also led to the arrest of **seven** suspected scammers in Thailand, additional cases opened by the Royal Thai Police Anti Cyber Scam Center, and referrals for further U.S. investigation. DOJ said reported U.S. losses from cryptocurrency investment fraud continued to surge, rising from **$3.96 billion** in 2023 to **$5.8 billion** in 2024 and more than **$7.2 billion** in 2025.
Jun 5, 2026
US Crackdown on Southeast Asian Crypto Scam Networks and Prince Group Forfeiture
The U.S. Department of Justice, in collaboration with federal law enforcement and interagency partners, has intensified efforts to combat large-scale cryptocurrency-enabled fraud originating from Southeast Asia. This includes the creation of the Scam Center Strike Force, which targets scam compounds that use forced labor to perpetrate investment fraud, and the designation of groups such as the Democratic Karen Benevolent Army (DKBA) and companies like Trans Asia and Troth Star for their roles in these operations. The U.S. government estimates that Americans lost at least $10 billion to such scams in 2024, a significant increase from previous years, and has already seized over $401 million in cryptocurrency assets, with further forfeiture actions underway. A notable case in this crackdown involves the Prince Group, led by Chen Zhi, which operated forced-labor scam compounds in Cambodia. The U.S. Department of Justice unsealed an indictment against Chen Zhi for wire fraud and money laundering, and filed a civil forfeiture complaint for approximately 127,271 Bitcoin—proceeds from these illicit activities. The Chinese National Computer Virus Emergency Response Center (CVERC) has alleged that the U.S. may have acquired these bitcoins from a 2020 attack on the LuBian bitcoin mining pool, raising geopolitical tensions. The Prince Group action is seen as a landmark in the ongoing U.S. campaign to disrupt the infrastructure behind Southeast Asian pig butchering scams and related cybercrime.
Mar 21, 2026