International Takedown Disrupts Dubai-Based Pig-Butchering Crypto Scam Network
U.S., Chinese, Thai, and Dubai law enforcement agencies disrupted a major cryptocurrency investment fraud network by raiding at least nine scam centers in Dubai and arresting 276 people across the Middle East and Southeast Asia. The investigation began after the FBI received complaints from American victims who lost millions of dollars in so-called pig-butchering schemes, and authorities said the operation used fake online personas, romance-style social engineering, and fraudulent crypto investment platforms to steal funds from victims worldwide.
U.S. prosecutors in San Diego unsealed fraud and money laundering charges against alleged operators Thet Min Nyi, Wiliang Awang, Andreas Chandra, and Lisa Mariam, along with two fugitive co-conspirators. Investigators said the network operated through Ko Thet Company, Sanduo Group, and Giant Company, luring victims to bogus platforms including CoinswiftTrading and SwiftLedger, then moving stolen money through cryptocurrency accounts to obstruct recovery. The Justice Department said the action forms part of its broader Scam Center Strike Force campaign against cyber-enabled fraud that reportedly cost Americans $16 billion in the prior year.
Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
5 events from the most recent confirmed update back to the earliest known activity.
DOJ presents case as part of 2026 Scam Center Strike Force actions
The U.S. Department of Justice framed the takedown as part of its broader 2026 Scam Center Strike Force campaign targeting cyber-enabled fraud. Officials said such scams stole about $16 billion from Americans in the prior year.
U.S. prosecutors unseal charges against alleged operators
Federal prosecutors in San Diego announced fraud and money laundering charges against four alleged operators—Thet Min Nyi, Wiliang Awang, Andreas Chandra, and Lisa Mariam—along with two unnamed fugitive co-conspirators. The indictment says the conspiracy ran through early March 2026 and used fake crypto platforms such as CoinswiftTrading and SwiftLedger.
Authorities raid Dubai scam centers and arrest 276 suspects
U.S., Chinese, Thai, and Dubai law enforcement disrupted the fraud network by raiding at least nine scam centers in Dubai. The coordinated action resulted in at least 276 arrests tied to cryptocurrency investment fraud operations affecting victims in the U.S. and elsewhere.
FBI complaints from U.S. victims trigger investigation
After numerous American victims reported losing millions of dollars in pig-butchering scams, the FBI and partners began investigating the fraud network. Investigators used Meta-provided information, financial data, and cryptocurrency records to trace the operation to Dubai.
Scam-center conspiracy begins operating across multiple jurisdictions
According to the indictment, the cryptocurrency investment fraud conspiracy was active from at least 2024, using fake personas and fraudulent trading platforms to target victims. The network allegedly operated through entities including Ko Thet Company, Sanduo Group, and Giant Company.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
6 references tracked. Mallory keeps watching after this page renders.
Dubai scam centers shut down in joint US-China operation | brief | SC Media
scworld.com
Open sourcePolice dismantles 9 crypto scam centers, arrests 276 suspects
bleepingcomputer.com
Open sourceOffice of Public Affairs | Coordinated Takedown of Scam Centers Leads to at Least 276 Arrests; Alleged Managers and Recruiters Charged in San Diego | United States Department of Justice
justice.gov
Open sourceUS, China partner on scam center takedown in Dubai | The Record from Recorded Future News
therecord.media
Open sourceFBI-Backed Takedown Hits Crypto Scam Centers - GovInfoSecurity
govinfosecurity.com
Open sourceFBI-Backed Takedown Hits Crypto Scam Centers - BankInfoSecurity
bankinfosecurity.com
Open sourceSee the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
DOJ-led crackdown disrupted Southeast Asia pig butchering networks
The U.S. Department of Justice said a coordinated **"Disruption Week"** operation under its Scam Center Strike Force disrupted cyber-enabled fraud and cryptocurrency investment scam networks targeting Americans, including so-called **pig butchering** operations tied to compounds in Cambodia, Laos, and Burma near the Thailand border. Working with U.S. agencies, foreign law enforcement, major technology firms, and blockchain companies, the effort disrupted more than **1.4 million** social media and email accounts, interrupted malicious network activity, decommissioned scam infrastructure, and froze more than **$3.8 million** in cryptocurrency allegedly used to launder victim funds. Authorities said the networks are linked to transnational organized crime, including Chinese syndicates, and often rely on trafficked workers forced to run fraud schemes under threat of violence. The operation also led to the arrest of **seven** suspected scammers in Thailand, additional cases opened by the Royal Thai Police Anti Cyber Scam Center, and referrals for further U.S. investigation. DOJ said reported U.S. losses from cryptocurrency investment fraud continued to surge, rising from **$3.96 billion** in 2023 to **$5.8 billion** in 2024 and more than **$7.2 billion** in 2025.
Jun 5, 2026
DOJ Seizure of Tai Chang Scam Compound Domains Targeting Investors
The U.S. Department of Justice has seized the domain of the notorious Tai Chang scam compound in Myanmar, disrupting a major 'pig butchering' fraud operation. The scam compound, located in Kyaukhat, was responsible for orchestrating large-scale investment fraud schemes, including spoofing legitimate trading platforms to lure victims into depositing funds under false pretenses. This action is part of a broader crackdown on scam compounds in Southeast Asia, which have collectively defrauded victims of billions of dollars. One of the seized domains, `tickmilleas.com`, was a fake version of the legitimate TickMill trading platform and was used to trick victims into sending cryptocurrency and downloading fraudulent apps. The FBI, working with the newly formed Scam Center Strike Force and international partners, identified multiple victims who lost money through the site in just the past month. Law enforcement has placed a warning splash page on the seized domain and coordinated with Google and Apple to remove associated malicious apps, further disrupting the scammers' operations.
Mar 21, 2026
US Crackdown on Southeast Asian Crypto Scam Networks and Prince Group Forfeiture
The U.S. Department of Justice, in collaboration with federal law enforcement and interagency partners, has intensified efforts to combat large-scale cryptocurrency-enabled fraud originating from Southeast Asia. This includes the creation of the Scam Center Strike Force, which targets scam compounds that use forced labor to perpetrate investment fraud, and the designation of groups such as the Democratic Karen Benevolent Army (DKBA) and companies like Trans Asia and Troth Star for their roles in these operations. The U.S. government estimates that Americans lost at least $10 billion to such scams in 2024, a significant increase from previous years, and has already seized over $401 million in cryptocurrency assets, with further forfeiture actions underway. A notable case in this crackdown involves the Prince Group, led by Chen Zhi, which operated forced-labor scam compounds in Cambodia. The U.S. Department of Justice unsealed an indictment against Chen Zhi for wire fraud and money laundering, and filed a civil forfeiture complaint for approximately 127,271 Bitcoin—proceeds from these illicit activities. The Chinese National Computer Virus Emergency Response Center (CVERC) has alleged that the U.S. may have acquired these bitcoins from a 2020 attack on the LuBian bitcoin mining pool, raising geopolitical tensions. The Prince Group action is seen as a landmark in the ongoing U.S. campaign to disrupt the infrastructure behind Southeast Asian pig butchering scams and related cybercrime.
Mar 21, 2026