Key facts
- Belgian police arrested a 19-year-old suspected of leading a phishing and money-laundering network.
- The network stole over $572,000 by tricking victims into installing remote-access software.
- Proceeds were laundered through cryptocurrencies.
- Phishing accounts for the majority of crypto security losses, totaling $306 million in Q1 2026.
- Fake ads on Google impersonating decentralized exchange Uniswap reportedly led to over $400,000 in theft.
Belgian authorities have arrested a 19-year-old individual suspected of being a central figure in a European phishing and money-laundering operation that defrauded victims of over 500,000 euros ($572,000). The gang employed tactics such as sending fake government emails and making phone calls to persuade individuals to install remote-access software.
The suspect was apprehended in an Airbnb in Antwerp, where a second individual was also located. The Federal Judicial Police initiated their investigation in March 2026, prompted by a rise in phishing attacks in the region. The primary suspect has been presented to an investigating judge, who subsequently issued an arrest warrant.
Evidence suggests the group utilized money mules and couriers to launder the illicit gains, with cryptocurrencies playing a role in this process. The investigation highlights the multifaceted use of crypto in phishing schemes, particularly for laundering stolen funds.
Phishing continues to be a significant threat within the cryptocurrency space, responsible for the majority of the $482 million lost in security breaches during the first quarter of 2026. Specifically, phishing and social engineering attacks accounted for $306 million of these losses, according to Hacken. These attacks exploit human vulnerabilities rather than the underlying code of blockchain protocols.
Recent incidents include scammers using Google to deploy malicious phishing advertisements that impersonated the decentralized exchange Uniswap, allegedly resulting in losses exceeding $400,000. Data aggregator DeFiLlama has identified fake Google ads as a common vector for phishing attacks, a trend also noted by the crypto cybersecurity group Security Alliance, which reported a notable increase in phishing activity on Google Search in March.