JokerOTP Dismantled After 28,000 Phishing Attacks, 2 Arrested

A major international law enforcement operation has dismantled JokerOTP, a sophisticated phishing tool used to intercept two-factor authentication codes and steal over £7.5 million through more than 28,000 attacks across 13 countries. Two suspects, aged 24 and 30, were arrested in England and the Netherlands after a three-year investigation led by UK and Dutch authorities. JokerOTP enabled fraudsters to impersonate trusted organizations, tricking victims into revealing one-time passwords and granting unauthorized access to their accounts. The suspects face multiple charges, including fraud, money laundering, and blackmail. Authorities are now working to shut down the platform’s online infrastructure and warn that further law enforcement action is expected against users of the service.