A sophisticated cybercrime network based in Vietnam has been implicated in extensive fraudulent account creation efforts that target service providers and digital platforms on a global scale. This network utilizes disposable email addresses combined with automated bots to generate fake digital identities, posing a significant threat to online security.
Impact of Fraudulent Accounts
Fraudulent accounts are not merely a digital inconvenience; they serve as a conduit for various financial crimes. Criminals exploit these accounts to perpetrate activities such as spam, phishing, and severe interpersonal scams, including ‘pig butchering,’ which can involve romance scams and cryptocurrency fraud. These operations are often orchestrated from organized crime hubs in Southeast Asia, particularly near the borders of China, Myanmar, Thailand, and Cambodia.
Investigators from Okta, in collaboration with the University of Cyprus, identified a surge in suspicious account signups linked to numerous disposable email domains. This finding was pivotal in connecting the broader fraudulent activities to a Vietnam-centered marketplace for online fraud.
Cybercrime-as-a-Service Infrastructure
In March 2026, researchers uncovered a structured Cybercrime-as-a-Service (CaaS) ecosystem, offering tools and services such as fraud kits, stolen data, and anti-detect browsers. This marketplace caters to those wishing to conduct fraudulent activities. One particularly damaging tactic involves creating fake accounts to initiate SMS messages to premium-rate numbers, known as SMS pumping or International Revenue Sharing Fraud (IRSF), burdening service providers with high costs.
The United Nations Office on Drugs and Crime highlighted in an April 2025 report that this underground market is expanding, with vendors now offering AI-driven tools and money laundering services targeting victims worldwide. Major platforms like LinkedIn, Instagram, Facebook, and TikTok are affected, with fake accounts used to manipulate reviews and exploit free trials, eroding user trust.
Defense Strategies Against Fraud
At the center of this fraud infrastructure is a Vietnam-based web design company, CMSNT[.]co, known for selling website templates aimed at ‘online money-making ventures.’ These templates are widely used by fraudulent storefronts selling account products and social media engagement services.
To effectively combat fraudulent signups, organizations must adopt a multi-layered defense strategy. This includes deploying bot detection systems, enforcing CAPTCHA challenges, and applying stricter rate limits on signup attempts from specific IP addresses. Blocking known disposable email domains and implementing email verification can significantly reduce fake account creation. For high-value services, employing identity proofing with third-party verification providers adds another protective layer.
Behavioral analysis tools can detect unusual registration patterns, while restricting access from high-risk proxies can prevent attackers from reaching registration pages. These measures are crucial in maintaining the integrity of online platforms and protecting users from fraud.
