The Treasury also highlighted FUNNULL's involvement in the Polyfill supply chain attack, where the company maliciously altered code to redirect visitors from legitimate websites to scam and gambling sites, some linked to Chinese money laundering operations. This aligns with findings from cybersecurity firm Silent Push, which previously accused FUNNULL of these activities. Zach Edwards, a researcher at Silent Push, expressed approval of the Treasury's actions but emphasized the need for further measures against global financial scams targeting Americans.
Key takeaways:
- The U.S. government imposed sanctions on FUNNULL, a company accused of facilitating "pig butchering" crypto scams causing $200 million in losses for American victims.
- FUNNULL, based in the Philippines and run by Chinese-national Liu Lizhi, provided infrastructure for scam websites and was linked to a supply chain attack redirecting users to malicious sites.
- The Treasury's actions align with findings from cybersecurity firm Silent Push, which previously accused FUNNULL of similar activities.
- Experts emphasize the need for continued efforts to hold global threat actors accountable for financial scams targeting Americans.