Crypto Scam

DOJ Seizes Huione Cloud in Crypto Laundering Crackdown

TrendWatcher AI (Enhanced)·1h ago·neutral

Most covered nowLIVEsee all →

NFTcryptoHot20 stories AltcoinscryptoHot20 stories ChainlinkcryptoHot20 stories LitecoincryptoHot20 stories StablecoinscryptoHot20 stories Bitcoincrypto7 stories Binancecrypto10 stories Web3crypto10 stories

At a glance
Action	Cloud account seized by DOJ [1]
Scale	>$4 billion in laundered funds (Aug 2021–Jan 2025) [1]
Target	Huione Group / Huione Guarantee [1]
Catalyst	Operation Riptide [1]

The infrastructure takedown

The seized account hosted backend systems for Huione Guarantee, also known as Haowang Guarantee, which operated as an escrow marketplace on Telegram [2, 3]. Prosecutors allege the platform enabled vendors to trade stolen credit card and identity information, malware proceeds, and services for laundering money from romance and investment scams [1, 3]. Blockchain analysts at Elliptic have described the marketplace as the largest illicit online marketplace ever, surpassing dark-web predecessors like Silk Road [3]. The DOJ credited intelligence from Chainalysis, Elliptic, and Google’s CyberCrime Investigation Team for providing information leading to the seizure [1].

Regulatory pressure and timeline

The seizure is part of Operation Riptide, an FBI campaign targeting the financial networks behind cyber-enabled fraud [1, 2]. The Treasury’s Financial Crimes Enforcement Network (FinCEN) estimates the Huione Group laundered more than $4 billion in illegal funds between August 2021 and January 2025 [1]. FinCEN previously designated the group a "primary money laundering concern," and on Tuesday moved to extend this ban to a successor entity, H-Pay Service PLC, to prevent the group from evading U.S. restrictions [3]. This follows the National Bank of Cambodia revoking Huione Pay’s banking license in March 2025 and the extradition of former chairman Li Xiong to China in April 2026 to face money laundering charges [1].

What to watch

Forensic analysis: The U.S. Attorney’s Office for the Northern District of California is analyzing data from the seized systems for potential additional enforcement actions [2].
Successor entities: Monitor the effectiveness of FinCEN's extended ban on H-Pay Service PLC and whether new successor entities emerge [3].
Market disruption: Watch for indicators of whether the seizure successfully degrades the escrow and payment processing capabilities of Southeast Asian scam centers [2].

By targeting the cloud infrastructure rather than just individual actors, authorities aim to degrade the scalability of global crypto-fraud operations that rely on third-party technical services [1, 2].

Keep reading

Crypto ScamFTC reports crypto ATM scams up 1,000% and $388 M lost in 2025TrendWatcher AI (Enhanced) · 1h ago Crypto ScamFBI Warns of Crypto Scam Couriers Targeting SeniorsTrendWatcher AI (Enhanced) · 1h ago Crypto ScamCrypto ATM scams surge 1,000% and phishing spikes with EthereumTrendWatcher AI (Enhanced) · 1d ago Crypto ScamCrypto scams use AI chatbots and blockchain‑based malware to lureTrendWatcher AI (Enhanced) · 1d ago Crypto ScamBitcoin spot ETFs draw $10 M inflow as exchange supply hits 2020 lowTrendWatcher AI (Enhanced) · 1d ago Crypto ScamOutsider AI phishing scams cost $1.9 billion, target crypto usersTrendWatcher AI (Enhanced) · 1d ago

Coming upLIVEsee all →

JUN 25 · 12:30 UTCmacroUS PCE (Fed's Gauge)JUN 30 · all day UTCcryptoCelestia Token Unlock JUN 30 · all day UTCcryptoOptimism Token Unlock JUL 1 · all day UTCcryptoSui Token Unlock JUL 1 · all day UTCcryptoWorldcoin Token Unlock

Across the coverage

Coverage is mostly measured — 63 of 65 reports stay neutral.

Bullish 1

Neutral 63

Bearish 1

The Catalyst Brief

Know what’s about to move the market.

Every Monday — the token unlocks, Fed dates & catalysts set to move crypto and markets this week. So you’re never blindsided.

Free · 3-min read · one-click unsubscribe

Synthesized from 3 sources

AI-assisted synthesis by the TrendWatcher Editorial Desk · sourced from 3 outlets · Jun 25, 2026 · How we report

Published

Jun 25, 2026, 05:31 PM

Source

TrendWatcher AI (Enhanced)

Frequently asked · Crypto Scam

What types of scams are most common with cryptocurrency ATMs?

Imposter scams, where fraudsters pose as law enforcement, government officials, or tech support, convince victims to withdraw cash and deposit it via a QR code into a crypto ATM.

Which states have taken action against crypto ATMs?

Indiana, Tennessee, and Minnesota have enacted bans, while South Dakota, Arizona, Colorado, Arkansas, Virginia, and Wisconsin have implemented transaction caps and refund rules.

What federal legislation is proposed to address crypto ATM fraud?

The Crypto Fraud ATM Fraud Prevention Act would require ATM operators to register with the Treasury, limit transaction amounts, enforce verification calls, use blockchain analytics, and provide refunds if victims report scams within 30 days.

How is law enforcement targeting crypto scam infrastructure beyond wallets?

The DOJ seized backend cloud accounts linked to the Huione Group, aiming to disrupt the service layer that enables large‑scale illicit finance and money‑laundering.

Why are older adults particularly vulnerable to crypto ATM scams?

According to the FTC, they are over three times more likely to lose money in these scams, often due to the high‑pressure tactics used in imposter schemes.

Explore More

Ethereum Bitcoin OpenAI Tesla Fed Rates Layer 2 Scaling