In June 2025, coordinated operations with German, Austrian, and Romanian law enforcement resulted in nine arrests of phishers responsible for large-scale seller account takeovers. The criminal group used phishing techniques to steal login credentials from legitimate sellers, lock them out of their accounts, and post advertisements for fake goods. According to Eurojust, customers placed orders totaling over €106 million; 556 customers completed purchases that would never arrive, causing damages of over €400,000.
Amazon began working with German and Romanian law enforcement in April 2024, providing detailed intelligence about the operation’s tactics and infrastructure. That partnership—spanning more than a year of investigation—contributed directly to the arrests.