The words framed a broad, coordinated law-enforcement effort that cut across borders and agencies. U.S. and international authorities say they dismantled a network of overseas scam centers tied to cryptocurrency investment fraud schemes, arresting at least 276 individuals in a crackdown spanning the Middle East and Southeast Asia. Officials described the action as among the most extensive U.S.-assisted enforcement efforts yet against transnational, cyber-enabled fraud networks.
Dubai Police, Thai police, and international partners
The operation was led by Dubai authorities with support from the FBI and other international partners. Dubai Police apprehended Thet Min Nyi, identified in the reporting as a Myanmar national accused of running a scam out of the emirate city. Thai police also arrested an unnamed alleged scammer as part of the wider sweep. Collectively, the multinational arrests targeted centers that prosecutors say defrauded American victims and others around the world of millions of dollars.
Federal charges unsealed in San Diego
Federal prosecutors in San Diego unsealed indictments against multiple alleged operators, managers and recruiters connected to the schemes. The charging documents describe a conspiracy that dates back to at least 2024 and continued through early March 2026, and allege operators coordinated activity across the U.S. and overseas using interstate and foreign wire communications. Prosecutors say the arrests and charges mark a shift toward disrupting fraud infrastructure abroad rather than limiting responses to financial recovery or victim notification alone.
Alleged scam companies named in the indictment
The charged defendants were linked to several entities the indictment describes as scam companies, including Ko Thet Company, Sanduo Group and Giant Company. According to the unsealed charging documents, those entities allegedly operated coordinated fraud campaigns across multiple jurisdictions, with organizers and mid-level managers overseeing operations within compounds, recruiting workers, and directing campaigns that targeted U.S. citizens among others.
Tactics: fabricated personas, romance scams, and fake platforms
Prosecutors outline a recurring set of social‑engineering tactics used to ensnare victims. Members of the network reportedly relied on fabricated online personas — including stolen or staged images — to conceal identities and build trust. The schemes frequently involved posing as romantic partners or trusted contacts before steering victims toward fraudulent cryptocurrency investments. Once funds were transferred, the indictment alleges, assets were rapidly moved through a web of cryptocurrency accounts the operators controlled to complicate recovery efforts.
The documents identify fraudulent platforms used in these campaigns, naming CoinswiftTrading and SwiftLedger as sites directed at victims to create the appearance of legitimate investment activity.
Operation Level Up and the FBI's strategic approach
Officials said this enforcement action builds on earlier FBI initiatives such as Operation Level Up, described in the reporting as an effort that focuses on proactively identifying victims of cryptocurrency scams and disrupting fraud attempts before funds are fully transferred. The San Diego charges and the international arrests form part of a broader strategy to treat cyber‑enabled financial crimes as a transnational threat comparable to other forms of organized criminal activity.
What this means for technologists, policymakers, and victims
- Technologists and security teams should note the operational techniques prosecutors detailed — stolen or staged imagery, rapid chaining of cryptocurrency accounts, and front platforms such as CoinswiftTrading and SwiftLedger — because those patterns are central to how recovery is undermined in these schemes.
- Policymakers and law enforcement will likely view the takedown as an example of leveraging foreign partnerships to disrupt fraud infrastructure, rather than limiting responses to post‑fraud notifications and recovery efforts.
- End users and victims are again shown as primary targets for relationship‑based social engineering: the indictment emphasizes romance or trusted‑contact narratives that culminate in invitations to invest in apparent crypto platforms.
The case underscores two linked realities set out by prosecutors: first, that much of the harm to U.S. and other victims originates in coordinated operations abroad; and second, that disrupting those operations increasingly requires multinational policing, rapid identification of victims, and tactics aimed at stopping transfers before funds vanish into crypto account networks. The unsealed indictment and the round of arrests announced in this action will now move through criminal processes in multiple jurisdictions — a next chapter that will test how effective cross‑border enforcement can be against a form of fraud that relies on speed, concealment and manufactured trust.
