At least $10bn was lost by Americans to scams based in Southeast Asia in 2024, a figure the US government says represents a 66% year‑over‑year increase and underscores the scale of an operation the Treasury has now moved to disrupt.
OFAC sanctions name Senator Kok An among 29 designated parties
The Office of Foreign Assets Control (OFAC) last week designated 29 individuals and organizations allegedly involved in large‑scale cryptocurrency fraud that targeted American victims. The list includes Senator Kok An, whose business interests are alleged to support the scam infrastructure. The sanctions block any US‑based assets linked to the designated parties and prohibit transactions involving US persons. Officials described the measures as intended to disrupt the financial and operational infrastructure behind cyber‑enabled fraud and to address the misuse of digital assets in global crime networks.
Scam compounds embedded inside casinos and commercial buildings
US authorities say the operation centers on physical scam compounds across Cambodia, many embedded within casino and commercial properties. Those facilities are presented as part of the criminal network’s operational footprint: they host operators who manage fraud campaigns and, according to the sanctions notice, help process and obscure illicit financial flows. Kok An’s hospitality and security services are specifically alleged to support these sites, and associated operators are said to run additional compounds with similar reported abuses.
Social engineering, fake investment platforms and diverted funds
The campaigns rely on evolving trust‑building tactics. Victims are approached through social engineering techniques that include romance‑based outreach and fraudulent investment offers. Once trust is established, victims are guided to counterfeit investment platforms that mimic legitimate services; funds deposited to those platforms are then quickly diverted to accounts and platforms controlled by the attackers. US government estimates place aggregate losses to Americans at no less than $10bn in 2024, and some individual victims have lost sums that reached into the millions.
Coordinated law‑enforcement actions: domain seizures, app disruption, criminal charges
The sanctions were coordinated with a broader law‑enforcement effort involving the Department of Justice (DoJ), the Federal Bureau of Investigation (FBI), and the US Secret Service (USSS). Recent actions tied to the investigation include the seizure of 503 domains linked to fraudulent cryptocurrency platforms, disruption of a messaging app used to recruit trafficking victims, and criminal charges against operators in Burma and Cambodia. Those interventions target the network’s online financial infrastructure as well as the communications channels used to recruit and control victims.
Human trafficking, coercion and conditions inside compounds
Beyond financial fraud, the network is reportedly tied to widespread human trafficking. Individuals are often recruited with false job offers and then coerced into scam operations after arriving at the compounds. Victims have reported confiscated passports, physical abuse and strict daily quotas for contacting targets. Authorities say unlawful detention and violence have been reported at multiple facilities, underscoring a dual crime problem in which exploitation of people and exploitation of digital finance are mutually reinforcing.
What this means for technologists, policymakers, and victims
- Technologists and security teams should note the enforcement focus on domain and platform disruption: seizure of 503 domains and disruption of a messaging app suggest priorities for takedown and detection efforts tied to fraudulent crypto platforms and recruitment channels.
- Policymakers and regulators will be watching coordination across OFAC, the DoJ, the FBI and the USSS as a model for combining financial sanctions with criminal enforcement to target both money flows and physical sites where abuse occurs.
- Victims and advocacy groups should be aware of the methods described: romance‑based outreach, fake investment platforms, confiscated passports, and forced quotas — all features reported by those who escaped or were contacted by authorities.
The combined Treasury sanctions and law‑enforcement disruptions make clear that US authorities view these networks as hybrid threats: financial fraud carried out through digital assets that are sustained by physical compounds and coercive labor practices. The sanctions aim to sever US‑based financial links and complicate operators’ use of digital platforms, but the actions also raise immediate questions about enforcement reach, cross‑border cooperation, and how quickly abused victims can be identified and assisted inside the facilities named in the designations.
