The Digital Lifeline of Scammers Under Siege: Starlink’s Role in Global Fraud
In a dramatic escalation of the fight against transnational cybercrime, United States law enforcement is taking aim at the very infrastructure enabling some of the most pervasive and damaging online scams. At the heart of this new initiative lies Starlink, Elon Musk’s ambitious satellite internet constellation, which authorities allege is providing a crucial lifeline to criminal enterprises operating from notorious "scam compounds" in Southeast Asia. This sophisticated crackdown signals a determined effort to disrupt the multi-billion dollar industry that preys on unsuspecting victims worldwide.
Cutting the Cord: Warrants Target Starlink for Scam Compound Connectivity
The spotlight has intensified on Starlink terminals and accounts, with new US legal documents revealing seizure warrants issued to disrupt internet access for these criminal operations. These warrants, seen by WIRED, detail how Starlink devices are allegedly being used by cybercriminals in Myanmar, a country that has become a hub for large-scale, sophisticated fraud operations. The action represents a significant move by the US Department of Justice, FBI, and Secret Service, forming part of a newly launched initiative: the District of Columbia Scam Center Strike Force.
This specialized task force is dedicated to combating cryptocurrency scams that specifically target American citizens. The focus is on a systematic ecosystem of fraud that has evolved across several Southeast Asian nations, often with suspected links to organized crime syndicates, including those with Chinese affiliations. The strike force has already made substantial progress, reportedly seizing approximately $400 million in stolen cryptocurrency since its inception.
A Digital Battlefield: Myanmar’s Scam Compounds and Starlink’s Reach
One of the key legal documents, an affidavit filed by FBI investigators, details the alleged use of Starlink devices and accounts within scam compounds located in Payathonzu, a region near the Myanmar-Thai border. A US magistrate judge authorized the seizure of nine Starlink terminals and two associated accounts, all of which are claimed to be instrumental in a money laundering and wire fraud scheme targeting US citizens. The affidavit asserts that these Starlink assets played a "substantial role" in the criminal enterprise and calls for Starlink’s parent company, SpaceX, to "disable service" to the affected devices.
Further adding to the gravity of the situation, the affidavit notes the visible presence of Starlink dishes on the roofs of multiple buildings within these scam centers. In one instance, investigators observed at least 26 Starlink dishes on buildings in the Three Pagodas Pass area, a known nexus for such illicit activities.
A second, separate warrant, while not directly targeting Starlink, also highlighted the widespread use of its technology. This warrant focused on seizing websites utilized by scammers and stated that "at least" 79 Starlink dishes were spotted at the infamous Tai Chang compound in Myanmar. US officials have linked this compound to the Democratic Karen Benevolent Army, an armed group in Myanmar that has recently been sanctioned by the US government. This particular warrant was signed by a US magistrate judge, underscoring the multi-agency effort and the legal backing behind these disruptive actions.
From Investigations to Interventions: The WIRED Connection
Both sets of legal documents reference a significant WIRED investigation conducted earlier this year. That investigation was pivotal in revealing the extent to which scam compounds in Myanmar were relying on Starlink for their internet connectivity. Starlink, a product of Elon Musk’s SpaceX, offers high-speed satellite internet access across more than 150 countries, making it an attractive, albeit illicit, solution for criminals operating in remote or internet-deprived regions.
The US law enforcement’s proactive stance is a direct response to these findings, demonstrating a commitment to tackling the root causes of these sophisticated fraud operations. As US Attorney for the District of Columbia, Jeanine Pirro, stated at a press conference, "The Department of Justice will not stand by while Chinese organized crime victimizes Americans and bleeds dry the hard-earned investments of American citizens." She further emphasized their efforts, including seizing scam-facilitating websites and seeking warrants for satellite terminals and accounts.
SpaceX’s Response and Proactive Measures
While SpaceX did not immediately respond to WIRED’s requests for comment regarding the warrants, the company has publicly acknowledged its role and has taken proactive steps. In late October, Lauren Dreyer, vice president of Starlink Business Operations, announced on X (formerly Twitter) that the company had "proactively identified and disabled" over 2,500 Starlink devices being used "in the vicinity" of scam compounds in Myanmar. This announcement coincided with reports of a noticeable drop in Starlink usage within Myanmar, suggesting the company’s efforts are having an impact.
The "Wealthob" Scam and the Digital Trail
The affidavit related to the Three Pagodas Pass compounds offers a detailed look into one specific alleged scam operation. Connectivity at these compounds, which reportedly host at least three separate scam centers, has been linked to a cryptocurrency scam operating under the branding "Wealthob." According to the legal documents, approximately 22 individuals filed complaints with the FBI between January 2017 and November of the current year, reporting losses totaling around $6.7 million. The modus operandi of this scam involved victims receiving unsolicited text messages, often posing as misdialed numbers. Criminals would then foster a relationship with the victim, moving the conversation to encrypted messaging apps like WhatsApp or Telegram, before ultimately persuading them to invest in fraudulent cryptocurrency schemes.
Crucially, the legal documents reveal how a review of records from SpaceX and Meta (the parent company of WhatsApp) helped to connect a phone number used by the scammers to Starlink systems. The documents specifically identify nine Starlink devices at the Three Pagodas Pass location, linking them to two Starlink user accounts that were reportedly registered in the Philippines. Meta has also been active, previously stating that it has disrupted over 7 million accounts associated with scam centers since the beginning of the year.
The Engine of Fraud: Starlink’s Role in Inducing Victimization
The affidavit explicitly states that Starlink accounts provide scammers with the "internet service they need to induce U.S. victims to send their funds overseas as part of fraudulent investment opportunities." The legal framework seeks the seizure of these two Starlink accounts and mandates "SpaceX to effect seizure" on the devices "by freezing and/or disconnecting the Starlink terminals from the SpaceX network." When questioned about the possibility of physically seizing Starlink devices in Myanmar, a Department of Justice spokesperson indicated they could not comment on ongoing operations but reiterated that the warrant compels Starlink to suspend access.
The Evolving Landscape of Global Scams
In recent years, scammers have become increasingly adept at refining and scaling digital investment fraud schemes, yielding enormous profits for criminals while devastating victims. These operations are often staffed by individuals subjected to forced labor within compounds scattered across Southeast Asia, notably in Laos, Cambodia, and Myanmar. Researchers have consistently identified strong ties between a majority of scam activities in this region and organized crime. The effectiveness of this model has led to its expansion and replication in other parts of the world.
To enhance the believability and specificity of their deceptive materials, scammers are increasingly leveraging new technologies. This includes generative AI and advanced video deepfake face-cloning tools, which allow them to create more convincing and personalized fraudulent content.
John Wojcik, a senior threat researcher at security firm Infoblox, observes a disturbing trend: "Authorities in the region have reported a surge in Starlink being smuggled to support large-scale cybercrime and scam compounds, particularly into Myanmar, following a substantial telecom crackdown along the Thai border—most of which appear to remain operational." He views the US creation of the Strike Force as a clear indicator of growing "government prioritization" in tackling these scam compounds and a reflection of the "profound impact and damage caused by this fast-evolving billion-dollar industry."
Resilience and Disruption: A Constant Battle
Despite raids by local law enforcement officials on some scam compounds in Myanmar and Cambodia, many continue to operate with remarkable resilience. Efforts to disrupt these operations have included measures like cutting off power, fuel, and internet connectivity. In February, Thai law enforcement took such actions against compounds near their border. More recently, over 10,000 individuals have been detained in Myanmar, and one compound was reportedly partially destroyed by officials. However, experts have questioned the ultimate effectiveness and political motivations behind some of these actions.
WIRED’s earlier investigation, which utilized mobile phone connection data, uncovered evidence of at least eight scam compounds near the Myanmar-Thailand border using Starlink devices to maintain internet access. Analysis showed hundreds of mobile phones connecting to Starlink more than 40,000 times within these known scam compounds between November 2024 and early February. Following these revelations, US Senator Maggie Hassan reached out to SpaceX owner Elon Musk, urging the company to take responsibility for preventing its service from being exploited by criminals targeting Americans.
This ongoing saga underscores a critical challenge at the intersection of cutting-edge technology, global crime, and international law enforcement. As the digital frontier expands, so too do the methods of those who seek to exploit it. The US government’s decisive action against Starlink’s use in scam compounds marks a significant step in the battle to reclaim digital spaces from those who would weaponize them.