US Unveils Executive Order to Dismantle Transnational Crime Rings in Cyber-Enabled Fraud

A new executive order issued by President Donald Trump marks a significant escalation in the United States’ efforts to combat cyber-enabled fraud, specifically targeting the transnational criminal organizations (TCOs) that operate so-called “scam centers.” The order, announced on March 6, establishes a “whole-of-government” approach to disrupting coordinated campaigns that range from ransomware and financial fraud to sextortion. These schemes frequently target vulnerable populations, including the elderly and youth, and have increasingly been linked to industrial-scale operations in Southeast Asia.

The directive mandates the creation of an inter-agency group, including the Departments of State, Treasury, Justice, and Homeland Security, to conduct a sweeping review of operational and regulatory frameworks. According to the White House, the strategy aims to dismantle these networks by enhancing cooperation between law enforcement and the private sector, particularly leveraging the technical capabilities of commercial cybersecurity firms.

Background and Context

The executive order builds upon a growing recognition of TCOs as a national security threat. The Office of the Director of National Intelligence’s 2025 annual threat assessment explicitly highlighted the dangers posed by these illicit networks. Historically, the fragmented nature of cyber fraud allowed criminal groups to operate with relative impunity, but recent policy shifts indicate a move toward formalized, aggressive countermeasures.

This new framework follows a year of intensified activity by the Department of Justice (DOJ) and the Department of the Treasury. The administration has increasingly focused on the nexus between cybercrime and traditional transnational organized crime, acknowledging that the financial proceeds from these scams often fuel other forms of instability and illicit trade.

Key Figures and Entities

Central to the government’s enforcement strategy are recent actions against major financial facilitators of these scams. In October 2025, the Financial Crimes Enforcement Network (FinCEN) issued a final rule under Section 311 of the USA PATRIOT Act against the Huione Group, a Cambodia-based financial services conglomerate. FinCEN determined the group acted as a primary money laundering concern, processing over $4 billion in illicit proceeds, including more than $336 million directly linked to scams, between August 2021 and January 2024.

The Office of Foreign Assets Control (OFAC) has also imposed sanctions on several high-profile entities. Notably, the Prince Holding Group was designated as a TCO for operating at least 10 scam compounds in Cambodia. In a landmark case, the DOJ indicted the organization’s founder and initiated a civil forfeiture action seeking approximately $15 billion—the largest such action in the department's history. Additionally, OFAC sanctioned Funnull Technology, a Philippines-based company accused of providing computer infrastructure for hundreds of thousands of fraudulent websites.

Legal and Financial Mechanisms

The executive order outlines specific timelines for federal agencies to tighten the net around TCOs. An inter-agency group is required to submit an action plan within 120 days to identify TCOs and propose methods to “prevent, disrupt, investigate and dismantle” their operations. A new operational cell within the National Coordination Center (NCC) will be established to manage these efforts, with a mandate to involve private sector partners.

Financial mechanisms play a crucial role in this strategy. The DOJ is tasked with developing a victim restoration program within 90 days, aimed at returning recovered funds to victims of cyber-enabled fraud. Meanwhile, FinCEN Director Andrea Gacki has emphasized the agency’s focus on “cyber-enabled fraud,” issuing guidance to financial institutions on red flags for sextortion and the use of cryptocurrency kiosks in money laundering schemes.

International Implications and Policy Response

The US government is leveraging diplomatic channels to pressure foreign governments harboring these scam centers. The State Department has been directed to demand enforcement actions against TCOs operating abroad, with the threat of limitations on foreign assistance and targeted sanctions. This diplomatic pressure was evident in October 2025, when the White House noted increased cooperation from Cambodian and Thai officials in conjunction with trade agreements.

International cooperation remains a critical component, as these criminal networks often span multiple jurisdictions. The administration’s strategy explicitly seeks to destroy the online and physical infrastructure of scammers, signaling a shift toward a more confrontational posture against global cyber-fraud operations.

Sources

This report draws on the Executive Order on Combating Cyber-Enabled Fraud, guidance from the Financial Crimes Enforcement Network (FinCEN), press releases from the Department of the Treasury, and public filings by the Department of Justice related to sanctions and forfeiture actions in 2025.