Over the past year, people in the United States have seen a sharp increase in smishing attacks (phishing done via SMS). These are the texts about unpaid tolls and undeliverable USPS packages that seem to have hit every phone at this point. The links often lead to convincing fake websites, sometimes even using Google's branding to look legitimate.
After months of watching its logo get abused, Google retaliated. On November 12th, 2025, Google filed a lawsuit against the people running Lighthouse, a phishing-as-a-service operation accused of selling the templates, infrastructure, and tools that fuel these attacks. The templates generate the texts, and the infrastructure hosts the fake sites victims are sent to interact with. According to the filing, Lighthouse created more than a hundred Google-branded phishing pages and over 200,000 additional fake websites.
From a cybersecurity standpoint, Lighthouse shows how commercialized this operation has become. Silent Push reported that more than 100,000 Lighthouse linked texts were sent every day. This is not a single attacker. It is an organized service model that packages everything an attacker needs to run a large-scale phishing campaign. Google's lawsuit will not eliminate the group or bring the attackers into a courtroom, but it could disrupt their infrastructure and show criminals that large scale brand impersonation will be challenged. For a threat most people have encountered firsthand, it is meaningful to see a major company take action.
Heading into the holiday season, I think the takeaway is clear. Mobile-based phishing and brand impersonation are major threat surfaces. Attackers take advantage of busy travel periods and online shopping to catch you off guard. So, what should you do? Organizations should monitor lookalike domains, fraudulent versions of their brand online, and unexpected login attempts while making sure employees understand SMS phishing tactics. Individuals should pause before clicking on any unexpected link. Did I order a package that is coming through USPS? Did I drive through a toll road? Expect attackers to pivot to new themes as these old ones have become widely recognized. Think along the lines of Holiday food drive donations needed, donate via link or Your recent Shopify order failed, update payment to avoid cancellation.
I want to highlight Google's lawsuit because it represents something we do not often see. Most smishing attacks feel low-level and constant, yet behind them is an organized operation that can reach millions. Google's action reminds us that even familiar, everyday scams are part of a larger threat landscape. Remaining vigilant is essential for both organizations and individuals.
Sources:
Wired, "This Is the Platform Google Claims Is Behind a ‘Staggering’ Scam Text Operation"
Google, "A dual strategy: legal action and new legislation to fight scammers"
Subscribe
Stay up to date with cyber security trends and more