YouTubers known for exposing scams played a key role in helping the FBI dismantle a $65 million multinational fraud ring that targeted thousands of elderly victims, including a 97-year-old widow of a Holocaust survivor who lost her life savings. The federal operation led to the indictment of 28 individuals linked to a complex conspiracy involving phone-based scams and money laundering.
YouTubers conducted their own investigation
Content creators from channels such as Scammer Payback (operated by Pierogi) and Trilogy Media conducted sting operations between 2020 and 2021. They posed as victims, recorded scammer interactions and confronted suspects. They submitted video evidence to law enforcement that identified the key suspects.
In one case, Trilogy Media delivered a decoy cash package to the alleged scammer’s address, prompting an on-camera confession from Zhiyi Zhang, also known as “Cream Pablo.” Zhang was arrested on August 19, 2025 during the crackdown.
Federal agents from the FBI, Homeland Security Investigations and IRS Criminal Investigations executed search and arrest warrants across California, New York, Texas and Michigan. Authorities seized over $4.2 million from financial accounts, along with luxury vehicles including a Mercedes-Benz G63, a Porsche Panamera and a GMC Yukon Denali.
The indictment charges include conspiracy to commit mail and wire fraud and money laundering, with potential sentences reaching up to 40 years in prison and fines in the millions.
U.S. Attorney Adam Gordon thanked the YouTubers’ contributions, saying, “Not all heroes wear capes. Some have YouTube channels.” Shawn Gibson from Homeland Security Investigations emphasized the scale of the fraud and its impact on vulnerable individuals. IRS special agents also noted the crime ring’s deep collaboration with India-based scam call centers.
Case development
The suspects are scheduled for pretrial hearings in federal court in San Diego in late August and mid-September. Authorities continue to urge seniors to exercise caution against unsolicited tech support calls, refund schemes or phishing attempts that could lead to remote access of personal devices.