Metropolitan Police's cyber crime unit has arrested five individuals in connection with a sophisticated scam involving fake VPN applications designed to steal UK banking credentials and personal data.

The arrests, made across London boroughs yesterday morning, uncovered a criminal network that had been distributing malicious VPN apps through fake app stores and phishing websites targeting UK users concerned about online privacy.

Detective Inspector Mark Thompson of the Met's Cyber Crime Unit revealed that the investigation, codenamed "Operation Safe Browse," identified over 50,000 UK users who had unknowingly installed the compromised applications.

How the Scam Worked:

• Criminals created fake VPN apps mimicking legitimate services
• Apps were distributed via fraudulent websites and social media ads
• Once installed, the malware captured banking login credentials
• Personal data was sold on dark web marketplaces

"These criminals exploited people's legitimate concerns about online privacy," said DI Thompson. "They created convincing fake VPN applications that appeared to offer protection while actually stealing sensitive personal and financial information."

The fake apps particularly targeted users searching for free VPN services, with criminals using search engine optimization techniques to appear in top search results for terms like "free UK VPN" and "best VPN for BBC iPlayer."

Users are advised to only download VPN applications from official app stores and verified provider websites. The investigation continues with additional arrests expected.