Cybercrime's Human Trafficking Problem

Cybercrime , Fraud Management & Cybercrime , Fraud Risk Management Cybercrime's Human Trafficking Problem Coerced Labor in Scam Compounds Is Reshaping How Enterprises Face Fraud Risks Maryam Shoraka • May 8, 2026     Share Post Share Get Permission Scam centers such as the now-closed KK Park Compound in Myanmar use human trafficking to staff operations with thousands of online scammers. (Image: Shutterstock) Enterprise security discussions tend to focus on threat actors in technical terms. We talk about ransomware groups, business email compromise networks and investment fraud operations as if they are simply organized teams of criminals operating from behind keyboards. See Also: AI Impersonation Is the New Arms Race-Is Your Workforce Ready? But that view no longer captures the full picture. A growing body of reporting and law enforcement activity shows that many large-scale fraud operations, particularly those targeting Western enterprises, are run from compounds in parts of Southeast Asia where much of the workforce is not there by choice. Individuals are trafficked, coerced or deceived into traveling to locations in Myanmar, Cambodia and Laos, where they are forced to carry out online scams under threat of violence. This is no longer a marginal issue but part of the operating model. These compounds are structured environments. Workers are organized into teams, given scripts, trained in social engineering techniques and monitored for performance. Those who fail to meet targets may face punishment. Those who attempt to leave are often prevented from doing so. The operations themselves can be highly sophisticated, combining elements of investment fraud, business email compromise and long-term romance scams. From a cybersecurity perspective, this changes how we should think about the adversary. Traditional models often assume a degree of rational economic behavior. Threat actors are expected to balance effort, risk and reward. Negotiation strategies, particularly in ransomware or fraud scenarios, are sometimes built around that assumption. But when the workforce executing the activity is coerced, the dynamics differ. The scammers communicating with victims are unlikely to control the operation, with limited ability to deviate from scripts or negotiation parameters. Escalation paths remain rigid, enforced by supervisors within a broader criminal hierarchy. In practical terms, this can affect how fraud campaigns behave. Business email compromise attempts may appear persistent and formulaic rather than adaptive. Investment fraud interactions may follow structured patterns designed for scale rather than nuance. Response to disruption may be slower or more erratic if the individuals executing the activity are operating under constraint. It also affects the risk calculus of the organization behind the operation. A criminal group relying on trafficked labor has already crossed a threshold of violence and coercion that changes how it approaches risk. The same organization may be involved in multiple forms of illicit activity, from fraud to physical trafficking networks. This diversification can make it less sensitive to disruption in any single revenue stream. For enterprise defenders, this has several implications. First, attribution becomes more complex. The person interacting with a finance team during a fraud attempt is unlikely to be the decision-maker. Treating that interaction as a negotiation with an individual actor may lead to incorrect assumptions about intent or flexibility. Second, disruption strategies may need to focus less on individual campaigns and more on infrastructure and financial flows. If the labor force is effectively captive, removing one set of operators doesn't necessarily reduce overall capacity. Third, intelligence about these operations needs to extend beyond technical indicators. Understanding where and how these compounds operate, how workers are recruited and controlled, and how funds are moved becomes relevant to enterprise risk. This also raises a broader issue for organizations. Many enterprises are already investing in fraud prevention, identity verification and transaction monitoring. Fewer are considering the human supply chain behind the fraud itself. Yet that supply chain influences how campaigns are executed, how quickly they scale and how resilient they are to disruption. There's also an ethical dimension. Enterprises are not only defending against financial loss. They're interacting, indirectly, with systems built on exploitation - where the workforce behind the fraud is itself a victim. While organizations can't solve this problem alone, awareness of the underlying dynamics can inform how incidents are handled and how partnerships with law enforcement and industry groups are structured. Cybercrime is often described as a digital problem. In this case, it is also a human one. Understanding that reality doesn't simplify the challenge. It makes it more complex. But it also provides a clearer picture of the adversary, and that clarity is essential for building effective response strategies.