Pig Butchering Scams and Their DNS Trail: Linking Threats to Malicious Compounds

This report examines industrial-scale "pig butchering" investment scams run by Chinese-speaking organized crime in Southeast Asia (notably GTSEZ and KK Park), documenting how hundreds of disposable domains, DNS resolution patterns, shared website templates, and crypto casino laundering are used to victimize and launder funds from a global pool of victims; it highlights PBaaS commoditization of the scam workflow and the operational challenges for defenders and law enforcement.