Operation Atlantic is designed to combat a particular kind of cruelty. It doesn’t come with a clear threat. No men in masks, no menacing messages, no spectacular altercation. Rather, it appears as a familiar alert from what seems to be a genuine cryptocurrency application, a notification that resembles one you’ve seen a hundred times. You select “approve.” Then everything in your digital wallet disappears in a matter of seconds. The transaction is permanently and neatly recorded on the blockchain. No undo button is present. Seldom does recovery occur.
In a coordinated effort known as Operation Atlantic, the U.S. Secret Service, the National Crime Agency of the United Kingdom, the Ontario Provincial Police, and the Ontario Securities Commission have united to target precisely this kind of fraud, which is referred to in technical circles as approval phishing and in the more graphic terminology of financial crime reporting as “pig butchering.”
The name refers to the patience with which scammers develop their victims over the course of weeks or months, cultivating false confidence through internet connections before directing them toward fraudulent investment platforms and fattening the mark prior to the final slaughter. The fact that a multi-national law enforcement operation is now necessary to combat this tactic, which is expanding in both scope and sophistication, speaks much about how quickly and widely it has proliferated.
Key Reference Information
| Category | Details |
|---|---|
| Operation Name | Operation Atlantic |
| Launch Year | 2025–2026 |
| Co-Hosting Agencies | U.S. Secret Service, UK’s National Crime Agency (NCA), Ontario Provincial Police (OPP), Ontario Securities Commission (OSC) |
| Additional Partners | Royal Canadian Mounted Police, City of London Police, U.S. Attorney’s Office (D.C.), UK Financial Conduct Authority |
| Primary Target | Approval phishing — crypto investment fraud (“pig butchering” scams) |
| Predecessor Operation | Project Atlas (2024) — led by OPP, attended by U.S. Secret Service |
| Key Fraud Mechanism | Victims tricked into granting crypto wallet access; funds transferred irreversibly |
| Operation Goals | Real-time victim identification, asset securing, fund recovery, network disruption |
| Victims Targeted By Scams | Primarily retail investors in digital assets |
| Private Sector Involvement | Yes — unnamed private sector partners participating |
| Reference Website | U.S. Secret Service — secretservice.gov |
Operation Atlantic did not appear out of thin air. It immediately expands upon Project Atlas, a 2024 operation that targeted international bitcoin investment fraud networks and was spearheaded by the Ontario Provincial Police with assistance from the U.S. Secret Service. The structure and scope of these scam operations appear to have been sufficiently exposed by that earlier attempt to warrant a more comprehensive, real-time approach.
The Royal Canadian Mounted Police, the City of London Police, the U.S. Attorney’s Office for the District of Columbia, the UK’s Financial Conduct Authority, and a number of unidentified private sector partners whose involvement suggests the investigation extends into the infrastructure—exchanges, platforms, payment processors—that these fraud networks rely on are all part of the current operation, which significantly broadens its scope.
The combination of authorities seated at the same table is what makes Operation Atlantic relatively unique in the field of financial crime enforcement. Securities regulators and criminal law enforcement don’t always have the same vocabulary or work on the same schedule. Agencies whose main instruments include asset freezes and arrest warrants are co-hosting with the Ontario Securities Commission, whose principal purpose encompasses investor protection and capital market integrity.
The fact that cryptocurrency fraud is both a financial crime and a capital markets issue, preying on retail investors and taking advantage of the true complexity of digital asset management in ways that conventional fraud frameworks weren’t intended to handle, is reflected in this pairing, which reflects a growing understanding that it doesn’t neatly fit into either category.
The operation’s primary focus is the approval phishing technique. Victims are tricked into signing what appears to be a standard transaction approval, the type of wallet interaction that regular cryptocurrency users frequently experience, but in reality, this gives the scammer full access to transfer money without the need for additional authorization.
The money travels once that access is established. Blockchain transactions are irreversible. The operation is expressly built around near real-time victim identification—catching people before the window closes completely, rather than investigating after the damage has already been done—because recovery, when it occurs at all, is the exception rather than the rule.
It’s difficult to ignore how these victims’ profiles have changed over time. Early bitcoin scams typically targeted enthusiasts, who were already enough involved in the ecosystem to start making sizable, careless transactions. Ordinary retail investors who downloaded a cryptocurrency app during the pandemic, maintained a modest balance, and lacked the knowledge to distinguish between a malicious and valid protocol prompt are increasingly being targeted by approval phishing efforts.
That is hardly an indictment on those people. It illustrates how scammers have modified their strategies to locate bigger, less protected groups of possible victims, frequently through connections on social media and investing communities that seem real for months prior to the scheme’s activation.
The precise results of Operation Atlantic are still unknown, as is the speed at which the disruption of these networks—which are usually offshore, layered, and purposefully made to be hard to trace—can result in significant repercussions for the companies operating them.
However, the effort’s integrated architecture—which spans three jurisdictions, combines criminal investigation with regulatory monitoring, and draws in private sector intelligence—is, at the very least, a more significant structural response than anything that came before it. As this develops, there is a cautious feeling that the organizations in charge of safeguarding regular investors are at last making progress that is more in line with the problem’s speed.
