Italy Cracks Down on Cinemagoal App Stealing Streaming Auth Codes

Post Views: 1

Takedown of Sophisticated Piracy Operation

Italian authorities have taken down a complex pirate operation centering around the CINEMAGOAL app, which provided unauthorized access to popular streaming services like Netflix, Disney+, and Spotify.

Discreet Approach

The app’s approach was unique, being marketed discreetly with customers installing the software on their own devices rather than accessing it through overt online channels.

Largest Anti-Piracy Operation Ever Conducted in Italy

A large-scale anti-piracy operation dubbed “Tutto Chiaro” (All Clear) led to 100 searches across the country and the seizure of evidence that will aid in identifying those involved and determining the extent of the illicit profits.

According to the Italian law enforcement agency, Guardia di Finanza, the operators of CINEMAGOAL likely generated tens of millions of euros through audiovisual piracy, unauthorized computer access, and computer fraud.

How CINEMAGOAL Worked

CINEMAGOAL connected directly to legitimate streaming platforms and authenticated using stolen decryption codes obtained from foreign servers.
The system used virtual machines in Italy to fetch valid authentication/decryption codes from legitimate subscriptions every three minutes and redistribute them to customers.
These legitimate subscriptions were opened using fake identification data on various streaming services, including Sky, DAZN, Netflix, Disney+, and Spotify.

Authorities highlight that CINEMAGOAL not only evaded security blocks implemented by the platforms but also offered superior streaming quality, as users streamed content directly from the service rather than receiving a pirated stream, and masked customers’ real IP addresses.

“A highly advanced and previously unseen system that not only bypassed the security blocks implemented by the platforms but also increased viewing quality, reducing the possibility that end-users could be intercepted by the control system,” Guardia di Finanza explains.

Access to the application did not involve a direct connection to a specific IP address, providing additional shielding for end-users.

Servers Seized

Law enforcement agencies seized CINEMAGOAL servers in France and Germany containing the app’s source code and functions for decoding protected streams.

Operation Details

Total of 200 financial police officers participated in the operation.
The illicit streaming business had over 70 resellers, who sold annual subscriptions ranging from $46 to $150.
Payments were made using cryptocurrency or foreign bank accounts.

It is estimated that CINEMAGOAL has caused damages of approximately $347 million in unpaid subscription revenues during its operational period.

Authorities are currently analyzing seized material to identify all involved parties, including end-users, and estimate total profits.

They have already identified several individuals involved in the scheme.

Ongoing Investigation

The investigation into CINEMAGOAL is ongoing, with the Italian authorities collaborating with international partners to bring those responsible to justice.