Security News > 2024 > May > Police seize over 100 malware loader servers, arrest four cybercriminals
An international law enforcement operation codenamed 'Operation Endgame' has seized over 100 servers worldwide used by multiple major malware loader operations, including IcedID, Pikabot, Trickbot, Bumblebee, Smokeloader, and SystemBC. The action, which occurred between May 27 and 29, 2024, involved 16 location searches across Europe and led to the arrest of four individuals, one in Armenia and three in Ukraine.
The police have identified eight fugitives linked to the malware operations, who will be added to Europol's 'Most Wanted' list later today.
Operation Endgame involved police forces from Germany, the United States, the United Kingdom, France, Denmark, and the Netherlands.
The cybercriminals behind them typically send malicious emails to deliver the malware or hide payloads on trojanized installers promoted through malvertising or torrents.
Europol said that one of the main suspects involved in one of the targeted malware operations made over 69 million Euros by renting out their infrastructure for ransomware deployment.
Ebury botnet malware infected 400,000 Linux servers since 2009.
News URL
Related news
- Police seizes Cracked and Nulled hacking forum servers, arrests suspects (source)
- DragonRank Exploits IIS Servers with BadIIS Malware for SEO Fraud and Gambling Redirects (source)
- Police arrests 4 Phobos ransomware suspects, seizes 8Base sites (source)
- Police arrests 2 Phobos ransomware suspects, seizes 8Base sites (source)
- Dutch Police seizes 127 XHost servers, dismantles bulletproof hoster (source)
- Cybercriminals Use Eclipse Jarsigner to Deploy XLoader Malware via ZIP Archives (source)