Following the massive botnet takedown codenamed Operation Endgame in May 2024, which shut down the biggest malware droppers, including IcedID, SystemBC, Pikabot, Smokeloader and Bumblebee, law enforcement agencies across North America and Europe dealt another blow to the malware ecosystem in early 2025.
In a coordinated series of actions, customers of the Smokeloader pay-per-install botnet, operated by the actor known as ‘Superstar’, faced consequences such as arrests, house searches, arrest warrants or ‘knock and talks’. Superstar used his botnet to run a pay-per-install service, enabling customers to gain access to victims’ machines. Customers used the service to deploy malware for their own criminal activities. Investigations revealed that botnet access was purchased for a range of purposes, including keylogging, webcam access, ransomware deployment, cryptomining and more.
Read more…
Source: Europol
Sign up for our Newsletter
The latest news and insights delivered right to your inbox.
Related:
- US border agents must get warrant before cell phone searches, federal court rules
July 29, 2024
A federal district court in New York has ruled that U.S. border agents must obtain a warrant before searching the electronic devices of Americans and international travelers crossing the U.S. border. The ruling on July 24 is the latest court opinion to upend the U.S. government’s long-standing legal argument, which asserts that federal border agents should ...
- Northern Ireland: Man arrested in connection with PSNI data breach
July 29, 2024
Detectives investigating criminality linked to the PSNI data breach have arrested a 54-year-old man. Data relating to all 9,483 PSNI officers and staff was mistakenly included in a spreadsheet published online last August in response to a freedom of information request. The list included the surname and first initial of every employee, their rank or grade, ...
- Bangladesh restores mobile internet after 11-day blackout to quell protests
July 28, 2024
Bangladesh has restored mobile internet, 11 days after a nationwide blackout was imposed to contain deadly protests over quotas in government jobs. The South Asian nation’s 4G mobile internet services resumed on Sunday, hours after Zunaid Ahmed Palak, the state minister for telecommunications and information communication technology, made the announcement. Read more… Source: AL Jazeera News Sign up for ...
- UK teen arrested for alleged role in MGM Resorts cyberattack
July 21, 2024
A 17-year-old boy from Walsall has been arrested in connection with the September 2023 cyberattack that crippled MGM Resorts for several days. The West Midlands Police, working alongside the FBI and the National Crime Agency (NCA), apprehended the teenager on Thursday, 18th July, on suspicion of violating the UK’s Computer Misuse Act and blackmail offenses. Authorities ...
- Student who created malware worth £45k while living with parents is jailed
July 17, 2024
A university student who created malware targeting government websites while living with his parents has been jailed. Amar Tagore, 21, a third year university student, offered buyers malware (malicious software) to disrupt corporate and state-run websites, while living with his parents in Alexandria, West Dunbartonshire. He supplied a tool used by hundreds of online customers to ...
- Cybercrime groups restructuring after major takedowns
July 6, 2024
Cybercrime gangs are looking to rebuild with new tactics after global police operations this year made a huge dent in their activities, experts have told AFP. The gangs have had a bad year so far, with law enforcement operations taking out some of prominent groups including LockBit, a loose network of largely Russian-speaking cyber criminals. LockBit ...