Following the massive botnet takedown codenamed Operation Endgame in May 2024, which shut down the biggest malware droppers, including IcedID, SystemBC, Pikabot, Smokeloader and Bumblebee, law enforcement agencies across North America and Europe dealt another blow to the malware ecosystem in early 2025.
In a coordinated series of actions, customers of the Smokeloader pay-per-install botnet, operated by the actor known as ‘Superstar’, faced consequences such as arrests, house searches, arrest warrants or ‘knock and talks’. Superstar used his botnet to run a pay-per-install service, enabling customers to gain access to victims’ machines. Customers used the service to deploy malware for their own criminal activities. Investigations revealed that botnet access was purchased for a range of purposes, including keylogging, webcam access, ransomware deployment, cryptomining and more.
Read more…
Source: Europol
Sign up for our Newsletter
The latest news and insights delivered right to your inbox.
Related:
- INTERPOL: 14 arrests, thousands of illicit cyber networks disrupted in Africa operation
August 18, 2023
DAR ES SALAM, Tanzania – INTERPOL and AFRIPOL have coordinated an operation across 25 African countries that enabled investigators to arrest 14 suspected cybercriminals and identify 20,674 suspicious cyber networks, highlighting the surge in digital insecurity and cyber threats in the region. The networks identified were linked to financial losses of more than USD 40 ...
- Northern Ireland: Man arrested on suspicion of terror offence linked to PSNI data breach released
August 17, 2023
A man arrested by detectives investigating criminality linked to last week’s major PSNI data breach has been released on bail to allow for further police enquiries. The 39-year-old man had been detained following a search in Lurgan, Co Armagh on Wednesday. He had been questioned on suspicion of collection of information likely to be of use ...
- Cyber crimes in Germany down 6.5% in 2022, federal police say
August 16, 2023
Cyber crimes in Germany fell by 6.5% in 2022, federal police said on Wednesday, but the decline was not a “relief” as the attacks were more severe and those originating from overseas rose by more than 8%. The economic damage was 203 billion euros ($221.59 billion), down slightly from last year, but still double that of ...
- UK: Victims and witnesses personal data leaked by Norfolk and Suffolk police
August 15, 2023
A total of 1,230 people, including victims of crime and witnesses, have had their data breached by Norfolk and Suffolk police forces. The constabularies said the personal information was included in Freedom of Information (FOI) responses due to a “technical issue”. They said the data was hidden from anyone opening the files but should not have ...
- Connecticut city loses $6 million in multiple cyber attacks on public school district, manages to recoup half
August 11, 2023
The city of New Haven lost more than $6 million in multiple cyberattacks on its public school district earlier this summer and has so far managed to recoup about half of the money, officials announced Thursday. The thefts, which occurred in June and involved hackers impersonating the city’s chief operating officer and private vendors in emails, ...
- 5 arrested in Poland for running bulletproof hosting service for cybercrime gangs
August 11, 2023
This week, the Polish Central Cybercrime Bureau (Centralne Biuro Zwalczania Cyberprzestępczości) under the supervision of the Regional Prosecutor’s Office in Katowice (Prokuratura Regionalna w Katowicach) took action against LolekHosted.net, a bulletproof hosting service used by criminals to launch cyber-attacks across the world. Five of its administrators were arrested, and all of its servers seized, rendering LolekHosted.net ...