Following the massive botnet takedown codenamed Operation Endgame in May 2024, which shut down the biggest malware droppers, including IcedID, SystemBC, Pikabot, Smokeloader and Bumblebee, law enforcement agencies across North America and Europe dealt another blow to the malware ecosystem in early 2025.
In a coordinated series of actions, customers of the Smokeloader pay-per-install botnet, operated by the actor known as ‘Superstar’, faced consequences such as arrests, house searches, arrest warrants or ‘knock and talks’. Superstar used his botnet to run a pay-per-install service, enabling customers to gain access to victims’ machines. Customers used the service to deploy malware for their own criminal activities. Investigations revealed that botnet access was purchased for a range of purposes, including keylogging, webcam access, ransomware deployment, cryptomining and more.
Read more…
Source: Europol
Sign up for our Newsletter
The latest news and insights delivered right to your inbox.
Related:
- Northern Ireland police data breach is second in weeks, force reveals
August 9, 2023
On Wednesday, PSNI revealed an earlier data breach: a police-issue laptop, documents and a spreadsheet identifying more than 200 staffers were stolen from a private vehicle in Newtownabbey, near Belfast, on July 6th. “We have contacted the officers and staff concerned to make them aware of the incident and an initial notification has been made to ...
- Northern Ireland: Major data breach identifies thousands of police officers and civilian staff
August 8, 2023
The Police Service of Northern Ireland (PSNI) has apologised for mistakenly revealing details of all its 10,000 staff. NI’s Police Federation said the breach could cause “incalculable damage”. In response to a Freedom of Information (FoI) request, the PSNI had shared names of all police and civilian personnel, where they were based and their roles. The ...
- FBI Investigating Cyber Attack Affecting Connecticut Hospitals
August 4, 2023
“Prospect Medical Holdings Inc. recently experienced a data security incident that has disrupted our operations,” said Nina Kruse, ECHN’s vice president for communications and public affairs. “Upon learning of this, we took our systems offline to protect them and launched an investigation with the help of third-party cybersecurity specialists,” she said. The FBI’s field office in New ...
- FBI was using advanced hacking software despite White House ban
August 2, 2023
Since November of 2021, US-based companies have been barred from doing business with the NSO Group, an Israeli research firm behind some of the most advanced hacking tools the tech world has ever seen. Come to find out, a New York Times investigation from this past April revealed that a US government agency was actively using ...
- UK spy agencies want to relax ‘burdensome’ laws on AI data use
August 1, 2023
The UK intelligence agencies are lobbying the government to weaken surveillance laws they argue place a “burdensome” limit on their ability to train artificial intelligence models with large amounts of personal data. The proposals would make it easier for GCHQ, MI6 and MI5 to use certain types of data, by relaxing safeguards designed to protect people’s ...
- Moscow City Court sentences Group-IB founder to 14 years for high treason
July 26, 2023
The Moscow City Court has sentenced Group-IB founder Ilya Sachkov to 14 years in prison after finding him guilty of high treason, a TASS correspondent reported from the courtroom. Sachkov has been in custody since September 2021. According to the prosecution, in 2011 he handed over classified information to foreign intelligence thus causing reputational damage to ...