Following the massive botnet takedown codenamed Operation Endgame in May 2024, which shut down the biggest malware droppers, including IcedID, SystemBC, Pikabot, Smokeloader and Bumblebee, law enforcement agencies across North America and Europe dealt another blow to the malware ecosystem in early 2025.
In a coordinated series of actions, customers of the Smokeloader pay-per-install botnet, operated by the actor known as ‘Superstar’, faced consequences such as arrests, house searches, arrest warrants or ‘knock and talks’. Superstar used his botnet to run a pay-per-install service, enabling customers to gain access to victims’ machines. Customers used the service to deploy malware for their own criminal activities. Investigations revealed that botnet access was purchased for a range of purposes, including keylogging, webcam access, ransomware deployment, cryptomining and more.
Read more…
Source: Europol
Sign up for our Newsletter
The latest news and insights delivered right to your inbox.
Related:
- Israel Police Used NSO’s Pegasus Spyware Against Top Gov’t Officials, Journalists and Activists
February 7, 2022
Israel Police used NSO’s Pegasus spyware to hack the phones of public figures, including protest leaders, journalists, government employees and associates of former Prime Minister Benjamin Netanyahu, according to a report by Calcalist on Monday. According to the report, the hacking tool was used without a court order and against Netanyahu’s son, Avner Netanyahu, co-defendant in ...
- Russia arrests third hacking group, reportedly seizes carding forums
February 7, 2022
Russia arrested six people today, allegedly part of a hacking group involved in the theft and selling of stolen credit cards. Russian media reports that the arrests come at the request of investigators from the Ministry of Internal Affairs of the Russian Federation. “The Tverskoy Court of Moscow received petitions from the investigation to select a measure ...
- Twitter users in the UK can still be jailed for sending ‘grossly offensive’ tweets
February 7, 2022
It comes as a shock to many, but sending nasty tweets can be a criminal offense in the United Kingdom. Those found guilty can face fines, community service, and even time in jail. The latest example is the case of 36-year-old Joseph Kelly of Castlemilk, Glasgow, who was found guilty last week of sending a “grossly ...
- Europol coordinates action against bomb manuals available online
February 3, 2022
On 1 February, a large-scale Referral Action Day targeting terrorist content online took place at Europol’s headquarters. The European Union Internet Referral Unit (EU IRU) at Europol’s European Counter Terrorism Centre (ECTC) coordinated the referral activity, which saw the involvement of specialised counter terrorism units from France, Germany, Hungary, Italy, the Netherlands, Portugal, Spain, Switzerland ...
- Russia: FSB arrests, dismantles REvil hacking group at U.S. request
January 14, 2022
Russia has conducted a special operation against ransomware crime group REvil at the request of the United States and has detained and charged the group’s members, the FSB domestic intelligence service said on Friday. The hacker group sought by Washington has been dismantled and the United States has been informed of the steps taken by Russia, ...
- California town announces data breach involving police department, loan provider
January 10, 2022
Grass Valley, California has announced an extensive data breach involving the Social Security numbers and more of all city employees and vendors — as well as anyone who had their information given to the local police department. The city said in a notice that Social Security numbers, driver’s license numbers, and health insurance information was leaked ...