Ethical Hacking News
Operation Endgame has successfully disrupted the Rhadamanthys infolstealer, VenomRAT, and Elysium malware operations, marking a significant blow to cybercrime. Law enforcement authorities from nine countries have taken down 1,025 servers used by the targeted malware operations, as well as seized 20 domains and arrested a key suspect in Greece. The operation highlights the growing efforts of law enforcement agencies to combat cybercrime and bring down malicious infrastructure.
Law enforcement authorities from nine countries coordinated an operation to disrupt Rhadamanthys infolstealer, VenomRAT, and Elysium botnet malware operations. A total of 20 domains were seized and 1,025 servers used by malicious actors were taken down during the operation. Hundreds of thousands of infected computers containing stolen credentials were dismantled, with potential losses worth millions of euros for victims. The Rhadamanthys infolstealer operation has been disrupted, and its customers lost access to their servers after law enforcement took control of the infrastructure. Operation Endgame has successfully disrupted multiple malware operations in recent months, targeting ransomware infrastructure and other major malware operations.
In a significant operation coordinated by Europol and Eurojust, law enforcement authorities from nine countries have successfully disrupted the Rhadamanthys infolstealer, VenomRAT, and Elysium botnet malware operations. This joint action marked the latest phase of Operation Endgame, an international effort targeting cybercrime.
The joint operation involved a coordinated assault on servers used by the targeted malware operations, with police officers conducting searches at 11 locations in Germany, Greece, and the Netherlands. A total of 20 domains were seized during the operation, and 1,025 servers used by the malicious actors were taken down.
Furthermore, Europol confirmed that the dismantled malware infrastructure consisted of hundreds of thousands of infected computers containing several million stolen credentials. Many of the victims were unaware of the infection of their systems, with a key suspect behind the infostealer believed to have access to over 100,000 crypto wallets belonging to these victims, potentially worth millions of euros.
The Rhadamanthys infolstealer operation has been disrupted in light of this joint action. According to reports, the malware-as-a-service's customers stated they no longer had access to their servers after law enforcement took control of the infrastructure. A Telegram message from the developer of Rhadamanthys warned its customers that German law enforcement was behind the disruption.
Rhadamanthys dev warns customers of police action (BleepingComputer)
The operation has been a success for Operation Endgame, which has been responsible for multiple disruptions in recent months. The joint effort has targeted ransomware infrastructure, the AVCheck site, Smokeloader botnet customers and servers, and other major malware operations, such as DanaBot, IcedID, Pikabot, Trickbot, Smokeloader, Bumblebee, and SystemBC.
The success of Operation Endgame highlights the growing efforts by law enforcement agencies to combat cybercrime. In April 2024, the Ukrainian cyber police arrested a Russian man in Kyiv for working with Conti and LockBit ransomware operations to make their malware undetectable by antivirus software.
This latest operation brings together private partners, including Cryptolaemus, Shadowserver, Spycloud, Cymru, Proofpoint, CrowdStrike, Lumen, Abuse.ch, HaveIBeenPwned, Spamhaus, DIVD, and Bitdefender, to bring down the malicious infrastructure. The operation has also led to the arrest of a key suspect in Greece on November 3, 2025, linked to the VenomRAT remote access trojan.
Europol advised users to check if their computers were infected with these malware strains using the tools provided by politie.nl/checkyourhack and haveibeenpwend.com. The operation is a significant step forward in the fight against cybercrime, and it highlights the growing efforts of law enforcement agencies to combat this threat.
In conclusion, Operation Endgame has successfully disrupted the Rhadamanthys infolstealer, VenomRAT, and Elysium malware operations. This joint action demonstrates the growing efforts by law enforcement agencies to combat cybercrime and bring down malicious infrastructure. The operation is a significant step forward in the fight against cybercrime.
Related Information:
https://www.ethicalhackingnews.com/articles/Global-Law-Enforcement-Crackdown-Disrupts-Rhadamanthys-VenomRAT-and-Elysium-Malware-Operations-ehn.shtml
https://www.bleepingcomputer.com/news/security/police-disrupts-rhadamanthys-venomrat-and-elysium-malware-operations/
https://cyberpress.org/operation-endgame-rhadamanthys-venomrat-elysium-dismantled/
Published: Thu Nov 13 05:04:39 2025 by llama3.2 3B Q4_K_M
