EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Operation Endgame leads to the seizure of AvCheck, an antivirus evasion tool
    • Home
    • Cybercrime
    • Operation Endgame leads to the seizure of AvCheck, an antivirus evasion tool

    Operation Endgame leads to the seizure of AvCheck, an antivirus evasion tool

    Written by
    The Editorial Team
    06.05.25
    Cybercrime
    01
    MIN
    Operation Endgame leads to the seizure of AvCheck, an antivirus evasion tool
    Operation Endgame leads to the seizure of AvCheck, an antivirus evasion tool
    Operation Endgame leads to the seizure of AvCheck, an antivirus evasion tool
    Image BlackSuit Ransomware Gang’s Website Seized in International Law Enforcement Operation
    Cybercrime
    07.28.25 Cybercrime
    Next article
    BlackSuit Ransomware Gang’s Website Seized in International Law Enforcement Operation
    Read
    01
    MIN
    Image FBI Warns of ‘The Com’, a Vast and Decentralized Anglo-Saxon Cybercriminal Network
    Cybercrime
    07.28.25 Cybercrime
    Next article
    FBI Warns of ‘The Com’, a Vast and Decentralized Anglo-Saxon Cybercriminal Network
    Read
    01
    MIN
    Image FBI Issues Alert on Interlock Ransomware Group
    Cybercrime
    07.24.25 Cybercrime
    Next article
    FBI Issues Alert on Interlock Ransomware Group
    Read
    01
    MIN
    Image Chinese Hacker Arrested for COVID-19-Related Cyberespionage
    Cybercrime
    07.15.25 Cybercrime
    Next article
    Chinese Hacker Arrested for COVID-19-Related Cyberespionage
    Read
    01
    MIN
    This service allowed cybercriminals to test whether their malware was detected by various antivirus programs.

    U.S. and Dutch authorities announced on May 29 and 30, 2025, that they had seized AvCheck as part of the international Operation Endgame. The service presented itself as a “high-speed antivirus scanner,” enabling users to determine whether a piece of malware was flagged by antivirus engines.

    Such services are not illegal per se and are commonly used by cybersecurity researchers. However, several features indicated that AvCheck was aimed at cybercriminals: it guaranteed user anonymity and did not share any information with antivirus vendors about malware that bypassed their protections.

    “A cybercriminal wants to know whether their malware is detected by virus scanners. A service like AvCheck therefore plays a crucial facilitating role in the cybercriminal ecosystem,” stated Dutch police. In addition to the U.S. and the Netherlands, the seizure was supported by France, Germany, Denmark, Ukraine, and Portugal.

    Endgame is an international law enforcement operation targeting the tools that facilitate the use and spread of malware. It has already led to the dismantling of various malicious software, including infostealers like Lumma, droppers like Bumblebee and Smokeloader, and botnets such as Pikabot and Qakbot.

    The Editorial Team
    06.05.25
    Articles by the same author:
    1
    08.01.25 Cybercrime
    U.S., Canada, and Australia Update Warning on Scattered Spider Cybercrime Group
    Read
    01
    MIN
    2
    08.01.25 Cyber stability
    Russia: Cyberattack Forces Closure of Hundreds of Pharmacies
    Read
    01
    MIN
    3
    08.01.25 Cybersecurity
    CyberArk Accepts $25 Billion Acquisition Offer from Palo Alto Networks
    Read
    01
    MIN
    4
    08.01.25 Cyber stability
    U.S. Sanctions Three North Korean Officials Behind IT Worker Farms
    Read
    01
    MIN
    Image BlackSuit Ransomware Gang’s Website Seized in International Law Enforcement Operation
    Cybercrime
    07.28.25 Cybercrime
    Next article
    BlackSuit Ransomware Gang’s Website Seized in International Law Enforcement Operation
    Read
    01
    MIN
    Image FBI Warns of ‘The Com’, a Vast and Decentralized Anglo-Saxon Cybercriminal Network
    Cybercrime
    07.28.25 Cybercrime
    Next article
    FBI Warns of ‘The Com’, a Vast and Decentralized Anglo-Saxon Cybercriminal Network
    Read
    01
    MIN
    Image FBI Issues Alert on Interlock Ransomware Group
    Cybercrime
    07.24.25 Cybercrime
    Next article
    FBI Issues Alert on Interlock Ransomware Group
    Read
    01
    MIN
    Image Chinese Hacker Arrested for COVID-19-Related Cyberespionage
    Cybercrime
    07.15.25 Cybercrime
    Next article
    Chinese Hacker Arrested for COVID-19-Related Cyberespionage
    Read
    01
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.