EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Operation Endgame leads to the arrest of Smokeloader botnet clients
    • Home
    • Cybercrime
    • Operation Endgame leads to the arrest of Smokeloader botnet clients

    Operation Endgame leads to the arrest of Smokeloader botnet clients

    Written by
    The Editorial Team
    04.13.25
    Cybercrime
    01
    MIN
    Operation Endgame leads to the arrest of Smokeloader botnet clients
    Operation Endgame leads to the arrest of Smokeloader botnet clients
    Operation Endgame leads to the arrest of Smokeloader botnet clients
    Image GitHub confirms it was hacked by TeamPCP
    Cybercrime
    05.21.26 Cybercrime
    Next article
    GitHub confirms it was hacked by TeamPCP
    Read
    01
    MIN
    Image A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Cybercrime
    05.21.26 Cybercrime
    Next article
    A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Read
    01
    MIN
    Image Massive data breach hits Asian football two months before the World Cup
    Cybercrime
    04.29.26 Cybercrime
    Next article
    Massive data breach hits Asian football two months before the World Cup
    Read
    01
    MIN
    Image Germany investigates Signal hack targeting its political class
    Cybercrime
    04.27.26 Cybercrime
    Next article
    Germany investigates Signal hack targeting its political class
    Read
    01
    MIN
    Coordinated by Europol, this international police operation had led to the dismantling of several cybercriminal tools in May 2024.

    Europol announced on April 9, 2025, that it had coordinated, in early 2025, the arrest of several clients of the Smokeloader botnet, operated by the cybercriminal known as “Superstar.” These actions follow the international police operation “Endgame,” which had led, in May 2024, to the takedown of several major cybercriminal tools, including IcedID, SystemBC, Pikabot, Smokeloader, and Bumblebee.

    At the time, law enforcement had seized a Smokeloader database listing all clients who had rented the botnet for cybercriminal activities. This information enabled authorities to carry out “arrests, searches, and arrest warrants,” according to Europol’s statement.

    “Clients of these Crime-as-a-Service providers are now learning the painful lesson that their personal data was not protected by individuals who, inadvertently, painted targets on their backs,” the statement also reads.

    Europol notes that this crackdown concerns lower-level criminals compared to those arrested in May 2024. Authorities were also able to rely on the cooperation of several suspects previously arrested. According to the European agency, Endgame will continue, with further police actions already scheduled.

    The Editorial Team
    04.13.25
    Articles by the same author:
    1
    05.27.26 Cyber stability
    The ECB summons European banks to discuss AI-related risks
    Read
    01
    MIN
    2
    05.25.26 Cybercrime
    France and the Netherlands lead the dismantling of First VPN, a service popular among cybercriminals
    Read
    01
    MIN
    3
    05.25.26 Cybercrime
    Arrest of Canadian man suspected of running the KimWolf botnet
    Read
    01
    MIN
    4
    05.25.26 Digital transformation
    Canada: government ready to amend its law on law enforcement access to data
    Read
    01
    MIN
    Image GitHub confirms it was hacked by TeamPCP
    Cybercrime
    05.21.26 Cybercrime
    Next article
    GitHub confirms it was hacked by TeamPCP
    Read
    01
    MIN
    Image A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Cybercrime
    05.21.26 Cybercrime
    Next article
    A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Read
    01
    MIN
    Image Massive data breach hits Asian football two months before the World Cup
    Cybercrime
    04.29.26 Cybercrime
    Next article
    Massive data breach hits Asian football two months before the World Cup
    Read
    01
    MIN
    Image Germany investigates Signal hack targeting its political class
    Cybercrime
    04.27.26 Cybercrime
    Next article
    Germany investigates Signal hack targeting its political class
    Read
    01
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.