EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Ransomware: Europol Coordinates Major Operation Against Initial Access Malware
    • Home
    • Cybercrime
    • Ransomware: Europol Coordinates Major Operation Against Initial Access Malware

    Ransomware: Europol Coordinates Major Operation Against Initial Access Malware

    Written by
    The Editorial Team
    05.26.25
    Cybercrime
    01
    MIN
    Ransomware: Europol Coordinates Major Operation Against Initial Access Malware
    Ransomware: Europol Coordinates Major Operation Against Initial Access Malware
    Ransomware: Europol Coordinates Major Operation Against Initial Access Malware
    Image GitHub confirms it was hacked by TeamPCP
    Cybercrime
    05.21.26 Cybercrime
    Next article
    GitHub confirms it was hacked by TeamPCP
    Read
    01
    MIN
    Image A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Cybercrime
    05.21.26 Cybercrime
    Next article
    A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Read
    01
    MIN
    Image Massive data breach hits Asian football two months before the World Cup
    Cybercrime
    04.29.26 Cybercrime
    Next article
    Massive data breach hits Asian football two months before the World Cup
    Read
    01
    MIN
    Image Germany investigates Signal hack targeting its political class
    Cybercrime
    04.27.26 Cybercrime
    Next article
    Germany investigates Signal hack targeting its political class
    Read
    01
    MIN
    Law enforcement dismantled infrastructure of seven malware strains: Bumblebee, Lactrodectus, Qakbot, Hijackloader, DanaBot, Trickbot, and Warmcookie.

    On May 23, 2025, Europol and Eurojust announced the coordination of “Endgame 2.0,” an international operation targeting initial access malware used by ransomware gangs. Authorities from seven countries participated: Germany, Canada, Denmark, the United States, France, the Netherlands, and the United Kingdom. France was represented by the national police and gendarmerie, the Paris Judicial Police Directorate, and the National Jurisdiction for Combating Organized Crime (Junalco).

    Between May 19 and 22, investigators jointly dismantled the infrastructure of seven malware strains: Bumblebee, Lactrodectus, Qakbot, Hijackloader, DanaBot, Trickbot, and Warmcookie. “By disabling these entry points, investigators struck at the very beginning of the cyberattack chain, thereby disrupting the entire cybercrime ecosystem,” stated Europol’s release.

    Law enforcement seized over 300 servers worldwide, including around fifty in Germany, 650 domain names, and €3.5 million in cryptocurrency. Judicial authorities also issued about twenty international arrest warrants, most targeting Russian nationals.

    The Editorial Team
    05.26.25
    Articles by the same author:
    1
    05.27.26 Cyber stability
    The ECB summons European banks to discuss AI-related risks
    Read
    01
    MIN
    2
    05.25.26 Cybercrime
    France and the Netherlands lead the dismantling of First VPN, a service popular among cybercriminals
    Read
    01
    MIN
    3
    05.25.26 Cybercrime
    Arrest of Canadian man suspected of running the KimWolf botnet
    Read
    01
    MIN
    4
    05.25.26 Digital transformation
    Canada: government ready to amend its law on law enforcement access to data
    Read
    01
    MIN
    Image GitHub confirms it was hacked by TeamPCP
    Cybercrime
    05.21.26 Cybercrime
    Next article
    GitHub confirms it was hacked by TeamPCP
    Read
    01
    MIN
    Image A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Cybercrime
    05.21.26 Cybercrime
    Next article
    A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Read
    01
    MIN
    Image Massive data breach hits Asian football two months before the World Cup
    Cybercrime
    04.29.26 Cybercrime
    Next article
    Massive data breach hits Asian football two months before the World Cup
    Read
    01
    MIN
    Image Germany investigates Signal hack targeting its political class
    Cybercrime
    04.27.26 Cybercrime
    Next article
    Germany investigates Signal hack targeting its political class
    Read
    01
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.