ESET Research<p>In May 2025, <a href="https://infosec.exchange/tags/ESET" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ESET</span></a> participated in operations that largely disrupted the infrastructure of two notorious infostealers: <a href="https://infosec.exchange/tags/LummaStealer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LummaStealer</span></a> and <a href="https://infosec.exchange/tags/Danabot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Danabot</span></a>. <br>As part of the Lumma Stealer disruption effort, carried out in conjunction with Microsoft, BitSight, Lumen, Cloudflare, CleanDNS, and GMO Registry, ESET supplied technical analysis and statistical information. <br>Danabot was targeted by the <a href="https://infosec.exchange/tags/FBI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FBI</span></a> and <a href="https://infosec.exchange/tags/DCIS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DCIS</span></a>, alongside <a href="https://infosec.exchange/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> led by <a href="https://infosec.exchange/tags/Europol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Europol</span></a> and <a href="https://infosec.exchange/tags/Eurojust" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Eurojust</span></a>. ESET participated together with several other companies. We provided the analysis of the malware’s backend infrastructure and identified its C&C servers. <br>Before these takedowns, both infostealers were on the rise: in H1 2025, Lumma Stealer detections grew by 21%, while Danabot’s numbers increased by more than 50%.<br> For a time, Lumma Stealer was the primary payload of HTML/FakeCaptcha trojan, used in the <a href="https://infosec.exchange/tags/ClickFix" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ClickFix</span></a> social engineering attacks that we also cover in this issue of the <a href="https://infosec.exchange/tags/ESETThreatReport" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ESETThreatReport</span></a>. In recent months, we have seen Danabot being delivered via ClickFix as well. <br>For more details on these two operations and on the ClickFix attacks, read the latest <a href="https://infosec.exchange/tags/ESETThreatReport" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ESETThreatReport</span></a>: <a href="https://welivesecurity.com/en/eset-research/eset-threat-report-h1-2025" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">welivesecurity.com/en/eset-res</span><span class="invisible">earch/eset-threat-report-h1-2025</span></a></p>
mastodon.ie is one of the many independent Mastodon servers you can use to participate in the fediverse.
Irish Mastodon - run from Ireland, we welcome all who respect the community rules and members.
Administered by:
Server stats:
1.5Kactive users
mastodon.ie: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.3
#operationendgame
0 posts · 0 participants · 0 posts today
Pyrzout :vm:<p>$17 Million Black Market Empire Crushed in Cybercrime Sting <a href="https://thecyberexpress.com/bidencash-marketplace-domains-seized/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thecyberexpress.com/bidencash-</span><span class="invisible">marketplace-domains-seized/</span></a> <a href="https://social.skynetcloud.site/tags/BidenCashMarketplace" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BidenCashMarketplace</span></a> <a href="https://social.skynetcloud.site/tags/TheCyberExpressNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TheCyberExpressNews</span></a> <a href="https://social.skynetcloud.site/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> <a href="https://social.skynetcloud.site/tags/TheCyberExpress" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TheCyberExpress</span></a> <a href="https://social.skynetcloud.site/tags/FirewallDaily" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FirewallDaily</span></a> <a href="https://social.skynetcloud.site/tags/cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybercrime</span></a> <a href="https://social.skynetcloud.site/tags/CyberNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberNews</span></a></p>
Marcel SIneM(S)US<p><a href="https://social.tchncs.de/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a>: Behörden zerschlagen <a href="https://social.tchncs.de/tags/Antivirus" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Antivirus</span></a>-Testseite <a href="https://social.tchncs.de/tags/AVCheck" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AVCheck</span></a> | Security <a href="https://www.heise.de/news/Operation-Endgame-Behoerden-zerschlagen-Antivirus-Testseite-AVCheck-10422496.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Operation-Endgam</span><span class="invisible">e-Behoerden-zerschlagen-Antivirus-Testseite-AVCheck-10422496.html</span></a> <a href="https://social.tchncs.de/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://social.tchncs.de/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.tchncs.de/tags/OperationEndgame2" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame2</span></a></p>
🐦🔥nemo™🐦⬛ 🇺🇦<p>🚨 Authorities just dismantled major malware evasion services used by cybercriminals! Operation Endgame took down AVCheck & more, striking at the heart of cybercrime tools that help malware dodge antivirus defenses. Huge win for cybersecurity! 🔒🌐<br>Read more: <a href="https://cyberinsider.com/authorities-take-down-malware-evasion-services-used-by-cybercriminals/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">cyberinsider.com/authorities-t</span><span class="invisible">ake-down-malware-evasion-services-used-by-cybercriminals/</span></a><br><a href="https://mas.to/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mas.to/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> <a href="https://mas.to/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://mas.to/tags/LawEnforcement" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LawEnforcement</span></a> <a href="https://mas.to/tags/AVCheck" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AVCheck</span></a> <a href="https://mas.to/tags/newz" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>newz</span></a></p>
Tarnkappe.info<p>📬 AVCheck zerschlagen: Behörden schlagen zu, Szene rüstet nach<br><a href="https://social.tchncs.de/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.tchncs.de/tags/Rechtssachen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rechtssachen</span></a> <a href="https://social.tchncs.de/tags/AVCheck" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AVCheck</span></a> <a href="https://social.tchncs.de/tags/CounterAV" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CounterAV</span></a> <a href="https://social.tchncs.de/tags/Cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybercrime</span></a> <a href="https://social.tchncs.de/tags/DarknetTools" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DarknetTools</span></a> <a href="https://social.tchncs.de/tags/FBI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FBI</span></a> <a href="https://social.tchncs.de/tags/MalwareTesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MalwareTesting</span></a> <a href="https://social.tchncs.de/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> <a href="https://sc.tarnkappe.info/60983a" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">sc.tarnkappe.info/60983a</span><span class="invisible"></span></a></p>
Pyrzout :vm:<p>Operation ENDGAME disrupted global ransomware infrastructure – Source: securityaffairs.com <a href="https://ciso2ciso.com/operation-endgame-disrupted-global-ransomware-infrastructure-source-securityaffairs-com/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/operation-endgam</span><span class="invisible">e-disrupted-global-ransomware-infrastructure-source-securityaffairs-com/</span></a> <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>rssfeedpostgeneratorecho</span></a> <a href="https://social.skynetcloud.site/tags/informationsecuritynews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>informationsecuritynews</span></a> <a href="https://social.skynetcloud.site/tags/ITInformationSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITInformationSecurity</span></a> <a href="https://social.skynetcloud.site/tags/SecurityAffairscom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityAffairscom</span></a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/PierluigiPaganini" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PierluigiPaganini</span></a> <a href="https://social.skynetcloud.site/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> <a href="https://social.skynetcloud.site/tags/SecurityAffairs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityAffairs</span></a> <a href="https://social.skynetcloud.site/tags/SecurityAffairs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityAffairs</span></a> <a href="https://social.skynetcloud.site/tags/BreakingNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BreakingNews</span></a> <a href="https://social.skynetcloud.site/tags/SecurityNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://social.skynetcloud.site/tags/Cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybercrime</span></a> <a href="https://social.skynetcloud.site/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacking</span></a> <a href="https://social.skynetcloud.site/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a></p>
Pyrzout :vm:<p>Operation Endgame Takes Down DanaBot Malware, Neutralizes 300 Servers <a href="https://hackread.com/operation-endgame-danabot-malware-neutralizes-servers/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">hackread.com/operation-endgame</span><span class="invisible">-danabot-malware-neutralizes-servers/</span></a> <a href="https://social.skynetcloud.site/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> <a href="https://social.skynetcloud.site/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://social.skynetcloud.site/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://social.skynetcloud.site/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://social.skynetcloud.site/tags/TrickBot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrickBot</span></a> <a href="https://social.skynetcloud.site/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.skynetcloud.site/tags/DanaBot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DanaBot</span></a> <a href="https://social.skynetcloud.site/tags/Europol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Europol</span></a> <a href="https://social.skynetcloud.site/tags/Botnet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Botnet</span></a> <a href="https://social.skynetcloud.site/tags/Qakbot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Qakbot</span></a></p>
Pyrzout :vm:<p>Operation Endgame Takes Down DanaBot Malware, Neutralizes 300 Servers – Source:hackread.com <a href="https://ciso2ciso.com/operation-endgame-takes-down-danabot-malware-neutralizes-300-servers-sourcehackread-com/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/operation-endgam</span><span class="invisible">e-takes-down-danabot-malware-neutralizes-300-servers-sourcehackread-com/</span></a> <a href="https://social.skynetcloud.site/tags/1CyberSecurityNewsPost" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>1CyberSecurityNewsPost</span></a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> <a href="https://social.skynetcloud.site/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://social.skynetcloud.site/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://social.skynetcloud.site/tags/Hackread" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hackread</span></a> <a href="https://social.skynetcloud.site/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://social.skynetcloud.site/tags/TrickBot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrickBot</span></a> <a href="https://social.skynetcloud.site/tags/DanaBot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DanaBot</span></a> <a href="https://social.skynetcloud.site/tags/Europol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Europol</span></a> <a href="https://social.skynetcloud.site/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>malware</span></a> <a href="https://social.skynetcloud.site/tags/botnet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>botnet</span></a> <a href="https://social.skynetcloud.site/tags/Qakbot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Qakbot</span></a></p>
Hackread.com<p>⛔ <a href="https://mstdn.social/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a>: Police takes down DanaBot malware network; 300 servers neutralized, €21.2M in crypto seized and 16 charged/</p><p>Read: <a href="https://hackread.com/operation-endgame-danabot-malware-neutralizes-servers/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">hackread.com/operation-endgame</span><span class="invisible">-danabot-malware-neutralizes-servers/</span></a></p><p><a href="https://mstdn.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mstdn.social/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://mstdn.social/tags/DanaBot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DanaBot</span></a> <a href="https://mstdn.social/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://mstdn.social/tags/Europe" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Europe</span></a></p>
The Spamhaus Project<p>🔥 Operation Endgame is BACK! This time targeting <a href="https://infosec.exchange/tags/BumbleBee" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BumbleBee</span></a>, <a href="https://infosec.exchange/tags/Latrodectus" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Latrodectus</span></a>, <a href="https://infosec.exchange/tags/DanaBot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DanaBot</span></a>, <a href="https://infosec.exchange/tags/WarmCookie" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WarmCookie</span></a>, <a href="https://infosec.exchange/tags/Qakbot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Qakbot</span></a> and <a href="https://infosec.exchange/tags/Trickbot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Trickbot</span></a>!</p><p>Once again this is a HUGE win, with a truly international effort! 💪 </p><p>As with phase one of <a href="https://infosec.exchange/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a>, Spamhaus are providing remediation support - those affected will be contacted in due course with steps to take. </p><p>For more information, read our write-up here:<br>👉 <a href="https://www.spamhaus.org/resource-hub/malware/botnets-disrupted-worldwide-operation-endgame-is-back/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">spamhaus.org/resource-hub/malw</span><span class="invisible">are/botnets-disrupted-worldwide-operation-endgame-is-back/</span></a></p>
Pyrzout :vm:<p>Operation Endgame 2.0: Europe’s Cyber Dragnet Just Crippled the Ransomware Economy at Its Source <a href="https://thecyberexpress.com/operation-endgame-2-0-ransomware/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thecyberexpress.com/operation-</span><span class="invisible">endgame-2-0-ransomware/</span></a> <a href="https://social.skynetcloud.site/tags/RansomwareThreatLandscape" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RansomwareThreatLandscape</span></a> <a href="https://social.skynetcloud.site/tags/TheCyberExpressNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TheCyberExpressNews</span></a> <a href="https://social.skynetcloud.site/tags/ThreatIntelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntelligence</span></a> <a href="https://social.skynetcloud.site/tags/OperationEndgame20" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame20</span></a> <a href="https://social.skynetcloud.site/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> <a href="https://social.skynetcloud.site/tags/TheCyberExpress" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TheCyberExpress</span></a> <a href="https://social.skynetcloud.site/tags/RansomwareNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RansomwareNews</span></a> <a href="https://social.skynetcloud.site/tags/FirewallDaily" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FirewallDaily</span></a> <a href="https://social.skynetcloud.site/tags/ThreatActors" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatActors</span></a> <a href="https://social.skynetcloud.site/tags/MalwareNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MalwareNews</span></a> <a href="https://social.skynetcloud.site/tags/Ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ransomware</span></a> <a href="https://social.skynetcloud.site/tags/CyberNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberNews</span></a> <a href="https://social.skynetcloud.site/tags/TrickBot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrickBot</span></a> <a href="https://social.skynetcloud.site/tags/Crypto" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Crypto</span></a></p>
BSI<p>⚠️📢 Deutschland und zahlreiche internationale Partner haben in einer gemeinsamen Aktion die derzeit einflussreichsten <a href="https://social.bund.de/tags/Schadsoftware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Schadsoftware</span></a>-Varianten vom Netz genommen und Strafverfolgungsmaßnahmen eingeleitet. Als BSI unterstützen wir die Operation mit eigenen Analysen sowie <a href="https://social.bund.de/tags/Sinkholing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Sinkholing</span></a>-Maßnahmen und der Benachrichtigung von Betroffenen in Deutschland: ➡️<a href="https://www.bsi.bund.de/dok/1146278" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">bsi.bund.de/dok/1146278</span><span class="invisible"></span></a></p><p><a href="https://social.bund.de/tags/Endgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Endgame</span></a> <a href="https://social.bund.de/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a></p>
Threat Insight<p>Today, Proofpoint joins the cybersecurity community and U.S. and international law enforcement in celebrating the disruption of <a href="https://infosec.exchange/tags/DanaBot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DanaBot</span></a>, a malware-as-a-service used by sophisticated cybercriminals since 2018.</p><p>The disruption was part of <a href="https://infosec.exchange/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a>, a widespread effort conducted by global law enforcement and private sector partners, including Proofpoint, to disrupt malware and botnet infrastructure and identify those associated with the activity. (<a href="https://brnw.ch/21wSRiX" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">brnw.ch/21wSRiX</span><span class="invisible"></span></a>)</p><p>Proofpoint was proud to assist in the law enforcement investigations into DanaBot activity. We will continue to leverage our unique vantage point to inform the community and share insight whenever it is possible and appropriate to do so.</p><p>For details on today’s disruption announcement, visit:</p><p>Proofpoint threat research: <a href="https://brnw.ch/21wSRiZ" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">brnw.ch/21wSRiZ</span><span class="invisible"></span></a></p><p>U.S. Government press release: <a href="https://brnw.ch/21wSRji" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">brnw.ch/21wSRji</span><span class="invisible"></span></a></p>
Dissent Doe :cupofcoffee:<p>UPDATE: DOJ has now published a press release announcing the indictment of RUSTAM RAFAILEVICH GALLYAMOV, aka "Cortes" and other aliases. </p><p>Leader of Qakbot Malware Conspiracy Indicted for Involvement in Global Ransomware Scheme:</p><p><a href="https://www.justice.gov/opa/pr/leader-qakbot-malware-conspiracy-indicted-involvement-global-ransomware-scheme" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">justice.gov/opa/pr/leader-qakb</span><span class="invisible">ot-malware-conspiracy-indicted-involvement-global-ransomware-scheme</span></a></p><p>------------ Prior post: </p><p>Clever teasing by <a href="https://infosec.exchange/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> </p><p>A new vid about Qakbot, "My Happy Lie by Cortes" and they reset the countdown timer to 16 hours while linking to a DOJ press release dated today that has not yet been released: </p><p>"Russian national and leader of Qakbot malware conspiracy indicted in long-running global ransomware scheme"</p><p><a href="https://infosec.exchange/tags/qakbot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>qakbot</span></a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>malware</span></a></p>
Tarnkappe.info<p>📬 Im Visier von Europol: Operation Endgame führt zu weiteren Verhaftungen<br><a href="https://social.tchncs.de/tags/ITSicherheit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITSicherheit</span></a> <a href="https://social.tchncs.de/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.tchncs.de/tags/Botnetze" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Botnetze</span></a> <a href="https://social.tchncs.de/tags/Cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybercrime</span></a> <a href="https://social.tchncs.de/tags/DropperMalware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DropperMalware</span></a> <a href="https://social.tchncs.de/tags/europol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>europol</span></a> <a href="https://social.tchncs.de/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> <a href="https://social.tchncs.de/tags/RansomwareInfrastruktur" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RansomwareInfrastruktur</span></a> <a href="https://sc.tarnkappe.info/6f90b6" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">sc.tarnkappe.info/6f90b6</span><span class="invisible"></span></a></p>
Pyrzout :vm:<p>Smokeloader Users Identified and Arrested in Operation Endgame – Source:hackread.com <a href="https://ciso2ciso.com/smokeloader-users-identified-and-arrested-in-operation-endgame-sourcehackread-com/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/smokeloader-user</span><span class="invisible">s-identified-and-arrested-in-operation-endgame-sourcehackread-com/</span></a> <a href="https://social.skynetcloud.site/tags/1CyberSecurityNewsPost" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>1CyberSecurityNewsPost</span></a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> <a href="https://social.skynetcloud.site/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://social.skynetcloud.site/tags/SmokeLoader" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SmokeLoader</span></a> <a href="https://social.skynetcloud.site/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://social.skynetcloud.site/tags/Hackread" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hackread</span></a> <a href="https://social.skynetcloud.site/tags/Europol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Europol</span></a> <a href="https://social.skynetcloud.site/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>malware</span></a> <a href="https://social.skynetcloud.site/tags/botnet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>botnet</span></a> <a href="https://social.skynetcloud.site/tags/europe" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>europe</span></a></p>
Pyrzout :vm:<p>Europol Targets Customers of Smokeloader Pay-Per-Install Botnet – Source: www.securityweek.com <a href="https://ciso2ciso.com/europol-targets-customers-of-smokeloader-pay-per-install-botnet-source-www-securityweek-com/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/europol-targets-</span><span class="invisible">customers-of-smokeloader-pay-per-install-botnet-source-www-securityweek-com/</span></a> <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>rssfeedpostgeneratorecho</span></a> <a href="https://social.skynetcloud.site/tags/Tracking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tracking</span></a>&LawEnforcement <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> <a href="https://social.skynetcloud.site/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a>&Threats <a href="https://social.skynetcloud.site/tags/securityweekcom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securityweekcom</span></a> <a href="https://social.skynetcloud.site/tags/securityweek" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securityweek</span></a> <a href="https://social.skynetcloud.site/tags/SmokeLoader" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SmokeLoader</span></a> <a href="https://social.skynetcloud.site/tags/Trickbot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Trickbot</span></a> <a href="https://social.skynetcloud.site/tags/Europol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Europol</span></a> <a href="https://social.skynetcloud.site/tags/botnet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>botnet</span></a></p>
Pyrzout :vm:<p>Smokeloader Users Identified and Arrested in Operation Endgame <a href="https://hackread.com/smokeloader-users-identified-arrested-operation-endgame/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">hackread.com/smokeloader-users</span><span class="invisible">-identified-arrested-operation-endgame/</span></a> <a href="https://social.skynetcloud.site/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> <a href="https://social.skynetcloud.site/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://social.skynetcloud.site/tags/SmokeLoader" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SmokeLoader</span></a> <a href="https://social.skynetcloud.site/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://social.skynetcloud.site/tags/Europol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Europol</span></a> <a href="https://social.skynetcloud.site/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.skynetcloud.site/tags/Botnet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Botnet</span></a> <a href="https://social.skynetcloud.site/tags/europe" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>europe</span></a></p>
Hackread.com<p>🚨 <a href="https://mstdn.social/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> - With the operators out of the picture, law enforcement is closing in on Smokeloader botnet’s paying customers across Europe and North America.</p><p>Read: <a href="https://hackread.com/smokeloader-users-identified-arrested-operation-endgame/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">hackread.com/smokeloader-users</span><span class="invisible">-identified-arrested-operation-endgame/</span></a></p><p><a href="https://mstdn.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mstdn.social/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://mstdn.social/tags/Smokeloader" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Smokeloader</span></a> <a href="https://mstdn.social/tags/Botnet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Botnet</span></a></p>
Pyrzout :vm:<p>Europol Targets Customers of Smokeloader Pay-Per-Install Botnet <a href="https://www.securityweek.com/europol-targets-customers-of-smokeloader-pay-per-install-botnet/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">securityweek.com/europol-targe</span><span class="invisible">ts-customers-of-smokeloader-pay-per-install-botnet/</span></a> <a href="https://social.skynetcloud.site/tags/Tracking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tracking</span></a>&LawEnforcement <a href="https://social.skynetcloud.site/tags/OperationEndgame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationEndgame</span></a> <a href="https://social.skynetcloud.site/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a>&Threats <a href="https://social.skynetcloud.site/tags/Smokeloader" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Smokeloader</span></a> <a href="https://social.skynetcloud.site/tags/Trickbot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Trickbot</span></a> <a href="https://social.skynetcloud.site/tags/Europol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Europol</span></a> <a href="https://social.skynetcloud.site/tags/botnet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>botnet</span></a></p>
TrendingLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload