A recent joint effort led by Europol and Eurojust has successfully disrupted prominent malware families including Rhadamanthys Stealer, Venom RAT, and the Elysium botnet. This operation, occurring between November 10 and 13, 2025, is part of the ongoing Operation Endgame aimed at dismantling criminal infrastructures and combating ransomware enablers globally.
As a result of this operation, the main suspect behind Venom RAT was apprehended in Greece on November 3, over 1,025 servers were taken down, and 20 domains were seized. The enforcement action also led to the dismantling of significant cybercrime enablers.
Europol emphasized that the dismantled malware infrastructure contained numerous infected computers with millions of stolen credentials, many of which were unaware of the compromise. Additionally, the operation revealed that the main suspect behind the infostealer had access to a substantial number of cryptocurrency wallets belonging to victims, potentially amounting to millions of euros.
Although it remains uncertain whether the Elysium botnet mentioned by Europol is associated with the proxy botnet service previously advertised by RHAD security, recent reports suggest that Rhadamanthys Stealer evolved to include features like collecting device and browser fingerprints to evade detection.
The enforcement action conducted with the assistance of the Shadowserver Foundation identified over 525,000 unique Rhadamanthys Stealer infections between March and November 2025 across numerous countries, with a significant portion located in India. CrowdStrike’s Adam Meyers commended the collaborative effort, highlighting the impact of disrupting the ransomware economy at its source.
Operation Endgame 3.0 showcased the effectiveness of targeting the infrastructure supporting ransomware, urging defenders to bolster their defenses and remain vigilant against evolving threats. Participating authorities from various countries, including Australia, Canada, Denmark, France, Germany, Greece, Lithuania, the Netherlands, and the U.S., demonstrated the power of international cooperation in combating cybercrime.
(Stay tuned for further updates on this developing story.)
