Europol's 'Endgame' Operation Cripples Ransomware, Arrests Four
Europol has launched a major operation, 'Avengers: Endgame', targeting 'droppers' - malware that facilitates the entry of other malicious software into systems. The action, led by European police units, has significantly disrupted ransomware infrastructure and slowed malware spread.
Operation Avengers: Endgame focused on droppers like IcedID, SystemBC, Pikabot, Smokeloader, Bumblebee, and Trickbot. Europol took down over 100 servers and seized over 2000 domains. Raids on 16 houses resulted in the arrest of four individuals. The operation also affected Monero mining due to its potential involvement in cryptojacking.
Monero's resistance to ASIC and GPU mining and its transaction anonymity make it popular for cryptojacking. Following Avengers: Endgame, the Monero network experienced a significant hashrate drop, likely due to illicit miners ceasing operations or shifting to other networks. The operation has caused substantial damage, with infections via the botnet costing Europe hundreds of millions of euros.
Operation Avengers: Endgame has dealt a significant blow to ransomware and malware spread. However, eight cybercriminals remain at large and are now on 'Europe's Most Wanted' list. One main suspect earned at least €69 million in cryptocurrencies by renting out dropper access. Despite these setbacks, Europol's efforts have successfully disrupted major malware operations and slowed the spread of cyber threats.
