Europol Leads Major Strike on Global Cybercrime Infrastructure

We may earn from vendors via affiliate links or sponsorships. This might affect product placement on our site, but not the content of our reviews. See our Terms of Use for details.

Europol has revealed a sweeping international operation that dismantled critical infrastructure supporting several of the world’s most pervasive cybercriminal tools.

Conducted between 10 and 13 November 2025, the latest phase of Operation Endgame targeted the infostealer Rhadamanthys, the Remote Access Trojan VenomRAT, and the botnet ecosystem known as Elysium. Together, these tools had infected hundreds of thousands of computers globally and enabled large-scale credential theft, remote control of victim systems, and the resale of stolen data in illicit markets.

The coordinated action resulted in the takedown or disruption of more than 1,025 servers worldwide, 20 domain seizures, and the arrest of one key suspect in Greece earlier in the month. Authorities say these ...