Law enforcement just delivered one of the year’s most significant blows to cybercriminal infrastructure. Europol, coordinating with agencies across six countries, froze approximately $47 million worth of cryptocurrency tied to three prolific malware operations in a sweeping global crackdown.
The operation, executed on June 24 as part of the ongoing initiative known as Operation Endgame, targeted the malware families SocGholish, Amadey, and StealC. These tools power a “cybercrime-as-a-service” economy, and one of them has direct ties to the Russian cybercrime syndicate Evil Corp.
What Europol actually seized
Authorities took down 326 servers and 142 domains that served as the backbone for distributing and controlling the malware. They also cleaned up 14,971 infected websites, most of them WordPress sites that had been hijacked to spread SocGholish through fake software update prompts.
Investigators froze over EUR 41 million, roughly $47 million, in crypto assets linked to criminal proceeds from the malware campaigns.
