May 30, 2024: international law enforcement agencies coordinated by Europol have conducted a large operation against botnets. Operation Endgame shut down dropper malware including IcedID, SystemBC, Pikabot, Smokeloader and Bumblebee leading to four arrests and takedown of over 100 servers worldwide.We are honored to have had the opportunity to contribute to this international operation and effectively fight cybercrime. Sekoia.io had been involved for several months in the preparation of the operation: researchers from Sekoia TDR (Threat Detection & Research) investigated and shared threat intelligence on the malware and affiliated groups that the TDR team had been following for a long time, including Bumblebee.Cybercrime groups represent the #1 threat against organizations. Threat intelligence expertise boosts detection and response within Sekoia SOC Platform. This is how we protect our customers every day.Read more:Europol press release: https://www.europol.europa.eu/media-press/newsroom/news/largest-ever-operation-against-botnets-hits-dropper-malware-ecosystemWeb portal of Operation Endgame : https://www.operation-endgame.com/Report “BumbleBee: a new trendy loader for Initial Access Brokers” (Sekoia TDR, June 2022): https://blog.sekoia.io/bumblebee-a-new-trendy-loader-for-initial-access-brokers/Sekoia.io mentioned in HackRead: https://hackread.com/4-arrest-operation-endgame-disrupt-ransomware-botnets/
