A global cyber strike has dealt a one-two punch to cybercriminals. Microsoft, aided by Europol, invoked racketeering laws to treat two malware tools-Amadey and Stealc-as part of a single conspiracy. That allowed them to disrupt more than 200 command-and-control servers and seize control of over 18,000 compromised computers.
Europol recovered 27 million stolen login credentials and uncovered $47 million in crypto assets tied to criminal activity. In all, 326 servers and 142 domains were taken down.
The operation also targeted SocGholish, a malware loader linked to the Russian-based Evil Corp, tricking users into installing fake browser updates on compromised websites. Europol worked to clean infected WordPress sites and alert victims whose data was exposed. The enforcement action involved authorities from Canada, Denmark, Germany, the Netherlands, the UK, and the United States.