International law enforcement has struck a significant blow against Russian cybercriminals responsible for widespread fake software update scams. The Royal Canadian Mounted Police coordinated with partners in the United States, Netherlands, and Germany to target the SocGholish malware operation linked to the notorious Evil Corp group.
This joint initiative, known as Operation Endgame, successfully took down 106 servers and domains globally. Investigators remediated nearly 15,000 compromised WordPress websites that were being exploited to distribute malicious files disguised as legitimate system updates.
Authorities urge website administrators to immediately update credentials and enable multi-factor authentication. Security experts warn users to disregard suspicious browser pop-ups or urgent update notifications to prevent future infections.