Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Operation Endgame takedown of Rhadamanthys, Venom RAT, and Elysium

Law Enforcement
First reported
Last updated
Happening score
H score 46
1 unique sources, 1 articles

Summary

Hide ▲

Authorities arrested the main Venom RAT suspect in Greece and disrupted Rhadamanthys Stealer, Venom RAT, and the Elysium botnet during Operation Endgame. The coordinated enforcement phase ran from November 10 to 13, 2025 and targeted criminal infrastructure used to support ransomware enablers worldwide. Officials said the operation took down more than 1,025 servers and seized 20 domains. The dismantled infrastructure contained hundreds of thousands of infected computers and several million stolen credentials.

Related Happenings

Europol-led AudiA6 crypto-laundering takedown

Law Enforcement
H score29 First: 11.06.2026 18:55 Last: 11.06.2026 18:55 Sources 1

About this happening: **Law enforcement** dismantled **AudiA6**, a **cryptocurrency laundering service** used by **ransomware gangs** and other cybercriminal networks, in a **June 10, 2026** multinatio...

Open Happening

AudiA6 laundering ecosystem and Dark2Web forum

Threat Actor Meta
H score31 First: 11.06.2026 18:55 Last: 11.06.2026 18:55 Sources 1

About this happening: **AudiA6** was disrupted as an **industrial-scale cryptocurrency laundering service** used by **ransomware gangs** and other cybercriminal networks. Europol said the ecosystem lau...

Open Happening

Operation KRATOS 2 streaming piracy crackdown

Law Enforcement
H score55 First: 03.06.2026 13:12 Last: 03.06.2026 13:12 Sources 1

About this happening: **European and international law enforcement** dismantled **nine organized crime groups** and arrested **29 suspects** in **Operation KRATOS 2**, a cross-border crackdown on **ill...

Open Happening

First VPN had assets seized in First VPN takedown

Law Enforcement
H score17 First: 21.05.2026 18:30 Last: 21.05.2026 18:30 Sources 1

About this happening: Authorities **took down First VPN**, a **ransomware**-linked service used to hide cybercrime activity, in a coordinated action led by **France and the Netherlands**. The operation...

Open Happening

First VPN takedown by Europol and French-Dutch authorities

Law Enforcement
H score17 First: 21.05.2026 16:09 Last: 21.05.2026 16:09 Sources 1

About this happening: **Europol** and **French and Dutch authorities** took **First VPN** offline in a cross-border operation that also **seized servers** and **arrested the administrator**. The case m...

Open Happening

Timeline

  2. 13.11.2025 13:16 2 articles · 7mo ago

    Operation Endgame disruption and impact reported

    Campaign Scope Update

    Europol and Eurojust said Operation Endgame disrupted Rhadamanthys Stealer, Venom RAT, and the Elysium botnet during the November 10-13, 2025 enforcement window, taking down more than 1,025 servers and seizing 20 domains. Europol said the dismantled infrastructure covered hundreds of thousands of infected computers and several million stolen credentials, and that the main suspect behind the infostealer had access to 100,000 cryptocurrency wallets; Check Point also reported that the latest Rhadamanthys version added device and web browser fingerprint collection plus mechanisms to fly under the radar.

    Show sources
    Open in new tab