The game is far from over, but the cybercriminals have just lost a round. More than 300 servers have been taken offline and 20 arrest warrants issued as part of a spectacular operation dubbed Endgame, coordinated by Europol and Eurojust. The objective: to strike at the heart of the infrastructures used to spread malware, particularly those that prepare the ground for ransomware attacks.
A digital war in several rounds
This European offensive is a continuation of a first phase launched in May 2024, which had already led to the arrest of four individuals and the neutralization of around a hundred servers. Endgame 2.0, as it's called, this time targets the software that replaced those removed last year. The principle of these programs? Act like digital can openers. They infect a target machine, often via a booby-trapped email or a software vulnerability, then prepare the ground for a more massive attack: data espionage, system encryption, ransom extortion... the classic menu of cybercriminals. In other words: these programs don't break down the door, they gently open it to better let thieves in.
Germany, at the center of the web
Among the 300 servers targeted, around fifty were hosted in Germany. The country has been one of the most active centers of combating cyberattacks for several years, and these results clearly illustrate the scale of the problem on the continent. Added to this, three million euros in cryptocurrency were seized—a stab in the pockets of criminal networks that use these currencies to remain invisible. Europol warns: the operation continues. The world of cybercrime is multifaceted, adaptable, and international. With every door closed, hackers try to open another. But with Endgame, an entire network of discreet access to computer systems has just taken a serious hit. Clearly, the authorities are sharpening their digital weapons. And this time, they hit the nail on the head.
