Law enforcement agencies across several countries, coordinated by the European Union's justice agency, have successfully dismantled computer networks responsible for spreading ransomware through infected emails. This operation marks the largest international effort to combat this highly profitable form of cybercrime.
According to Eurojust, the EU's judicial cooperation agency, four significant suspects have been arrested, more than 100 servers have been taken down, and control over 2,000 internet domains has been seized. The operation involved synchronized raids in Germany, the Netherlands, France, Denmark, Ukraine, the United States, and the United Kingdom.
This recent takedown follows a significant operation in 2021 that targeted a botnet known as Emotet, which is a network of compromised computers commonly used for malicious purposes. The financial impact of the dismantled network is estimated to be in the hundreds of millions of euros, affecting governments, companies, and individual users.
One of the main suspects reportedly earned cryptocurrency valued at 69 million euros by renting out criminal infrastructure for ransomware distribution. The operation specifically targeted malware droppers such as IcedID, Pikabot, Smokeloader, Bumblebee, and Trickbot, which are typically spread through infected email links or attachments.
Authorities emphasized the importance of international cooperation in combating cybercrime, highlighting the successful collaboration that led to neutralizing six major malware families. In Germany, investigations are ongoing regarding seven individuals suspected of involvement in a criminal organization responsible for spreading Trickbot malware, with an additional suspect believed to be a key figure behind the Smokeloader group.
This operation serves as a reminder that perpetrators of cybercrimes can be traced and held accountable, showcasing the effectiveness of international law enforcement efforts in combating online threats.
