Welcome to The Endgame.
This was Season 2 of operation Endgame. Stay tuned, a new Season will follow.
What's next? You'll see. Not all at once, and perhaps not where you'd expect. Some things require patience. Others are already in motion, just not in plain sight.
In the meantime, take a moment. To reflect. To reconsider. To prepare.
Need to talk? You know where to find us. We're listening, and watching.
Think about (y)our next move.
U.S. Department of Justice
The Netherlands Police
Europol
Cybercriminals around the world have suffered a major disruption after law enforcement and judicial authorities, coordinated by Europol and Eurojust, dismantled key infrastructure behind the malware used to launch ransomware attacks. From 19 to 22 May, authorities took down some 300 servers worldwide, neutralised 650 domains, and issued international arrest warrants against 20 targets, dealing a direct blow to the ransomware kill chain.
In addition, EUR 3.5 million in cryptocurrency was seized during the action week, bringing the total amount seized during Operation Endgame to EUR 21.2 million.
This latest phase of Operation ENDGAME follows on from the largest-ever international action against botnets in May 2024. It targeted new malware variants and successor groups that re-emerged after last year’s takedowns, reinforcing law enforcement’s capacity to adapt and strike back – even as cybercriminals retool and reorganise.
