Welcome back to The Endgame.
Season 3 of Operation Endgame has begun.
Fragments, logs, whispers... Connections form. The story evolves. Some actors return. New ones emerge. Names you might recognize. Others you won't. Not yet.
We never left. Some of you kept moving. Some stood still. All were seen.
What's next? You'll see. Not all at once, and perhaps not where you'd expect.
Need to talk? You know where to find us. We'll be listening. And watching.
Think about (y)our next move.
Europol
U.S. Department of Justice
The Netherlands Police
Between 10 and 13 November 2025, the latest phase of Operation Endgame was coordinated from Europol’s headquarters in The Hague. The actions targeted one of the biggest infostealer Rhadamanthys, the Remote Access Trojan VenomRAT, and the botnet Elysium, all of which played a key role in international cybercrime. Authorities took down these three large cybercrime enablers. The main suspect for VenomRAT was arrested in Greece on 3 November 2025.
The infrastructure dismantled during the action days was responsible for infecting hundreds of thousands of victims worldwide with malware. The dismantled malware infrastructure consisted of hundreds of thousands of infected computers containing several million stolen credentials. Many of the victims were not aware of the infection of their systems. The main suspect behind the infostealer had access to over 100.000 crypto wallets belonging to these victims, potentially worth millions of euros. Check if your computer has been infected and what to do if so: https://www.politie.nl/checkyourhack and https://haveibeenpwned.com.
