In a new edition of “Operation Endgame,” international investigators have achieved success against the “SocGholish” malware. They cleaned almost 15,000 infected WordPress blogs and took down botnet infrastructures. The criminal networks are operated by a gang called “Evil Corp,” which has been making money from cybercrime in Russia for more than half a decade.
Read more after the ad
As the Dutch police have now announced, investigators there, together with Canadian, US and German prosecutors, have taken 106 servers and domains of the SocGholish backend offline and repaired 14,971 websites. The unspecified “cleaning of infected WordPress sites” was accompanied by a notification to the victims and also included an urgent warning to install updates to the popular blogging software more quickly in the future.
Millions of credentials – victims are notified
The investigators also discovered over 1.4 million login details for blogs whose owners they wanted to notify using services such as HaveIBeenPwned. They also call on WordPress admins to change their access data, delete unknown or unused accounts in the blog and always keep their WordPress installation up to date.
With a floppy hat and trench coat: The AI investigator for Operation Endgame apparently drinks hard liquor at work. Everything is hard to bear sober.
(Bild: operation-endgame.com)
“Operation Endgame” is the name of a large-scale operation against cybercriminals, the malware ecosystem and digital extortion. The investigators have divided them into seasons in the style of a TV series and often publish short AI-generated videos with which they put criminals under pressure and encourage their cronies to betray them. This time too: A black and white video in the style of the comic book film “Sin City” shows an investigator in a floppy hat and trench coat who is hunting the SocGholish gangsters.
(cku)
