« Nombre de victimes ignoraient l'infection de leur système » : la France et 10 autres pays neutralisent un immense réseau cybercriminel Du 10 au 13 novembre 2025, Europol a mené la dernière phase de l'opération Endgame. Les cibles de cet ultime coup de filet ? Le logiciel espion Rhadamanthys, le botnet Elysium et le cheval de Troie Ve...

Les cibles de cet ultime coup de filet ? Le logiciel espion #Rhadamanthys, le botnet #Elysium et le cheval de Troie #VenomRAT. Ce démantèlement est le fruit d’une collaboration entre 11 pays.)
www.numerama.com/cyberguerre/...

Operation Endgame: Son aşamada üç siber suç örgütü çökertildi Uluslararası kolluk kuvvetleri koalisyonu, Operation Endgame'in son aşaması kapsamında Rhadamanthys infostealer, VenomRAT ve Elysium botnet kötü amaçlı yazılım operasyonları tarafından kullanılan 1000...

Operation Endgame: Son aşamada üç siber suç örgütü çökertildi

#venomrat #endgame #Rhadamanthys

webrecord.media/operation-en...

#Rhadamanthys and #VenomRAT are the latest malware to be disrupted by Operation Endgame.

Since May 2024, the operation has affected IcedID, Bumblebee, SystemBC, Pikabot, SmokeLoader, DanaBot, WarmCookie, Trickbot, and Hijack Loader, among other malware and botnets.

Timeline of Rhadamanthys campaigns.

Distribution of VenomRAT by threat actor.

Proofpoint is proud to have assisted law enforcement in the #OperationEndgame investigation that led to the November 13, 2025 disruption of #Rhadamanthys and #VenomRAT, both malicious infrastructure used by multiple cybercriminals.

Rhadamanthys: brnw.ch/21wXsCc
VenomRAT: brnw.ch/21wXsCd

End of the game for cybercrime infrastructure: 1025 servers taken down – Operation Endgame’s latest phase targeted the infostealer Rhadamanthys, Remote Access Trojan VenomRAT, and the botnet Elysium | Europol Between 10 and 14 November 2025, the latest phase of Operation Endgame was coordinated from Europol’s headquarters in The Hague. The actions targeted one of the biggest infostealers (Rhadamanthys), the Remote Access Trojan VenomRAT, and the botnet Elysium, all of which played a key role in international cybercrime. Authorities took down these three large cybercrime enablers. The main suspect for VenomRAT was also arrested in Greece on 3 November 2025.

Operation Endgame’s latest phase targeted the infostealer #Rhadamanthys, Remote Access Trojan #VenomRAT, and the botnet #Elysium.
www.europol.europa.eu/media-press/newsroom/new...

Europol guida l’Operazione Endgame: 1025 server del cybercrime smantellati, arresti internazionali e blocco di Rhadamanthys, VenomRAT ed Elysium.

#Elysium #Endgame #europol #Rhadamanthys #VenomRAT
www.matricedigitale.it/2025/11/13/e...

TA558 leverages AI-generated scripts to deploy Venom RAT in Brazilian hotel cyberattacks. Hospitality sector must stay vigilant. #CyberSecurity #AI #Phishing #VenomRAT #TA558 Link: thedailytechfeed.com/ta558s-ai-en...

TA558 Uses AI-Generated Scripts to Deploy Venom RAT in Brazil Hotel Attacks known to be operating since read more about TA558 Uses AI-Generated Scripts to Deploy Venom RAT in Brazil Hotel Attacks

TA558 Uses AI-Generated Scripts to Deploy Venom RAT in Brazil Hotel Attacks reconbee.com/ta558-uses-a...

#TA558 #aigeneratedscripts #VenomRAT #Brazil #brazilhotelattacks #cyberattack

Threat Actor Infests Hotels With New RAT

Threat Actor Infests Hotels With New RAT RevengeHotels has been targeting hotels in Brazil and Spanish-speaking regions with VenomRAT implants in 2025. The post Threat Actor Infests Hotels With New...

#Malware #& #Threats #hotel #RAT #RevengeHotels #VenomRAT

Origin | Interest | Match

RevengeHotels usa LLM e VenomRAT contro hotel LATAM: catena d’infezione, TTP, IOC e difese per SOC e CISO.

#AI #LLM #malware #phishing #QuasarRAT #RevengeHotels #TA558 #VenomRAT
www.matricedigitale.it/2025/09/17/r...

RevengeHotels (TA558) targets Latin America with LLM-crafted lures and VenomRAT second-stage implants; campaign aims at payment-card theft and uses USB spreading plus anti-kill measures. #VenomRAT #LLM #TA558 https://bit.ly/4mfE5Sv

AsyncRAT e la sua galassia di fork open source evolvono tra plugin avanzati, tecniche di offuscamento e targeting: minaccia modulare e adattabile difficile da bloccare.

#AsyncRAT #dcrat #RAT #VenomRAT
www.matricedigitale.it/2025/07/15/a...

VenomRAT: Multi-Stage Phishing, Cloud C2, and Modular Malware in Financial and IT Sector Attacks VenomRAT, first observed in 2020 as a fork of Quasar RAT, has evolved into a modular, service-based remote access trojan with advanced keylogging, stealth, and evasion capabilities. It is distributed…

Mgrs, “urgent invoice” season? #VenomRAT cheat-sheet chews the intel for you. 🐍☁️ Read & relax.

blog.alphahunt.io/venomrat-mul...

#AlphaHunt #CyberSecurity #InfoSec

Trade the scavenger hunt for an actual GPS—AlphaHunt gets you to the threat, not the therapist.

Learn more → alphahunt.io

#AlphaHunt #CyberSecurity #InfoSec #AskYourTIP #EDR #VenomRAT

Cybercriminals mimic Bitdefender's site to deploy VenomRAT, targeting financial data. Stay vigilant and download software only from official sources. #CyberSecurity #MalwareAlert #VenomRAT Link: thedailytechfeed.com/hackers-impe...

Προσοχή: Αυτός ο ψεύτικος ιστότοπος Bitdefender μπορεί να μολύνει τον υπολογιστή σας με κακόβουλο λογισμικό Ο ψεύτικος ιστότοπος προσπαθεί να εξαπατήσει τους χρήστες ώστε να κατεβάσουν και να εγκαταστήσουν ένα Trojan γνωστό ως VenomRAT, μαζί με δύο ακόμα κακόβουλα προγράμματα.

⚠️Ο ψεύτικος ιστότοπος προσπαθεί να εξαπατήσει τους χρήστες ώστε να κατεβάσουν και να εγκαταστήσουν ένα Trojan γνωστό ως VenomRAT, μαζί με δύο ακόμα κακόβουλα προγράμματα. #Bitdefender #VenomRAT #Trojan

Cybercriminals Clone Antivirus Site to Spread Venom RAT and Steal Crypto Wallets SilentTrinity and StormKitty stealer read more about Cybercriminals Clone Antivirus Site to Spread Venom RAT and Steal Crypto Wallets

Cybercriminals Clone Antivirus Site to Spread Venom RAT and Steal Crypto Wallets reconbee.com/cybercrimina...

#cybercriminals #cybercrime #anitivirus #VenomRAT #cryptowallet #CryptoScam #cyberattack

🚨 Newly discovered update to #VenomRAT + #HVNC v6.0.8

ACCE Release Notes v2.9.20250421 – Cipher Tech Solutions, Inc.

April ACCE release notes are available at www.ciphertechsolutions.com/acce-release... with updates to include #AutoColor #CrystalStealer #ExosStealer #Lumma #VenomRAT

#malware #opendir ultimately #venomrat + #hvnc:

https://carltonsfile\\.com/mor1/ -> https://paste\\.ee/d/c7nSA2yM/0

c2: 109.248.144.175:4449

4541fd01a19f1e484f24eff86f42ac36ea9b30686fd405ca0a50f3e517657a61

#VENOMRAT Update

Hackers Hide VenomRAT Malware Inside Virtual Hard Disk Image File Follow us on Bluesky, Twitter (X) and Facebook at @Hackread

NEW🚨- Hackers are hiding the notorious #VenomRAT malware inside Virtual Hard Disk (VHD) image files.

Read: hackread.com/hackers-hide...

#CyberSecurity #Malware #Phishing #Trojan

Forcepoint's Prashant Kumar describes a current technique threat actors use to bypass security measures, deliver malware, infect systems and exfiltrate data, all by using a virtual hard disk image (VHD) file to host and distribute the #VenomRAT malware.

www.forcepoint.com/b...

2025-02-25 (Tuesday): #VenomRAT from #malspam uses zip attachment containing a VHD file containing a VBS file. Calls Pastebin link for C2 server information. Details at github.com/malware-traf...

When the threat actor REALLY wants it to run... #venomrat c2:

176.65.142.172:4449

When the threat actor REALLY wants it to run... #venomrat c2:

176.65.142.172:4449