Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered

Law enforcement agencies, in collaboration with cybersecurity firms Bitdefender, Bitsight, ESET, and Microsoft, have dismantled the Amadey and StealC malware networks. This operation, announced by Europol, targeted the "assembly lines" used by cybercriminals to deploy ransomware, conduct financial fraud, and launch attacks against critical infrastructure. The disruption led to the recovery of approximately 27 million stolen credentials, including usernames and passwords, which were being trafficked on the dark web. Amadey, a modular information stealer, has been active since at least 2018, and StealC, a sophisticated malware family, emerged in 2023, both designed to exfiltrate sensitive data from compromised systems. The investigation involved multiple countries, highlighting the international nature of cybercrime and the necessity of cross-border cooperation for effective disruption. Europol stated that the seized infrastructure was crucial for the ongoing criminal activities of these threat actors. The recovered credentials represent a significant blow to the cybercriminal ecosystem, potentially preventing numerous future attacks and financial losses for individuals and organizations.