International Operation Endgame Dismantles Evil Corp's SocGholish Malware Infrastructure

Operation Endgame, a law enforcement effort involving four countries, dismantled a criminal infrastructure linked to the Russian group Evil Corp this week. The operation sanitized 14,971 WordPress sites infected with the SocGholish malware and took offline 106 servers and domains. Additionally, 54% of analyzed enterprises were found to be exposed to related threats. The operation, launched in 2024, targeted the infrastructure supporting SocGholish, a malware strain attributed to Evil Corp. No specific CVE IDs or additional technical details were provided in the report.