Thousands of hackers used the RedLine and Meta malware to infect millions of Windows computers, stealing login credentials and other sensitive data. Sold at around $100 per month, these malware programs became highly popular among cybercriminals.
The malware strains, allegedly sharing the same developer, relied on a network of over 1,200 servers across various countries. Cybercriminals spread RedLine and Meta through phishing emails, fake software, and online ads, impacting countless unsuspecting users worldwide.
Law enforcement agencies from Europe and the US, aided by cybersecurity firm ESET, conducted a coordinated takedown of both malware strains. The FBI seized key US-based command-and-control servers, while European authorities dismantled others and blocked access to the Telegram channels selling the malware.
This operation disrupted malware infections and allowed authorities to retrieve databases of clients, leading to further investigations and charges against individuals involved.
