- The information thief Rhadamanthys is mad; Cybercriminals are prohibited from accessing web panels
- The initiator blames the German police; Tor site offline without attack banner
- The countdown to Operation Endgame signals wider police efforts against MaaS.
Rhadamanthys Infostealer, one of the most popular Malware-as-a-Service (MaaS) offerings on the dark web, has apparently been shut down and many of its clients have been blocked.
Researchers named g0njxa and Gi7w0rm noticed several cybercriminals reporting problems with the tool while police had access to their web panels.
The MaaS developer blamed German police for the outage, saying companies with German IP addresses had connected to web panels in EU data centers shortly before access was blocked.
The German police are accused
However, the German police have not yet confirmed or denied these claims. in conversation with BeepTeamG0njxa said Rhadamanthy’s Tor page is also down, but it doesn’t currently have the usual police seizure banner, so it’s still possible it’s the work of another actor.
For one user, SSH access now requires a certificate instead of a root password, preventing access: “If you cannot log in with your password.
“I confirm that guests have visited my server and the password has been deleted. The connection to RootServer became completely certificate based so I had to immediately delete everything and shut down the server,” wrote another. “Those who installed it manually were probably not harmed, but those who installed it via the ‘smart panel’ were severely affected.”
At the same time, BeepTeam discovered that the website for Operation Endgame, an ongoing law enforcement operation targeting various MaaS operations, currently has a countdown clock that expires in about 21 hours.
The last Operation Endgame activity took place in May 2025, when Europol and Eurojust dismantled a ransomware removal chain. During the operation, police seized around 300 servers, deleted 650 domains and issued international arrest warrants for 20 people. The police also seized 3.5 million euros in various cryptocurrencies.