🔐
Security 📅 2026-06-24 · 06:24 PM IST ⏱ 2 min read

Major Credential-Stealing Malware Ring Taken Down, Millions of Passwords Rescued

Law enforcement dismantles widespread malware operation that stole credentials from millions, while critical device vulnerability poses new risk.

A Major Victory Against Digital Thieves

Authorities have successfully shut down a massive criminal operation that was stealing login credentials and personal information from millions of computer users worldwide. The dismantling of this malware network represents a significant win for cybersecurity defenders, with investigators recovering approximately 27 million stolen usernames and passwords that had been compromised by attackers.

The criminals behind this scheme were using two different types of malicious software—Amadey and StealC—to break into computers and extract sensitive information. Think of it like a burglar ring that was breaking into homes simultaneously across an entire city, stealing wallets and documents from each location. Now, law enforcement has caught the gang and recovered the stolen items.

What This Means

This takedown is particularly important because it demonstrates that even large-scale criminal operations can be caught and stopped. The recovered credentials represent real protection for millions of individuals who might have otherwise discovered their information for sale on the dark web or used in identity theft schemes.

Simultaneously, a separate but equally serious threat has emerged. The U.S. Cybersecurity and Infrastructure Security Agency (CISA)—a government organization responsible for protecting American computer networks—has identified a dangerous vulnerability in industrial networking devices made by a company called Lantronix. These devices, known as EDS5000 Series equipment, contain a critical security flaw that attackers can exploit to gain unauthorized access.

Federal government agencies have been given a deadline of June 26, 2026, to install the necessary security patches that fix this vulnerability. Federal agencies are among the most attractive targets for hackers because they hold sensitive government data and control important infrastructure systems.

Why You Should Care

If your information was among the 27 million credentials stolen by this malware ring, you're now at risk for several types of fraud:

The Lantronix vulnerability is primarily a concern for organizations that use this industrial equipment, but the broader lesson applies to everyone: software vulnerabilities that aren't patched quickly become opportunities for attackers.

What You Can Do

Take these protective steps immediately:

The lesson here is clear: staying vigilant about your digital security isn't optional—it's essential protection against increasingly sophisticated threats.

While this malware network has been dismantled, the broader battle against cybercriminals continues, making personal security awareness more important than ever.

📎 This is original ITVedas reporting. This story was inspired by coverage from source. Visit the source for their original reporting.

Want to understand the technology behind this story? ITVedas has beginner-friendly guides on every IT topic.

Explore IT Chapters →