In a major international law enforcement operation, the infamous Rydox cybercrime marketplace has been seized, and its suspected administrators have been arrested. Rydox, active since early 2016, served as a hub for cybercriminals to buy and sell stolen personal information and tools for committing fraud.

The US Department of Justice (DoJ) revealed that Rydox facilitated the sale of hacked data, including names, addresses, dates of birth, Social Security numbers, financial information, credit card details, and passwords. The site also featured sections offering software and tutorials designed to assist cybercriminals in conducting attacks.

Three Kosovan nationals, believed to be the administrators of the site, were apprehended in recent days. Ardit Kutleshi, 26, and Jetmir Kutleshi, 28, were arrested in Kosovo, with extradition proceedings to the United States underway.

The third suspect, Shpend Sokoli, was arrested in Albania last Thursday. During his capture, authorities seized one computer, six laptops, five mobile phones, additional storage devices, and documents linked to cryptocurrency assets.

Visitors to the Rydox website are now greeted with a law enforcement banner, signaling that the site is under official control as investigations continue into the suspects and its thousands of users.

US Attorney Eric G. Olshan for the Western District of Pennsylvania described Rydox as “a one-stop shop where upwards of 18,000 of its cybercriminal customers could choose from more than 300,000 cybercrime tools.”

He emphasized the local impact of global cybercrime, stating, “While cybercrime often involves conduct occurring overseas and the actions of foreign nationals, its harms can be devastatingly local, with residents in our own communities suffering financial ruin as a result of the theft and misuse of their sensitive personal information.”

Olshan reiterated the commitment of law enforcement agencies to hold cybercriminals accountable, both domestically and internationally, in efforts to protect ordinary citizens.

The seizure of Rydox comes during a week of intensified global action against cybercrime. Europol recently shut down 27 distributed denial-of-service (DDoS) for-hire websites. These takedowns aim to disrupt cyberattacks typically launched during the holiday season, when online activity surges.

The dismantling of Rydox highlights the importance of international collaboration in combating cybercrime and serves as a stark warning to those who profit from exploiting digital vulnerabilities.