The police within the Netherlands have seized round 250 bodily servers powering a bulletproof internet hosting service within the nation used completely by cybercriminals for offering full anonymity.
Politie, the police drive within the Netherlands, didn’t title the service however mentioned that it has been used for illicit actions since 2022, and has emerged in additional than 80 cybercrime investigations, each home and overseas.
Bulletproof internet hosting suppliers are firms that deliberately ignore abuse reviews and refuse to adjust to content material takedowns requests from regulation enforcement whereas defending their prospects by not imposing Know Your Buyer insurance policies.
Cybercriminals that usually use them are ransomware operators, malware distributors, phishing actors, and spammers, in addition to cash laundering companies that get to stay nameless by paying in difficult-to-trace cryptocurrency.
1000’s of digital servers seized
The Dutch police word that the internet hosting firm marketed full anonymity for customers and no cooperation with regulation enforcement.
The investigation confirmed that the corporate facilitated ransomware assaults, botnet operations, phishing campaigns, and even the distribution of kid abuse content material.
Final week’s police operation confiscated lots of of bodily and 1000’s of digital servers.
“Through the operation on 12 November, the infrastructure was seized. In whole, it entails round 250 bodily servers situated in information facilities in The Hague and Zoetermeer,” reads Politie’s announcement.
supply: Politie
“Due to the seizure of those bodily servers, 1000’s of digital servers had been additionally taken offline.”
Investigators will now conduct a forensic evaluation on the seized servers to realize extra perception into their operators and potential shoppers. Right now, no arrests have been introduced in relation to this motion.
The Dutch police performed a key position in Operation Endgame’s newest part final week, which disrupted the operations of Rhadamanthys, VenomRAT, and Elysium malware.
Within the Netherlands, the authorities carried out 9 searches in Dutch datacentres and seized 83 servers and 20 domains.
Though the 2 operations overlap, the Dutch police instructed BleepingComputer that the 2 investigations will not be related.
CrazyRDP goes down
The authorities have declined to share the title of the internet hosting supplier. Nonetheless, sources instructed BleepingComputer final week that on November twelfth, the Dutch police seized servers from a datacenter in The Hague utilized by CrazyRDP, which is now offline.
CrazyRDP supplied VPS and RDP companies and operated within the curiosity of its shoppers’ anonymity, with no-KYC and no-logs insurance policies, requiring solely a username and password to create an account.
In some discussions between menace actors, CrazyRDP was among the many suggestions for bulletproof internet hosting companies. Moreover, a number of cybersecurity reviews recognized the identical supplier as a service for numerous malicious actions.
BleepingComputer observed that the official CrazyRDP Telegram channel deleted all posts final Wednesday and linked to a distinct channel about CrazyRDP instantly shutting down.
Within the first conversations on the brand new channel, some individuals mentioned that they had greater than 30 servers hosted on CrazyRDP infrastructure. Others feared an exit rip-off, because the service help claimed technical points on the information heart however then by no means replied.
One buyer complained to technical help on Wednesday night about issues logging in and was instructed that they might obtain a response when every thing can be “absolutely resolved.”
Nonetheless, about 4 hours later ,the operator mentioned that they didn’t have an estimated time for fixing the problem after which answered.
Though it’s unclear if CrazyRDP is the bulletproof internet hosting that the Dutch police took down final Wednesday, the operation seems to be offline since then.
Whether or not you are cleansing up previous keys or setting guardrails for AI-generated code, this information helps your group construct securely from the beginning.
Get the cheat sheet and take the guesswork out of secrets and techniques administration.
