Security Affairs
FBI: TeamPCP Compromised Dev Tools to Steal Cloud Credentials|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|FBI: TeamPCP Compromised Dev Tools to Steal Cloud Credentials|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Dutch police takes down bulletproof hosting hub linked to 80+ cybercrime cases

Dutch police seized 250 servers running a bulletproof hosting service tied to cybercriminals and linked to over 80 investigations since 2022. Dutch police Politie, seized 250 servers running an unnamed bulletproof hosting service used solely by cybercriminals. Active since 2022, it appeared in over 80 cybercrime investigations. “In an investigation into a rogue hosting company, […]

Dutch police botnet

Dutch police seized 250 servers running a bulletproof hosting service tied to cybercriminals and linked to over 80 investigations since 2022.

Dutch police Politie, seized 250 servers running an unnamed bulletproof hosting service used solely by cybercriminals. Active since 2022, it appeared in over 80 cybercrime investigations.

“In an investigation into a rogue hosting company, the East Netherlands cybercrime team seized thousands of servers.” reads the press release published by Politie. “According to the police, the hosting company is used solely for criminal activities. Research shows that the company has appeared in more than 80 investigations into cybercrimes at home and abroad since 2022 and has recently continued to be used for criminal activities.”

Dutch police took thousands of virtual servers offline. The move blocks criminal use and enables further investigation.

Bulletproof hosting is a hosting service that deliberately ignores or resists abuse reports, takedown requests, and law-enforcement orders. It is designed to let customers run illegal or harmful operations with minimal risk of being shut down.

Typical criminal uses include:

  • Malware command-and-control servers
  • Phishing and scam sites
  • Ransomware infrastructure
  • Botnet control panels
  • Data-leak or extortion sites

These providers often operate in jurisdictions with weak enforcement or frequently move their infrastructure to avoid detection.

The seizure enables investigators to probe the servers’ criminal activity and prevents the hosting service from being used for further cybercrime.

While Dutch authorities have not named the seized bulletproof hosting provider, sources told BleepingComputer that Dutch police took servers from a The Hague datacenter used by CrazyRDP, now offline. CrazyRDP offered anonymous VPS/RDP services with no-KYC and no logs, and was often recommended by threat actors as bulletproof hosting. The Telegram channel deleted all its posts and moved to a new one, where users said they’d lost many servers and feared an exit scam. Support first blamed datacenter issues but then stopped giving updates, leaving the situation unclear.

Pierluigi Paganini

(SecurityAffairs – hacking, bulletproof hosting)