The servers showed signs of related malware, including botnets.
The ‘bulletproof’ hosting service Zservers had 127 of its servers sequestered by the Dutch police just days after the service was sanctioned by the U.S., UK, and Australian authorities.
Earlier this week, the Russia-based services provider was called out by several governments for its role in supporting LockBit ransomware attacks. The U.S., UK, and Australian authorities claimed that Zservers sold a ‘bullet proof hosting’ services on known cybercriminal forums to evade law enforcement investigations and takedowns.
According to The Record, Dutch police seized 127 servers this week, and also said that in addition to ransomware, the servers showed signs of related malware, including botnets.
"The company stood out because it advertised the possibility for customers to allow criminal acts from its servers,” said the police. “It was also stated that the owners of these servers would remain anonymous when law enforcement agencies would make inquiries with them, and payments for the services purchased could also be made anonymously via crypto currency.“
The police also said an additional probe of the servers will be conducted by the Cybercrime Team Amsterdam.
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
