The servers showed signs of related malware, including botnets.
The ‘bulletproof’ hosting service Zservers had 127 of its servers sequestered by the Dutch police just days after the service was sanctioned by the U.S., UK, and Australian authorities.
Earlier this week, the Russia-based services provider was called out by several governments for its role in supporting LockBit ransomware attacks. The U.S., UK, and Australian authorities claimed that Zservers sold a ‘bullet proof hosting’ services on known cybercriminal forums to evade law enforcement investigations and takedowns.
According to The Record, Dutch police seized 127 servers this week, and also said that in addition to ransomware, the servers showed signs of related malware, including botnets.
"The company stood out because it advertised the possibility for customers to allow criminal acts from its servers,” said the police. “It was also stated that the owners of these servers would remain anonymous when law enforcement agencies would make inquiries with them, and payments for the services purchased could also be made anonymously via crypto currency.“
The police also said an additional probe of the servers will be conducted by the Cybercrime Team Amsterdam.
Written by
Dan Raywood
Senior Editor
SC Media UK
Dan Raywood is a B2B journalist with more than 20 years of experience, including covering cybersecurity for the past 16 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Conference, BSides Scotland, Steelcon and ESET Security Days.
Outside work, Dan enjoys supporting Tottenham Hotspur, managing mischievous cats, and sampling craft beers.
