πŸ“£ NEW FROM CISA: 'Mitigating Risks From Bulletproof Hosting Providers' In CISA’s latest publication they give networks practical steps to mitigate and protect themselves from the activities coming from bulletproof hosts. Publication:
Cybersecurity and Infrastructure Security Agency CISA
Bulletproof Defense: Mitigating Risks From Bulletproof Hosting Providers | CISA
CISA and its partners urge ISPs and network defenders to implement these recommendations to mitigate risks posed by BPH providers.
 We love the shoutout to Spamhaus' DROP list. Access is free for a reason: to protect everyone from the worst of the worst… and from networks that have fallen asleep at the wheel while their resources get hijacked for malicious purposes. image
πŸ“£ In case you missed it: resharing a recent blog post on the rise of malicious activity and abuse reports linked to Traffic Distribution Systems (TDS) β€” infrastructure increasingly exploited for phishing and other malicious campaigns. 🎣 You'll learn: - How TDS are being abused - Why they’re so hard to take down - What we can do together to fight back πŸ“– Read the full blog here πŸ‘‰
Blog | TDS Abuse - What’s hiding behind the veil? | Spamhaus Project
 image
On November 12, around 250 physical servers were seized by the Dutch police at two datacenters in the Netherlands πŸ‘‰
Duizenden servers in beslaggenomen in omvangrijk cybercrime onderzoek
In een onderzoek naar een malafide hostingbedrijf zijn door het team cybercrime Oost-Nederland duizenden servers in beslaggenomen. Het hostingbedri...
 We assess the unnamed #bulletproofhosting provider (BPH) is CrazyRDP, a major #cybercrime hub previously operating front companies such as πŸ‡ΊπŸ‡Έ Delis LLC (AS211252), πŸ‡ΊπŸ‡Έ Limenet LLC (AS394711) and, most recently, πŸ‡ΊπŸ‡Έ Sovy Cloud Services (AS401110) and its downstreams (all incorporated in πŸ‡ΊπŸ‡Έ as well): ... ‡️ 1/2
Operation Endgame 3.0 is here! This phase targets the notorious information and credential stealer #Rhadamanthys. It's another major international effort that’s seen 1,025 servers taken down and 20 domains seized. πŸ’ͺ πŸ‘ Excellent work by @npub1fg22...yfva and all partners involved β€” the takedown of Rhadamanthys marks a significant win for the global cybersecurity community. As with earlier phases of #OperationEndgame, Spamhaus is providing remediation support. Those affected will be contacted in due course with guidance on next steps. Operation Endgame website πŸ‘‰
Operation Endgame
Operation endgame
 Europol press release ‡️
Europol
End of the game for cybercrime infrastructure: 1025 servers taken down – Operation Endgame’s latest phase targeted the infostealer Rhadamanthys, Remote Access Trojan VenomRAT, and the botnet Elysium | Europol
Between 10 and 14 November 2025, the latest phase of Operation Endgame was coordinated from Europol’s headquarters in The Hague. The actions ...