Polish authorities have arrested four individuals suspected of operating a global network of DDoS-for-hire services, used to launch thousands of cyberattacks against organizations around the world. The coordinated operation, supported by law enforcement agencies from four countries and Europol, also saw the United States seize nine domains associated with the illicit platforms.
The suspects are believed to have administered six now-defunct websites — Cfxapi, Cfxsecurity, neostress, jetstress, quickdown, and zapcut — which operated as “stresser” or “booter” services. The platforms allowed paying customers to launch distributed denial-of-service (DDoS) attacks with a few clicks and minimal technical knowledge. For as little as EUR 10, users could flood targeted websites or servers with overwhelming traffic, effectively knocking them offline.
According to investigators, the services facilitated attacks on a wide range of targets, including schools, government agencies, businesses, and online gaming platforms, from 2022 to 2025. The attacks disrupted services, caused financial damage, and highlighted ongoing vulnerabilities in global digital infrastructure.
As part of the coordinated enforcement action, US authorities seized nine domains linked to DDoS services. Meanwhile, Dutch law enforcement deployed fake booter websites designed to attract would-be cybercriminals. The decoy sites issued warnings to users and collected data, some of which was shared with Poland and other partners, directly contributing to the recent arrests.
In other news, the US Department of the Treasury has imposed sanctions on Myanmar warlord Saw Chit Thu, leader of the Karen National Army (KNA), and his two sons for facilitating cyber scams targeting Americans. Operating from Shwe Kokko in Myanmar's Karen State, the KNA has supported cybercriminal networks by leasing land, providing security and infrastructure, and enabling human trafficking and smuggling. These scams have led to billions of dollars in losses for US citizens over the past three years.
