Dutch law enforcement has taken offline the criminal hosting service known as CrazyRDP, seizing thousands of servers allegedly used to facilitate ransomware attacks, botnets, phishing schemes, and the distribution of child sexual abuse material (CSAM).
According to investigators, CrazyRDP had appeared in at least 80 cybercrime cases since 2022 and was still active at the time of the operation. Police described the service as a so-called “bulletproof hosting” provider (BPH), a service that intentionally allows its clients to host and distribute malicious or illegal content. The term “bulletproof” means that these providers are strongly resisting takedown requests and law enforcement actions, creating a safe haven for cybercriminals.
Officers seized nearly 250 physical servers from data centers in The Hague and Zoetermeer. No arrests have been made so far.
Last week, Europol reported the takedown of a major cybercrime network distributing malware such as Rhadamanthys, VenomRAT, and the Elysium botnet. The operation led to one arrest in Greece and 11 searches across Europe, resulting in the takedown of over 1,025 servers and the seizure of 20 domains globally.
