Dutch financial crime investigators arrested two men and confiscated 800 servers from a web hosting company accused of enabling cyberattacks, interference operations, and disinformation campaigns.
The Netherlands' Financial Crime Office (FIOD) executed the operation targeting the hosting firm, which allegedly provided infrastructure for malicious cyber activity. The seizure represents a significant disruption to operations that leveraged the servers for coordinated attacks and information warfare.
Authorities determined the company knowingly facilitated cyberattacks and allowed its platforms to be used for spreading disinformation. The scale of the operation—involving hundreds of servers—indicates the extent of infrastructure available for coordinated malicious activity.
The two arrests mark the criminal accountability phase of the investigation. Investigators have been examining how the hosting company operated and what safeguards, if any, were in place to prevent misuse of its services.
This seizure aligns with increased enforcement against enabling infrastructure used in cyber operations. Law enforcement agencies across Europe have prioritized identifying and shutting down hosting providers that deliberately ignore evidence their services support criminal activity.
The specific nature of the cyberattacks and disinformation campaigns has not been detailed publicly. However, such operations typically target government institutions, critical infrastructure, or public opinion through coordinated false information.
The action demonstrates coordination among Dutch authorities to combat cybercrime at the infrastructure level rather than addressing individual attack incidents. By removing the underlying hosting capability, investigators aim to degrade the operational capacity of threat actors relying on these servers.
Further investigation will determine whether additional charges apply and what jurisdictions may be affected by the hosting firm's activities. The case underscores the importance of hosting providers implementing strict abuse prevention policies and reporting mechanisms.
U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.
Tailscale disclosed a critical vulnerability in its SSH implementation that allowed attackers to gain root access through insecure argument handling. The flaw has been patched in recent versions.
A new study found that social media platforms referred over 5.7 million visits to nonconsensual deepfake pornography sites between December 2025 and March 2026, with YouTube and X accounting for the majority of traffic.