The police in the Netherlands have seized around 250 physical servers that were powering a bulletproof hosting service used almost entirely by cybercriminals.
Although the name of the service was not shared, Dutch authorities said it had been active since 2022 and appeared in more than eighty cybercrime investigations across multiple countries.
Bulletproof hosting services are known for ignoring abuse reports, refusing to take down illegal content, and avoiding identity checks for customers. This attracts ransomware groups, malware developers, phishing operators, spam networks, and money laundering services that prefer to stay hidden by paying with hard-to-trace cryptocurrencies.
The hosting company at the center of the case advertised complete anonymity and openly claimed it would not cooperate with law enforcement. Investigators say the service supported ransomware operations, botnet activity, phishing campaigns, and even the distribution of child abuse material.
During a large operation last week, Dutch police seized hundreds of physical servers and thousands of virtual servers linked to the platform. According to the announcement, the physical systems were located in data centers in The Hague and Zoetermeer. Because the virtual servers were hosted on the same infrastructure, they were also taken offline when the hardware was confiscated.
Investigators will now examine the seized servers to learn more about the people running the service and their customers. So far, no arrests have been made.
The Netherlands has been playing a major role in recent international cybercrime operations. Just last week, the country supported Operation Endgame, which targeted several malware networks including Rhadamanthys, VenomRAT, and Elysium. Dutch authorities carried out raids in multiple data centers during that operation as well, seizing eighty three servers and twenty domain names. However, police say the two investigations are not connected.
While officials have not confirmed the name of the hosting provider, sources told BleepingComputer that servers linked to a service called CrazyRDP were seized from a data center in The Hague on November 12. CrazyRDP has gone offline since then.
CrazyRDP was known for offering VPS and RDP services without identity verification, personal information, or logging. Threat actors often recommended it as a reliable bulletproof hosting option. Several cybersecurity reports have also named it as a source of malicious activity.
BleepingComputer observed that the official CrazyRDP Telegram channel suddenly deleted all posts and pointed users to a new channel that mentioned the service had shut down. Users in that channel reported losing access to dozens of servers and some suspected that the shutdown might be an exit scam. Others said support promised the issue would be fixed, then went silent hours later.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
While it is still unconfirmed whether CrazyRDP is the exact hosting service targeted by Dutch police, the timing aligns closely. What is clear is that the platform has been offline since the day of the server seizures.
