Five people have been detained and servers have been seized after police shut down the Lolek bulletproof hosting firm for allegedly supporting Netwalker ransomware attacks and other illegal operations, according to BleepingComputer.
In a statement, Europol said that the Central Cybercrime Bureau of Poland under the direction of the Regional Prosecutor's Office in Katowice took legal action this week against LolekHosted.net, a secure hosting platform used by criminals to launch worldwide cyberattacks.
A statement from the U.S. Department of Justice, however, provides more information about the police investigation and states that a Polish national named Artur Karol Grabowski was arrested yesterday for running LolekHosted.
"LolekHosted clients used its services to execute approximately 50 NetWalker ransomware attacks on victims located all over the world, including in the Middle District of Florida," the DOJ said in a statement.
Aside from featuring over 40 million signals from the DNS Research Federation's data platform and the Global Anti-Scam Alliance's comprehensive stakeholder network, the Global Signal Exchange will also contain more than 100,000 bad merchant URLs and one million scam signals from Google.
While some threat actors established fraudulent disaster relief websites as part of phishing attacks aimed at exfiltrating financial details and Social Security numbers from individuals seeking aid, others impersonated Federal Emergency Management Agency assistance providers to create fake claims that enabled relief fund and personal data theft.
Malicious GitHub pages and YouTube videos containing links for purported cracked office software, automated trading bots, and game cheats, have been leveraged to facilitate the download of self-extracting password-protected archives.