The UK\u2019s Nationwide Crime Company (NCA), working with worldwide legislation enforcement businesses, has uncovered and sanctioned Alexander Volosovik, additionally recognized on-line as \u201cYalishanda,\u201d Downlow\u201d, and \u201cStas_vl\u201d for operating a long-standing bulletproof internet hosting operation that has supported main cybercrime and ransomware teams like LockBit<\/a>, Evil Corp<\/a> and BlackBasta<\/a>.<\/p>\n

Volosovik operated below the names Media Land LLC and ML.Cloud LLC, each primarily based in Russia. In accordance with the NCA, his infrastructure gave ransomware gangs and malware operators the instruments to hold out cyber assaults that precipitated severe injury to organisations all over the world, from monetary losses to disrupted operations.<\/p>\n

Volosovik\u2019s Internet hosting Helped 8chan Return After Takedown<\/strong><\/h3>\nIn accordance with cybersecurity journalist Brian Krebs\u2019 report<\/a> from 2019, Volosovik is the world\u2019s largest \u201cbulletproof\u201d internet hosting operator. His infrastructure has been used to help a variety of unlawful on-line exercise, from phishing websites to stolen information markets. <\/p>\n
One notable case was the return of 8chan, later rebranded as 8kun, which got here again on-line utilizing IP area offered by Volosovik\u2019s firm, Media Land LLC. Regardless of dealing with widespread deplatforming, 8chan was in a position to resume operations by way of this internet hosting setup, which was designed to withstand takedown efforts and obscure the identities of its purchasers.<\/p>\n
\n
$\"UK$ <\/a>
Alexander Volosovik AKA Yalishanda (Picture supply: NCA UK)<\/figcaption><\/figure>\n<\/div>\n
Bulletproof internet hosting<\/a> suppliers play a behind-the-scenes function within the cybercrime financial system. They provide internet hosting that ignores abuse complaints, hides consumer identities, and actively resists takedowns by legislation enforcement. This makes them a useful service for cybercriminals who need to function with much less danger of being stopped.<\/p>\n
Sanctions from the UK and 5 Eyes<\/strong><\/h3>\nThe UK\u2019s Overseas, Commonwealth and Improvement Workplace (FCDO) introduced<\/a> sanctions in opposition to Volosovik and three of his associates. This transfer was coordinated with related actions from the US Treasury\u2019s OFAC and Australia\u2019s Division of Overseas Affairs and Commerce.<\/p>\n
The NCA mentioned the motion is a part of a broader technique to focus on help companies that make cybercrime simpler and extra scalable. Whereas ransomware operators usually get the headlines<\/a>, operations like Volosovik\u2019s are what maintain these assaults operating behind the scenes.<\/p>\n
To help the sanctions, the NCA and its 5 Eyes companions<\/a> (Australia, Canada, New Zealand, the US and the UK) have issued alerts to trade warning concerning the dangers tied to bulletproof internet hosting companies like Media Land and AEZA<\/a>, one other Russia-based bulletproof hosting service.<\/p>\n
Ransomware continues to be one of many most damaging<\/a> types of cybercrime. Victims within the UK and globally have included sectors like telecoms, finance and demanding infrastructure. Internet hosting companies that give secure infrastructure to ransomware teams make it tougher for authorities to cease assaults earlier than they unfold.<\/p>\n
Paul Foster, Deputy Director of the NCA\u2019s Nationwide Cyber Crime Unit, mentioned companies like Media Land enable cybercriminals to launch and monetise assaults with confidence. He added that immediately\u2019s coordinated motion is designed to weaken that digital protect.<\/p>\n
Dutch Police Seize 250 Servers in Bulletproof Internet hosting Crackdown<\/strong><\/h3>\n
Whereas the NCA says it is going to proceed working with worldwide allies to disrupt these operations and cease sanctioned companies from abusing infrastructure throughout the UK, in a separate operation within the Netherlands, authorities seized round 250 bodily servers utilized by an unknown bulletproof internet hosting supplier that had been energetic since 2022 and linked to greater than 80 cybercrime investigations<\/p>\n
In accordance with the Dutch Police\u2019s press launch<\/a>, the service supplied nameless VPS and RDP entry with out identification verification or logs, which made it a go\u2011to platform for ransomware actors, phishing networks and malware operations.<\/p>\n
Investigators now have entry to the {hardware} and hundreds of digital servers taken offline, giving them a uncommon window into how again\u2011finish infrastructure helps giant\u2011scale cybercrime.<\/p>\n
\n\t\t\t<\/div>\n
<\/script>
\n
<\/p>\n","protected":false},"excerpt":{"rendered":"
The UK\u2019s Nationwide Crime Company (NCA), working with worldwide legislation enforcement businesses, has uncovered and sanctioned Alexander Volosovik, additionally recognized on-line as \u201cYalishanda,\u201d Downlow\u201d, and \u201cStas_vl\u201d for operating a long-standing bulletproof internet hosting operation that has supported main cybercrime and ransomware teams like LockBit, Evil Corp and BlackBasta. Volosovik operated below the names Media Land […]<\/p>\n","protected":false},"author":2,"featured_media":8914,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[58],"tags":[5449,5306,4613,662,361,157,883,1055,6013,1047,3556,4612,121,2364,1173],"class_list":["post-8912","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-breaches","tag-bulletproof","tag-corp","tag-crypto","tag-cybersecurity","tag-data","tag-evil","tag-exposes","tag-hackread","tag-hosting","tag-linked","tag-lockbit","tag-news","tag-operator","tag-tech"],"_links":{"self":[{"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/posts\/8912","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=8912"}],"version-history":[{"count":1,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/posts\/8912\/revisions"}],"predecessor-version":[{"id":8913,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/posts\/8912\/revisions\/8913"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/media\/8914"}],"wp:attachment":[{"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=8912"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=8912"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=8912"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}