Skip to main content
Netherlands News in English

Main navigation

  • Top stories
  • Health
  • Crime
  • Politics
  • Business
  • Tech
  • Culture
  • Sports
  • Weird
  • 1-1-2
Image
Servers of Russian hosting provider ZServers that were taken down by Amsterdam police on February 12,2025.
Servers of Russian hosting provider ZServers that were taken down by Amsterdam police on February 12,2025. - Credit: Politie / Politie - License: All Rights Reserved
Crime
Russia
Amsterdam police
criminal network
Amsterdam-Oost
Overamstel
lockbit
malware
Ransomware
United States of America
Australia
United Kingdom
Thursday, 13 February 2025 - 17:24

Share this article:

Opens in a new window Opens in a new window Opens in a new window Opens in a new window Opens in a new window Opens in a new window

Amsterdam police raid office tied to alleged Russian cybercrime outfit ZServers & XHost

The Amsterdam police have dismantled a digital criminal network after an investigation that lasted over a year. A raid was carried out in Amsterdam-Oost on Wednesday. A total of 127 servers used by cybercriminals were taken down due to the operation.

The network in question is the Russian hosting provider ZServers/XHost. It was based in an office on the Paul van Vlissingenstraat in the Overamstel area. The United States, United Kingdom, and Australia jointly imposed sanctions on ZServers for supporting ransomware attacks by the notorious hacking group Lockbit on Tuesday.

ZServers/XHost is a so-called “bulletproof hoster.” This is a special hosting service that protects cyber criminals and helps them maintain invisibility on the internet. They can use this to spread viruses or commit cyber attacks.

The Russian company came to the attention of authorities because they were advertising that their clients could commit criminal acts via their servers. They also indicated in the advertisements that the owners of the servers would remain anonymous if the police asked questions. In addition, the payments for the services could be made anonymously via crypto coins.

An investigation proved that the servers contained software that was often used by cybercriminals, like ransomware, botnets, and malware. During the raid, a server was found with hacking tools like Lockbit and Conti. “They are known as the most prolific and damaging ransomware groups in the world,” police said.

The websites that may have been on the server are now unavailable. No arrests were made during the raid. There was a lot of data on the dismantled servers. The police are going to investigate this further with the Public Prosecution Service.

Two days earlier, British authorities raided Xhost Internet Solutions LP, which they alleged to be a UK front company for ZServers. The British Foreign Ministry wrote, “ZServers provide vital infrastructure for cybercriminals as they plan and execute attacks against the UK. The illicit supply chain protects, supports and conceals the operations of some of the world’s most ruthless ransomware gangs. Ransomware actors rely on these services to launch attacks, extort victims and store stolen data.”

In the statement, UK Foreign Secretary David Lammy said that Russian President Vladimir Putin “has built a corrupt mafia state driven by greed and ruthlessness. It is no surprise that the most unscrupulous extortionists and cyber-criminals run rampant from within his borders.”

Reporting by ANP

Image
Servers of Russian hosting provider ZServers that were taken down by Amsterdam police on February 12,2025.
Servers of Russian hosting provider ZServers that were taken down by Amsterdam police on February 12,2025. - Credit: Politie / Politie - License: All Rights Reserved
Image
Servers of Russian hosting provider ZServers that were taken down by Amsterdam police on February 12,2025.
Servers of Russian hosting provider ZServers that were taken down by Amsterdam police on February 12,2025. - Credit: Politie / Politie - License: All Rights Reserved

More like this

Image
A man using his laptop and mobile phone to perform cybercrime activities.
Two people arrested after takedown of Lockbit
Image
The White House, Washington, U.S.
The U.S. now provides nearly one-third of Dutch energy imports
Image
Dutch and Ukrainian flag.
Russian hackers trying to disrupt Western military aid to Ukraine, MIVD warns
Image
Hacker_-_Hacking_-_Symbol
Dutch police help take down ransomware gang Lockbit
Make NL Times your top Google source

Follow us:

Latest stories

  • The Hague marks 31 years since Srebrenica genocide under Dutch peacekeepers’ watch
  • Officials warn of domestic violence and child abuse surge across Noord-Brabant
  • Aid groups halt services at asylum center after incidents linked to small group of men
  • Package theft rises in Amsterdam, with Oost most affected
  • Authorities seize nearly 2,000 rabbits and 127 dogs from Zuid-Holland breeding facility

Top stories

  • Netherlands braces for incoming heat wave as temperatures to reach 34°C
  • Dutch workplaces not ready for rising heat, labor union warns
  • Dutch spy agencies: Russia hacked cameras to spy on military routes
  • Romanian boy who met Dutch girl on Roblox guilty of forcing her to cut herself, kill pet
  • Dutch live event venues struggling; Half ended 2025 in the red, 14% drop in clubbers

© 2012-2026, NL Times, All rights reserved.

Footer menu

  • Change Privacy Settings
  • Privacy Policy
  • Contact
  • Partner Content