Threat Intelligence Dutch authorities arrest two in connection with sanctioned web hosting company May 22, 2026 Share By SC Staff (Adobe Stock) Financial crime investigators in the Netherlands arrested two men and seized 800 servers linked to a web hosting company that allegedly facilitated cyberattacks, interference operations, and disinformation campaigns. The investigation centers on Stark Industries, a web hosting firm founded shortly before Russia's invasion of Ukraine, according to a recent report by Bleeping Computer. The Dutch financial crime investigators (FIOD) arrested a 57-year-old company director and a 39-year-old who headed a separate firm providing internet connectivity. Authorities stated that the suspects indirectly provided economic resources to Russian and Belarusian entities sanctioned by the European Union. Stark Industries was added to the EU's sanctions list last year, after which its infrastructure was allegedly transferred to a new Dutch company, WorkTitans B.V. (operating as THE.Hosting), believed to be a front for the sanctioned entities. The FIOD raids in data centers and other locations resulted in the seizure of 800 servers, laptops, phones, and administrative records. WorkTitans has been linked by Danish authorities to attacks by the pro-Russian hacktivist group NoName057(16), known for distributed denial-of-service (DDoS) attacks. Mirhosting, which provided connectivity, denied knowingly supporting illegal operations. Source: Bleeping Computer SC Staff Related Threat Intelligence Middle East malicious infrastructure report highlights concentration of C2 servers SC Staff May 22, 2026 The Hunt.io report identified over 1,350 C2 servers across 98 providers in 14 Middle Eastern countries. Saudi Telecom Company (STC) alone accounted for more than 72% of this regional activity, often through compromised customer systems. Threat Intelligence Former executives plead guilty in global tech support fraud scheme SC Staff May 22, 2026 Former CEO Adam Young and former CSO Harrison Gevirtz admitted to a misprision of a felony charge. They operated C.A. Cloud Attribution, Ltd. between early 2017 and April 2022, providing services to customers known to be engaged in telemarketing and tech support fraud scams. Threat Intelligence ‘First VPN’ service used by cybercriminals dismantled in international operation SC Staff May 21, 2026 First VPN marketed itself on Russian-speaking cybercrime forums as a reliable tool for anonymity, offering features like anonymous payments and concealed infrastructure to help users evade law enforcement. Related Events Cybercast Better Threat Intelligence Between Public and Private Sectors On-Demand Event Virtual Conference Nationwide Cybersecurity Summit 2025: Safeguarding America’s Digital Future On-Demand Event Virtual Conference Securing the Future of Finance: Strategies to Counter Modern Cyber Threats On-Demand Event Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms Account Harvesting Backdoor DNS Spoofing Deauthentication Attack Defacement Denial of Service Distributed Scans Domain Hijacking Hybrid Attack Password Cracking You can skip this ad in 5 seconds