Saturday, May 24, 2025
HomeCyber CrimeTwo European Men Sentenced for Providing 'Bulletproof Hosting' to Hackers

Two European Men Sentenced for Providing ‘Bulletproof Hosting’ to Hackers

Published on

SIEM as a Service

Follow Us on Google News

Two European men were sentenced recently by a US court for giving Bulletproof Hosting services to the hackers, and all these blackhat services were used by the cybercriminals. These two European men are Estonian and Lithuanian natives, Pavel Stassi from Estonia, and Alexander Skorodumov from Lithuania. 

By exploiting these blackhat services hackers distribute the malware to organize attacks mainly on the companies and financial institutions that are organized in the United States.

According to the report, Stassi and Skorodumov both were members of an organization that provided “bulletproof hosting” services founded and run by two Russian citizens, Alexander Grichishkin and Andrey Skvortsov. 

- Advertisement - Google News

Earlier, 30-year-old Pavel Stassi from Estonia and 33-year-old Alexander Skorodumov from Lithuania have already pleaded guilty. 

The hosting services they provided to hackers from 2009 to 2015 were in demand among the authors of malware targeting the financial institutions in the United States.

Here, the group leased the following things mentioned below:-

  • IP addresses
  • Servers
  • Domains 

All the above elements were used by the cybercriminals to spread malware like:-

  • Zeus
  • SpyEye
  • Citadel
  • Blackhole

In short, by using the above elements, malware, and malicious tools together they execute their attacks to hack the computers, generate botnets, and steal bank credentials.

Skorodumov, one of the leading admins of the hoster, set up and managed domains, IP addresses, and provided customers with support and advice on how they can optimize their malware and botnets.

While Stassi who mainly administered the marketing department has done several false advertisements and used stolen or fake information to register the hosting itself and even the organization’s financial accounts as well.

The defendants also helped their clients to avoid detection by law enforcement agencies by monitoring the blacklisting sites of technical infrastructure used to carry out cybercrime.

Apart from this, all these malware were used against American companies, and the attacks resulted in millions of dollars in losses. As a result, the former admins received 24 months (Stassi) and 48 months (Skorodumov) in prison.

Here, as a lead investigator, the FBI has played a key role and the FBI managed to do so with the help of law enforcement partners in the United Kingdom, Estonia, and Germany.

Looking for Best WAF Solutions for your web applications environment?? Register for Free WAF webinar & explore the experts thoughts and Choose the Best one.. Very limited seats available.. grab it here at .

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Zero-Trust Policy Bypass Enables Exploitation of Vulnerabilities and Manipulation of NHI Secrets

A new project has exposed a critical attack vector that exploits protocol vulnerabilities to...

Threat Actor Sells Burger King Backup System RCE Vulnerability for $4,000

A threat actor known as #LongNight has reportedly put up for sale remote code...

Chinese Nexus Hackers Exploit Ivanti Endpoint Manager Mobile Vulnerability

Ivanti disclosed two critical vulnerabilities, identified as CVE-2025-4427 and CVE-2025-4428, affecting Ivanti Endpoint Manager...

Hackers Target macOS Users with Fake Ledger Apps to Deploy Malware

Hackers are increasingly targeting macOS users with malicious clones of Ledger Live, the popular...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

LockBit Internal Data Leak Reveals Payload Creation Methods and Ransom Demands

The notorious ransomware group LockBit inadvertently suffered a major data breach, exposing the inner...

Volkswagen Car Hack Exposes Owner’s Personal Data and Service Records

Tech-savvy Volkswagen owner has uncovered critical security flaws in the My Volkswagen app that...

Health Care Data Breach Costs BreachForums Admin $700,000 Fine

Conor Brian Fitzpatrick, the 22-year-old former administrator of cybercrime forum Breachforums, will forfeit approximately...