Russian Cyber Crime Network Disrupted

Uploaded on 2025-07-21 in NEWS-Cybersecurity News, INTELLIGENCE-Hot Spots-Russia, FREE TO VIEW

An international law-enforcement  operation spanning North America and Europe has taken down a pro-Russian cybercrime group linked to thousands of attacks on Ukraine and its allies.

This major operation has dealt a significant blow to NoName057(16), a pro-Russian cyber group responsible for thousands of distributed denial-of-service (DDoS) attacks across Europe. 

A joint international operation, called Eastwood, which is co-ordinated by Europol and Eurojust, hit NoName057(16) between 14th and 17th July .

Co-ordinated raids took place in 24 locations across a several European countries. Two suspects were arrested, one in France and another in Spain, while seven arrest warrants were issued, including six targeting individuals believed to be operating from Russia. Key components of the group’s command infrastructure were disabled and notifications were sent to over 1,000 group supporters, including 15 administrators, warning them of their potential legal liability.

Germany issued six warrants for the arrest of offenders living in the Russian Federation. Two of these persons are accused of being the main instigators responsible for the activities of "NoName057(16)". In total, national authorities have issued seven arrest warrants, which are directed, inter alia, against six Russian nationals for their involvement in the NoName057(16) criminal activities.

Authorities also searched homes in Czechia, Germany, Italy, Spain, Poland, and France, and questioned 13 individuals as part of the investigation.

Law enforcement and judicial authorities across Europe  and the United States took simultaneous actions against offenders and infrastructure belonging to the pro-Russian cyber crime network. The investigation was supported by ENISA, as well as Belgium, Canada, Estonia, Denmark, Latvia, Romania and Ukraine. The private organistion ShadowServer  assisted in the technical part of the operation. The Joint Cybercrime Action Taskforce (J-CAT) at Europol also supported the operation. 

The actions led to the disruption of an offensive infrastructure consisting of over one hundred computer systems worldwide, while a major part of the group's central server infrastructure was taken offline. 

NoName057(16) has been active since the onset of Russia’s war in Ukraine, launching politically motivated cyberattacks on government and financial websites across NATO-aligned states. Germany alone reported 14 waves of attacks affecting over 250 organisations. Sweden, Switzerland, and the Netherlands were also among the group’s recent targets.

Investigators say the group was structured more like an online hacktivist movement than a traditional cyber crime ring. Recruits were often sourced from gaming and hacking forums, where calls to action and attack tutorials were openly shared. 

Many participants were incentivised with crypto-currency payments and motivated through gamified elements like leaderboards and digital badges, tools that particularly appealed to younger users.

Europol  |   I-HLS  |  AlJazeera  |  ABC  |   France24 

Image: Ideogram

You Might Also Read: 

DDoS Attacks Against Japan:

If you like this website and use the comprehensive 8,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 


 

« The Problem With Quantum

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Secure Identity Alliance (SIA)

Secure Identity Alliance (SIA)

The Secure Identity Alliance is dedicated to supporting sustainable worldwide economic growth and prosperity through the development of trusted digital identities and the adoption of secure eServices.

Seclab

Seclab

Seclab is an innovative player in the protection of industrial systems and critical infrastructure against sophisticated cyber attacks.

Intertek Group

Intertek Group

Intertek Group provides Assurance, Testing, Inspection and Certification services. Activities include cybersecurity testing and certification.

Crossword Cybersecurity

Crossword Cybersecurity

We work with research intensive European university partners to identify promising cyber security intellectual property from research that meets emerging real-world challenges.

Hitachi Systems Security

Hitachi Systems Security

Hitachi Systems Security provides customized services for monitoring and protecting the most critical and sensitive IT assets in our clients’ infrastructures 24/7.

Thinkst Applied Research

Thinkst Applied Research

Thinkst is an Applied Research company with a deep focus on information security.

ATIS Systems

ATIS Systems

ATIS Systems offers first-class complete solutions for legal interception, mediation, data retention, and IT forensics.

Anglo African

Anglo African

Anglo African is an information technology firm providing end-to-end solutions to different industries, from IT Infrastructure to DataCom as well as Cloud & InfoSec services.

National Cyber Security Center (NCSC) - Hungary

National Cyber Security Center (NCSC) - Hungary

The National Cyber Security Center was established in 2015 by uniting the GovCERT-Hungary, National Electronic Information Security Authority (NEISA) and the Cyber Defence Management Authority (CDMA).

Aligned Technology Solutions (ATS)

Aligned Technology Solutions (ATS)

ATS manage, monitor, and maintain everything from your network and servers to your workstations and mobile devices, and we do it proactively to eliminate downtime and keep hackers at bay.

ChaosSearch

ChaosSearch

ChaosSearch is a massively scalable ELK-compatible log analysis platform delivered as a fully managed service with high-performance and low cost.

Hackurity.io

Hackurity.io

Hackurity.io is a high energy IT security start-up founded in 2021 out of the frustration that IT Security is highly fragmented and reactive.

Beyon Cyber

Beyon Cyber

Beyon Cyber offer a complete portfolio of advanced solutions & services for cyber security in Bahrain.

Vultara

Vultara

Vultara provides web-based product security risk management tools for electronics manufacturers.

DNSFilter

DNSFilter

DNSFilter is the most accurate threat detection and content filtering tool on the market today.

Sonar

Sonar

AI generated or written by humans, Sonar’s Clean Code Solutions cover your code quality needs, improving code reliability, maintainability, and security.