Russian Cyber Crime Network Disrupted

Uploaded on 2025-07-21 in NEWS-Cybersecurity News, INTELLIGENCE-Hot Spots-Russia, FREE TO VIEW

An international law-enforcement  operation spanning North America and Europe has taken down a pro-Russian cybercrime group linked to thousands of attacks on Ukraine and its allies.

This major operation has dealt a significant blow to NoName057(16), a pro-Russian cyber group responsible for thousands of distributed denial-of-service (DDoS) attacks across Europe. 

A joint international operation, called Eastwood, which is co-ordinated by Europol and Eurojust, hit NoName057(16) between 14th and 17th July .

Co-ordinated raids took place in 24 locations across a several European countries. Two suspects were arrested, one in France and another in Spain, while seven arrest warrants were issued, including six targeting individuals believed to be operating from Russia. Key components of the group’s command infrastructure were disabled and notifications were sent to over 1,000 group supporters, including 15 administrators, warning them of their potential legal liability.

Germany issued six warrants for the arrest of offenders living in the Russian Federation. Two of these persons are accused of being the main instigators responsible for the activities of "NoName057(16)". In total, national authorities have issued seven arrest warrants, which are directed, inter alia, against six Russian nationals for their involvement in the NoName057(16) criminal activities.

Authorities also searched homes in Czechia, Germany, Italy, Spain, Poland, and France, and questioned 13 individuals as part of the investigation.

Law enforcement and judicial authorities across Europe  and the United States took simultaneous actions against offenders and infrastructure belonging to the pro-Russian cyber crime network. The investigation was supported by ENISA, as well as Belgium, Canada, Estonia, Denmark, Latvia, Romania and Ukraine. The private organistion ShadowServer  assisted in the technical part of the operation. The Joint Cybercrime Action Taskforce (J-CAT) at Europol also supported the operation. 

The actions led to the disruption of an offensive infrastructure consisting of over one hundred computer systems worldwide, while a major part of the group's central server infrastructure was taken offline. 

NoName057(16) has been active since the onset of Russia’s war in Ukraine, launching politically motivated cyberattacks on government and financial websites across NATO-aligned states. Germany alone reported 14 waves of attacks affecting over 250 organisations. Sweden, Switzerland, and the Netherlands were also among the group’s recent targets.

Investigators say the group was structured more like an online hacktivist movement than a traditional cyber crime ring. Recruits were often sourced from gaming and hacking forums, where calls to action and attack tutorials were openly shared. 

Many participants were incentivised with crypto-currency payments and motivated through gamified elements like leaderboards and digital badges, tools that particularly appealed to younger users.

Europol  |   I-HLS  |  AlJazeera  |  ABC  |   France24 

Image: Ideogram

You Might Also Read: 

DDoS Attacks Against Japan:

If you like this website and use the comprehensive 8,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 


 

« The Problem With Quantum
Crypto’s ‘Trust’ Problem »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Foresite

Foresite

Foresite is a global service provider, delivering a range of managed security and consulting solutions.

Remediant

Remediant

Remediant is the leader in Precision Privileged Access Management. We protect organizations from ransomware and data theft via stolen credentials and lateral movement.

Cyber Seguridad (Cyberseg)

Cyber Seguridad (Cyberseg)

Cyberseg provides specialized Cybersecurity services, including managed services (SOC / CERTs) and solutions for the protection of critical infrastructures.

HelseCERT

HelseCERT

HelseCERT is the health and care sector's national information security center for Norway.

Leadcomm

Leadcomm

Leadcomm is a Brazilian company focused on the distribution and integration of IT systems and security solutions for large companies.

Incopro

Incopro

Incopro is an online IP and brand protection software provider that arms brand owners with actionable intelligence to combat online and offline intellectual property and copyright infringements.

Shorebreak Security

Shorebreak Security

Shorebreak Securioty specialize in conducting highly accurate, safe, and reliable Information Security tests to determine the risks posed to your business.

Cyber Defense Technologies (CDT)

Cyber Defense Technologies (CDT)

Cyber Defense Technologies provides services and turn-key solutions to secure and maintain the integrity of your organization’s systems and data against attacks.

Eunetic

Eunetic

Eunetic IT security solutions - we secure your websites, emails, domains and data.

Lodestone

Lodestone

Lodestone partners with clients to help them mitigate business and reputational risk, through our human-based, approach to cyber security, digital forensics and incident response.

Commission Nationale de l'Informatique et des Libertés (CNIL) - France

Commission Nationale de l'Informatique et des Libertés (CNIL) - France

The mission of CNIL is to protect personal data, support innovation, and preserve individual liberties.

Mercury Systems

Mercury Systems

Mercury Systems is the leader in making trusted, secure mission-critical technologies profoundly more accessible to aerospace and defense.

Coastline Cybersecurity

Coastline Cybersecurity

Coastline Cyber is a cybersecurity consulting firm dedicated to helping organizations strengthen their security posture by reducing risks, mitigating threats, and protecting against attacks.

Cyberhill Partners

Cyberhill Partners

Cyberhill is a professional engineering services firm solving complex software implementation and integration challenges.

ManagedMethods

ManagedMethods

ManagedMethods is a leading Google Workspace and Microsoft 365 data security and student safety platform for K-12 schools.

Whisper

Whisper

Whisper was built to shift cybersecurity from reactive to predictive. Our mission is to stop cybercrime by helping organizations anticipate threats before damage occurs.