Polish and US Authorities Shut Down Cybercrime Enterprise Responsible for Thousands of Attacks Worldwide
In a significant victory against cybercrime, Polish law enforcement has apprehended four individuals accused of operating a sophisticated network of DDoS-for-hire platforms that enabled widespread cyberattacks globally. In a coordinated effort, US authorities have seized nine domains associated with the criminal enterprise.
The operation targeted six stresser/booter services – Cfxapi, Cfxsecurity, neostress, jetstress, quickdown, and zapcut – which allowed customers to launch devastating distributed denial of service attacks against victims for fees starting as low as €10. These platforms were responsible for countless attacks against educational institutions, government agencies, businesses, and gaming services between 2022 and 2025.
Understanding the Threat
Stresser and booter services represent a concerning evolution in cybercrime – offering turnkey DDoS capabilities as a commercial service. While sometimes marketed under the guise of “network testing tools,” these platforms are predominantly used for malicious purposes.
Unlike traditional botnets requiring control of compromised devices, these services utilize purpose-built infrastructure specifically designed to generate overwhelming traffic volumes. By centralizing and commercializing attack capabilities, they dramatically lower barriers to launching disruptive cyberattacks.
The investigation remains ongoing as authorities work to identify customers who utilized these illicit services and assess the full scope of damages caused.
