European Police Dismantle CrazyRDP, the Largest “Fully Anonymous Hosting” Provider
Law enforcement agencies from the Netherlands, Germany, and Greece have carried out a major international operation targeting CrazyRDP, a hosting provider long known for offering “fully anonymous” infrastructure to clients around the world. The coordinated raids took place between November 10 and 13, 2025, resulting in the seizure of 250 physical servers and the shutdown of more than 1,025 virtual machines.A Hosting Provider Built on Extreme Anonymity
CrazyRDP operated since 2022 and marketed itself as an uncompromising privacy-first hosting service. The platform required only a username and password to create an account, accepted payments exclusively in Bitcoin and Monero, and refused to log user activity. According to investigators, the company ignored takedown requests and external complaints, effectively functioning as a safe haven for illicit operations.Infrastructure Linked to Global Cybercrime Cases
Authorities revealed that CrazyRDP appeared in more than eighty investigations across multiple jurisdictions. Its infrastructure was frequently used to facilitate cyberattacks, illegal marketplaces, and distribution of prohibited content. The seizure disabled more than twenty criminal domains and disconnected hundreds of active malicious servers.Three Major Malware Operations Powered by CrazyRDP
Among the largest threats linked to the hosting provider were three high-impact cybercrime operations:• The Rhadamanthys infostealer, which infected over 525,000 devices in 226 countries and collected more than 86.2 million credentials.
• The VenomRAT remote-access tool, sold via subscription for 150 dollars per month, enabling attackers to gain control of compromised systems.
• The Elysium botnet, used for coordinated DDoS attacks and managing large networks of zombie devices.
Servers Seized, Channels Wiped
Following the coordinated raids, CrazyRDP’s official Telegram channel deleted all posts, and the company’s remaining online presence disappeared. Investigators expect further arrests as they analyze the seized infrastructure, which reportedly contains extensive evidence of criminal activity facilitated by the service.A Significant Blow to Anonymous Hosting Ecosystems
The takedown represents one of the largest strikes against privacy-focused hosting networks that operate outside of regulatory boundaries. As cybercrime operations increasingly rely on anonymous infrastructure, the dismantling of CrazyRDP marks a major step in disrupting the ecosystem supporting malware, botnets, and underground platforms.Editorial Team — CoinBotLab