Ddos 
Microsoft has joined forces with international law enforcement to take down RedVDS, a shadowy subscription service that has fueled millions of dollars in cyber-fraud by selling “disposable” virtual computers to criminals.
The operation, announced recently, marks the first time Microsoft’s Digital Crimes Unit has executed a legal action in the United Kingdom, working alongside German authorities, Europol, and US law enforcement to seize the infrastructure that powered the service.
RedVDS wasn’t a hacking group, but a utility provider for the underworld. The service offered criminals a cheap, high-speed way to launch attacks without leaving a trace. “For as little as US $24 a month, RedVDS provides criminals with access to disposable virtual computers that make fraud cheap, scalable, and difficult to trace”.
These virtual machines allowed scammers to rapidly spin up fresh digital identities, conduct fraudulent transactions, and then vanish before investigators could track the IP address. This model of “crime-as-a-service” has become a critical engine for modern cyber-fraud.
“Services like these have quietly become a driving force behind today’s surge in cyber-enabled crime, powering attacks that harm individuals, businesses, and communities worldwide”.
The impact of RedVDS was devastatingly real. Since March 2025 alone, the service has facilitated roughly US $40 million in reported fraud losses in the United States.
The report highlights heart-wrenching cases where essential funds were stolen:
- H2-Pharma, an Alabama-based company, lost more than $7.3 million—money intended for “lifesaving cancer treatments, mental health medications, and children’s allergy drugs for patients across the country”.
- Gatehouse Dock Condominium Association in Florida was drained of nearly $500,000, funds that were “contributed by residents and property owners” for their community.
The disruption of RedVDS is a significant victory in the fight against AI-enabled fraud and real estate scams. By seizing the malicious infrastructure, the operation has effectively taken the marketplace offline.
This mission represents a milestone for Microsoft’s Digital Crimes Unit. “It marks the 35th civil action targeting cybercrime infrastructure by Microsoft’s Digital Crimes Unit, underscoring a sustained strategy to go beyond individual takedowns and dismantle the services that criminals rely on to operate and scale”.
Microsoft emphasizes that this is an ongoing battle. The company pledges to continue working across borders to “identify and disrupt the infrastructure behind cyber-enabled fraud, making it harder for criminals to profit and easier for people and organizations to stay safe online”.
Related Posts:
- Lumma Stealer Resurfaces After Takedown: New Stealth Tactics Target Users via Fake Cracks, CAPTCHAs & GitHub
- Europol & Microsoft Lead Global Takedown of Lumma Stealer, World’s Largest Infostealer
- Interpol & Asian Agencies Dismantle Major Malware Infrastructure: 20,000 Malicious IPs Blocked
- Operation Endgame: Global Takedown Disrupts Major Ransomware Malware Infrastructure
- Ransomware: The Latest High-Tech Crime Wave and the Industries It Affects
Donate