Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

XSS Forum Admin Arrested in Kyiv

July 24, 2025
Reading Time: 3 mins read
in News
Interlock Ransomware Threat Alert

In a significant victory against organized cybercrime, Europol, in conjunction with French and Ukrainian law enforcement, announced the arrest of the alleged administrator of XSS.is (formerly DaMaGeLaB) on Monday, July 22, 2025. This high-profile operation, initiated by the French Police in July 2021, culminated in a targeted arrest in Kyiv, Ukraine, and the subsequent seizure of the notorious cybercrime platform’s clearnet domain. The domain now displays a seizure notice, a clear message from authorities that the illicit activities once thriving there have been brought to an abrupt halt.

XSS.is, with over 50,000 registered users, had established itself as a central marketplace for a vast array of illegal cyber activities, including the trade of stolen data, hacking tools, and various illicit services. Europol highlighted its critical role as a coordination, advertising, and recruitment hub for some of the most active and dangerous cybercriminal networks. Beyond technical operation, the forum’s administrator is believed to have facilitated criminal undertakings by acting as a trusted third-party arbitrator for disputes and guaranteeing the security of transactions, demonstrating a deep integration into the cybercrime ecosystem.

The unnamed individual arrested is also suspected of operating secure.biz, a private messaging platform specifically designed for cybercriminals.

Through these combined illicit ventures, the suspect is estimated to have amassed profits exceeding €7 million ($8.24 million) from advertising and facilitation fees. This financial gain underscores the lucrative nature of these underground platforms and the significant resources involved in their operation. Investigators further believe that the suspect has been a prominent figure in the cybercrime landscape for nearly two decades, maintaining close ties with several major threat actors.

Active since 2013, XSS.is has long been recognized by the Paris Prosecutor as a primary conduit for global cybercrime, encompassing everything from access to compromised systems to ransomware-related services. It even provided an encrypted Jabber messaging server to enable anonymous communication among criminals. Alongside “Exploit,” XSS.is has been a foundational element of the Russian-speaking cybercriminal world, with its users predominantly targeting non-Russian-speaking nations. The platform’s sophisticated infrastructure included a built-in reputation system and an escrow service, facilitating secure and scam-free transactions for its nearly 49,000 registered users across more than 110,000 active threads.

This successful takedown comes on the heels of another Europol-led operation just last week, which disrupted the online infrastructure of the pro-Russian hacktivist group NoName057(16).

That action led to two arrests related to distributed denial-of-service (DDoS) attacks against Ukraine and its allies. Recorded Future’s analysis of NoName057(16) revealed a resilient, multi-tiered architecture that targeted nearly 3,800 unique hosts between July 2024 and July 2025, with a significant focus on Ukrainian organizations, followed by European nations supporting Ukraine. These recent law enforcement successes underscore a growing international effort to dismantle the sophisticated networks that underpin the global cybercrime landscape.

Reference:

  • Europol‑backed Operation Dismantles XSS.is Forum Admin Arrested in Kyiv
Tags: Cyber NewsCyber News 2025Cyber threatsJuly 2025
ADVERTISEMENT

Related Posts

SAP S4hana Exploited Vulnerability

US Allies Push For Sboms In Security

September 5, 2025
SAP S4hana Exploited Vulnerability

Reward For Russian FSB Hackers

September 5, 2025
SAP S4hana Exploited Vulnerability

US Sues Robot Toy Maker Over Data

September 5, 2025
Google Fined For Cookie Violations

Google Fined For Cookie Violations

September 4, 2025
Google Fined For Cookie Violations

Youtube Cracks Down On Password Sharing

September 4, 2025
Google Fined For Cookie Violations

Moscow Hires Hackers Behind School Breach

September 4, 2025

Latest Alerts

SAP S4hana Exploited Vulnerability

Virustotal Finds Undetected SVG Files

Russian APT28 Deploys Outlook Backdoor

CISA Flags TP Link Router Flaws

Lazarus Hackers Exploit ZeroDay, Deploy Rats

Google Patches 120 Flaws In Android

Subscribe to our newsletter

    Latest Incidents

    North Korean Hackers Fake Interviews

    Bridgestone Confirms Cyberattack

    Cybersecurity Firms Hit By Breach

    Salesloft Drift Attacks Hits Vendors

    Jaguar Land Rover Hit By Cyber Incident

    Hackers Use Grok Ai To Spread Malware

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial