The National Security Agency (NSA) has released an information sheet titled “Bulletproof Defense: Mitigating Risks From Bulletproof Hosting Providers” on November 19, 2025. The guidance, developed with CISA and the FBI, aims to dismantle the infrastructure supporting global cybercrime, which is increasingly reliant on bulletproof hosting services that ignore legal processes and facilitate malicious activities. These BPH services cater to cybercriminals by guaranteeing impunity and often obscure their activities within legitimate networks.
To combat this threat, the advisory outlines several strategies for ISPs and network defenders, including maintaining high-confidence lists of malicious resources and implementing detailed filtering methods to target identified threats. The guidance emphasizes the need for traffic analysis to identify atypical behaviors that may indicate engagements with BPH services. ISPs are urged to adopt stricter identity verification protocols and agreements on industry-wide conduct to hold malicious entities accountable, thereby making it harder for cybercriminals to operate undetected.
As cybercrime evolves, this joint guidance recognizes the vital role of collaboration among agencies and the necessity for proactive measures to safeguard the internet from exploitation. By reinforcing controls and collaborating across sectors, stakeholders aim to disrupt the operations of cybercriminals reliant on bulletproof hosting, ultimately making the digital landscape safer.
👉 Pročitaj original: Cyber Security News
