Global Crackdown on DDoS-for-Hire Services: Operation PowerOFF

Severity: Medium (Score: 54.6)

Sources: Bleepingcomputer, www.cloudflare.com, Mezha, Techcrunch, www.europol.europa.eu

Summary

A coordinated international law enforcement operation, dubbed Operation PowerOFF, has led to the takedown of 53 domains associated with DDoS-for-hire services and the arrest of four individuals. Authorities from 21 countries participated in this effort, which targeted over 75,000 users of these services, sending warning emails and letters to those suspected of engaging in DDoS attacks. The operation dismantled infrastructure supporting illegal DDoS activities, exposing more than 3 million user accounts. DDoS attacks, which can easily disrupt online services, have been facilitated by booter services that allow users to launch attacks without technical expertise. Europol has emphasized the need for ongoing awareness campaigns to combat the proliferation of these services. The operation follows a trend of increasing DDoS attack volumes, with Cloudflare recently reporting the largest DDoS attack ever at 29.7 Tbps in 2025. Key Points: • Operation PowerOFF involved 21 countries and targeted 75,000 DDoS-for-hire users. • Authorities seized 53 domains and arrested four individuals linked to DDoS operations. • DDoS attacks are facilitated by easily accessible booter services, posing a significant threat.

Key Entities

• DDoS (attack_type)
• Operation PowerOFF (campaign)
• PowerOFF (campaign)
• Airbnb (company)
• Amazon (company)
• CNN (company)
• Dell (company)
• Dyn (company)
• EBay (platform)
• GitHub (platform)
• Visa (platform)
• HTTP/2 (platform)
• Memcached (platform)
• Australia (country)
• Austria (country)
• Belgium (country)
• Brazil (country)
• Britain (country)
• Telecommunications (industry)
• Mirai (malware)
• Google Cloud (tool)
• HTTP/2 Rapid Reset (vulnerability)