Bleeping Computer: Operation PowerOFF international law enforcement action. .

The ongoing operation is supported by Europol and involves authorities in 21 countries. Coordinated efforts led to the arrest of four people, taking offline 53 domains, and issuing 25 search warrants.

Operation PowerOFF identifies 75k DDoS users, takes down 53 domains

By Bill Toulas

April 16, 2026

06:26 PM

More than 75,000 individuals using distributed denial-of-service (DDoS) platforms for disruptive attacks have been warned through emails and letters during the latest phase of the Operation PowerOFF international law enforcement action. . .

“Leading up to the action week, a series of operational sprints took place, gathering experts from national authorities across the globe to carry out actions against high-value target users of DDoS-for-hire platforms and raise awareness about the illegality of these activities,” Europol says.

“During these sprints, the participating countries disrupted illegal booter services, dismantling the technical infrastructure that supports illegal DDoS.”

The operation has a global span, and includes multiple European Union countries as well as Australia, Thailand, the United States, the United Kingdom, Japan, and Brazil.

Latest Operation PowerOFF reach
Source: Europol

“Booter services” are DDoS-for-hire platforms that allow users to pay for renting the firepower of DDoS swarms, typically consisting of compromised routers and IoTs, and directing it to their intended targets.

•  Some operators of these services attempt to hide their real goal by claiming they are used for legitimate stress testing, but lack verification of target ownership and hence are still used for illegal attacks.
• The latest Operation PowerOFF action was built on

Europol states that the operation is now entering its prevention phase, which includes launching awareness campaigns and disruption measures.

These involve placing search engine ads aimed at young people seeking DDoS tools, removing from search results more than 100 URLs that promote these illegal services, and adding on-chain warning messages tied to illicit payments.

Related Articles:

International joint action disrupts world’s largest DDoS botnets

Interpol operation Synergia takes down 1,300 servers used for cybercrime

Interpol disrupts cybercrime activity on 22,000 IP addresses, arrests 41

Europol-led crackdown on The Com hackers leads to 30 arrests

Spain arrests suspected hacktivists for DDoSing govt sites 

LATEST ARTICLES 

Security

CISA flags Apache ActiveMQ flaw as actively exploited in attacks

CISA warned that attackers are now exploiting a high-severity Apache ActiveMQ vulnerability, which was patched earlier this month after going undetected for 13 years.

Sergiu Gatlan

April 17, 2026

05:30 AM 

 

 

 

 

 

Microsoft

Microsoft: Some Windows servers enter reboot loops after April patches

Microsoft warns that some Windows domain controllers are entering restart loops after installing the April 2026 security updates.

• Sergiu Gatlan
• April 17, 2026
• 03:59 AM

Security

Man gets 30 months for selling thousands of hacked DraftKings accounts

23-year-old Kamerin Stokes of Memphis, Tennessee, was sentenced to 30 months in prison for selling access to tens of thousands of hacked DraftKings accounts.

• Sergiu Gatlan
• April 17, 2026
• 03:10 AM

 

 

Security, Microsoft

Recently leaked Windows zero-days now exploited in attacks

Threat actors are exploiting three recently disclosed Windows security vulnerabilities in attacks aimed at gaining SYSTEM or elevated administrator permissions.

• Sergiu Gatlan
• April 17, 2026
• 02:14 AM