May 25, 2026
Server seizure, but make it messy
Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks
Dutch raid yanks 800 servers as commenters ask how this was hidden in plain sight
TLDR: Dutch authorities arrested two men and seized 800 servers, saying their companies helped keep Russian-linked attack operations online despite sanctions. Commenters turned the story into equal parts meme fest and legal debate, asking not just who hosted it, but who paid for the chaos.
The Netherlands just dropped the kind of plot twist that makes the internet collectively spit out its coffee: authorities arrested two hosting company co-owners and seized more than 800 servers over claims their businesses helped keep Russian-linked cyberattack and disinformation operations running inside Europe. In plain English, officials say these companies were providing the digital real estate that let bad actors stay online even after sanctions hit other parts of the network. And the community reaction? A mix of gallows humor, disbelief, and full-on side-eye.
The biggest mood was basically: how did this keep going, and who else was involved? One commenter couldn’t get over the Marvel-villain naming coincidence, joking, “jarvis, whats the status of my dutch servers,” turning Stark Industries Solutions into instant meme fuel. Another was less amused and more baffled, asking what the actual crime was under Dutch law — a reminder that part of the drama here is legal, not just political. Others were angrier, saying the real story isn’t just the server owners but the people who allegedly paid for the attacks and still haven’t been named.
Then came the most deliciously local reaction of all: one reader claimed, “I walk past the office of MIRhosting every day,” which gave the whole scandal an almost absurd neighborhood feel. For security veterans in the comments, the emotional tone was exhaustion: they’re stunned that people with enough skill to build successful tech businesses would allegedly choose to help online sabotage instead. So yes, this is a cybercrime story — but in the comments, it became a drama about greed, loopholes, and the weird shock of evil maybe renting office space next to your commute.
Key Points
- •Dutch authorities arrested Andrey Nesterenko and Youssef Zinad on May 18 in a sanctions-law investigation tied to hosting infrastructure allegedly used for Russia-linked cyber operations.
- •The investigation focuses on Stark Industries, a hosting provider described as a source of DDoS attacks and proxy/anonymity services linked to Russia-backed hacking groups.
- •PQHosting and Moldovan brothers Ivan and Yuri Neculiti were sanctioned by the EU in May 2025, but Stark’s remaining Internet connectivity allegedly continued through Dutch provider MIRhosting.
- •Authorities searched businesses and data centers in multiple Dutch locations and seized laptops, phones, and more than 800 servers.
- •De Volkskrant reported that WorkTitans and MIRhosting were the most-used networks in pro-Russian attacks on Danish government bodies during Denmark’s municipal election week in November 2025.