NSA Releases Guidance on Mitigating Malicious Activity from Bulletproof Hosting Provider Infrastructure
The National Security Agency (NSA) is joining the Cybersecurity and Infrastructure Security Agency (CISA) and others to release the Cybersecurity Information Sheet (CSI), “Bulletproof Defense: Mitigating Risks from Bulletproof Hosting Providers,” to provide internet service providers (ISPs) and network defenders recommendations to mitigate potential cybercriminal activity enabled by bulletproof hosting (BPH) providers.
BPH providers are internet infrastructure providers that knowingly and intentionally market and lease their infrastructure to cybercriminals. These providers do not engage in good faith with legal processes or third-party/victim complaints of malicious activity enabled from such infrastructure. Cybercriminals are increasingly utilizing BPH infrastructure as it allows them to evade law enforcement and conduct malicious operations against critical infrastructure, financial institutions, and other high-value targets without fear of losing access to their servers.