US Sanctions Aeza Group for Hosting Infostealers, Ransomware

Russian Bulletproof Host Also Designated a Front Company in the UK David Perera (@daveperera) • July 1, 2025

The United States cut off from the U.S.-dominated international financial system a Russian provider of digital infrastructure to cybercriminal groups, accusing St. Petersburg-based Aeza Group of hosting infostealers and ransomware operations.

See Also: Beyond Replication & Versioning: Securing S3 Data in the Face of Advanced Ransomware Attacks

The U.S. Department of Treasury described Aeza as a bulletproof hosting service that's provided services to the Meduza and Lumma infostealers and hosting to ransomware groups BianLian and RedLine. It has also hosted the Russian-language BlackSprut darknet marketplace for illicit drugs, federal officials said Tuesday.

Bulletproof hosting servers are run by administrators who ask few questions and don't respond to takedown requests or court orders. The United Kingdom in tandem with U.S. authorities designated Aeza Group as a ...