Microsoft Takes Down Global Cybercrime Service Responsible for Millions in Losses
Microsoft has successfully dismantled a global cybercrime service known as RedVDS, which has been responsible for fueling phishing and fraud activities on a massive scale, affecting hundreds of thousands of Microsoft accounts worldwide since September 2025. The service, which was available for a minimum cost of $24 per month, has caused significant financial losses, with estimated fraud losses in the United States alone totaling approximately $40 million since March 2025.
The Scope of the Cybercrime Operation
The RedVDS infrastructure was used by cybercriminals to send mass phishing emails and facilitate various types of fraud, often in combination with artificial intelligence tools to create realistic emails, as well as video manipulation and voice cloning to impersonate individuals and deceive victims. In Italy, for example, 2480 Microsoft customer email accounts were affected, highlighting the global reach of the operation. The consumer goods sector was particularly hard hit, with a significant number of compromised accounts reported between September 2025 and January 2026.
Coordinated Efforts to Disrupt the Service
The takedown of the RedVDS service was the result of a coordinated operation involving legal and civil actions in the United States and the United Kingdom, as well as the seizure of servers by German and European law enforcement agencies. Microsoft has emphasized the importance of disrupting such services, stating that they have “quietly become a driving force behind the current rise in cybercrime, fueling attacks that harm individuals, businesses, and communities around the world.”
Impact and Implications
The dismantling of the RedVDS service is a significant blow to cybercriminals, who rely on such infrastructure to carry out their activities. The operation highlights the need for continued collaboration between law enforcement agencies, technology companies, and other stakeholders to combat cybercrime and protect individuals and businesses from its effects. As Microsoft notes, services like RedVDS have enabled cybercriminals to launch sophisticated attacks, including phishing and fraud campaigns, which can have devastating consequences for those affected.
For more information on this operation and the ongoing efforts to combat cybercrime, please visit Here