ZserversOrganization

Designations

• Designated by UK HM Treasury (OFSI) under program Cyber since 2025-02-11. Other entities under Cyber

Source remarks: CYB0064 — ZSERVERS has been involved in relevant cyber activity, in that by providing hosting services that support relevant cyber activity it has provided support for the commission, planning or preparation of such activity, has supplied technology and provided technical assistance that could contribute to such activity, and has carried out activities which promoted, enabled or facilitated the commission of relevant cyber activity. ZSERVERS has operated from Barnaul, Russia and has promoted itself as a Bulletproof Hosting (BPH) provider. ZSERVERS has been involved in relevant cyber activity though its role providing infrastructure used in ransomware incidents and reprovisioning infrastructure for customers identified as being involved in malicious cyber activity, including those affiliated with the LockBit ransomware group. ZSERVERS infrastructure was used to host a ransomware-dedicated site connected with the leak of private information stolen from Australian health insurance company Medibank Private Limited. ZSERVERS has been identified as a key enabler of the cybercrime ecosystem. Such activity that ZSERVERS was involved in, directly or indirectly caused, or was intended to cause, economic loss to, or prejudice to the commercial interests of those affected by the activity. (official source)

Key properties

Addresses

Source list & list version

Last confirmed present in UK OFSI Consolidated List of Financial Sanctions Targets list version gb_hmt_ofsi@2026-06-03, observed 2026-06-03.

How to cite this page