Polish cops bail 20-year-old bedroom botnet operator
(2026/02/03)
- Reference: 1770122057
- News link: https://www.theregister.co.uk/2026/02/03/polish_cops_ddos_arrest/
- Source link:
Polish authorities have cuffed a 20-year-old man on suspicion of carrying out DDoS attacks.
The Central Bureau for Combating Cybercrime (CBZC) claims the unnamed individual was responsible for attacks on "numerous popular websites," including those of strategic importance.
Given the context, it can be reasonably assumed that strategically important websites likely refers to those providing essential services to the public or government.
[1]
CBZC officer combing through alleged DDoS attacker's PC
The man faces six charges and a maximum five-year prison sentence for disrupting IT systems and acquiring the software to do so.
CBZC officers in Lublin, Poland's eighth-largest city, said the websites, portals, and services the alleged criminal attacked were located around the world.
[2]
Officials said on Tuesday morning the suspect used "C2 stresser" and "Command and Control Node" machines to carry out the attacks, referring to the overall mechanism as a multi-layered [3]botnet .
[4]
[5]
The case is ongoing and further arrests related to the same activity are possible.
Following the man's arrest at his apartment, officers seized his computer equipment, saying that in doing so they "dismantled the IT infrastructure used to host and distribute DDoS attack tools."
[6]Notepad++ hijacking blamed on Chinese Lotus Blossom crew behind Chrysalis backdoor
[7]Russia-linked APT28 attackers already abusing new Microsoft Office zero-day
[8]Thousands more Oregon residents learn their health data was stolen in TriZetto breach
[9]To stop crims, Google starts dismantling residential proxy network they use to hide
The 20-year-old is said to have admitted to "most of the charges" and was bailed after providing a police statement. He will remain under non-custodial police supervision until sentencing.
Per the CBZC's [10]annual review , Poland's police are heavily involved in coordinated efforts to stymie DDoS attacks in Europe.
[11]
Poland is one of the 15 countries that supported the Europol-coordinated [12]Operation PowerOFF , and its authorities arrested seven individuals as part of this work in 2025, six of whom were described as domain administrators.
The CBZC also supported Operation Eastwood in July, which targeted the prolific pro-Russia hacktivist crew [13]NoName057(16) , charging an 18-year-old with four counts related to computer crimes.
Officers reported a 30 percent increase in cybercrime charges and detentions in 2025, with the unit growing to more than 1,000 staffers – nearly double the size at the start of 2024. ®
Get our [14]Tech Resources
[1] https://regmedia.co.uk/2026/02/03/poland_ddos_feb_2026_press_shot.jpg
[2] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2aYIptcf-Pt9WePe5SnaSVgAAAAQ&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0
[3] https://www.theregister.com/2026/01/16/rondodox_botnet_hpe_oneview/
[4] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44aYIptcf-Pt9WePe5SnaSVgAAAAQ&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[5] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33aYIptcf-Pt9WePe5SnaSVgAAAAQ&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[6] https://www.theregister.com/2026/02/02/notepad_hijacking_lotus_blossom/
[7] https://www.theregister.com/2026/02/02/russialinked_apt28_microsoft_office_bug/
[8] https://www.theregister.com/2026/01/30/trizetto_health_data_stolen/
[9] https://www.theregister.com/2026/01/29/google_ipidea_crime_network/
[10] https://cbzc.policja.gov.pl/bzc/aktualnosci/785,Cyberprzestepczosc-w-2025-roku-efekty-procesowe-i-najwazniejsze-sprawy.html
[11] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44aYIptcf-Pt9WePe5SnaSVgAAAAQ&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[12] https://www.theregister.com/2025/08/21/rapperbot_seized/
[13] https://www.theregister.com/2026/01/19/dont_underestimate_prorussia_hacktivists_warns/
[14] https://whitepapers.theregister.com/
The Central Bureau for Combating Cybercrime (CBZC) claims the unnamed individual was responsible for attacks on "numerous popular websites," including those of strategic importance.
Given the context, it can be reasonably assumed that strategically important websites likely refers to those providing essential services to the public or government.
[1]
CBZC officer combing through alleged DDoS attacker's PC
The man faces six charges and a maximum five-year prison sentence for disrupting IT systems and acquiring the software to do so.
CBZC officers in Lublin, Poland's eighth-largest city, said the websites, portals, and services the alleged criminal attacked were located around the world.
[2]
Officials said on Tuesday morning the suspect used "C2 stresser" and "Command and Control Node" machines to carry out the attacks, referring to the overall mechanism as a multi-layered [3]botnet .
[4]
[5]
The case is ongoing and further arrests related to the same activity are possible.
Following the man's arrest at his apartment, officers seized his computer equipment, saying that in doing so they "dismantled the IT infrastructure used to host and distribute DDoS attack tools."
[6]Notepad++ hijacking blamed on Chinese Lotus Blossom crew behind Chrysalis backdoor
[7]Russia-linked APT28 attackers already abusing new Microsoft Office zero-day
[8]Thousands more Oregon residents learn their health data was stolen in TriZetto breach
[9]To stop crims, Google starts dismantling residential proxy network they use to hide
The 20-year-old is said to have admitted to "most of the charges" and was bailed after providing a police statement. He will remain under non-custodial police supervision until sentencing.
Per the CBZC's [10]annual review , Poland's police are heavily involved in coordinated efforts to stymie DDoS attacks in Europe.
[11]
Poland is one of the 15 countries that supported the Europol-coordinated [12]Operation PowerOFF , and its authorities arrested seven individuals as part of this work in 2025, six of whom were described as domain administrators.
The CBZC also supported Operation Eastwood in July, which targeted the prolific pro-Russia hacktivist crew [13]NoName057(16) , charging an 18-year-old with four counts related to computer crimes.
Officers reported a 30 percent increase in cybercrime charges and detentions in 2025, with the unit growing to more than 1,000 staffers – nearly double the size at the start of 2024. ®
Get our [14]Tech Resources
[1] https://regmedia.co.uk/2026/02/03/poland_ddos_feb_2026_press_shot.jpg
[2] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2aYIptcf-Pt9WePe5SnaSVgAAAAQ&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0
[3] https://www.theregister.com/2026/01/16/rondodox_botnet_hpe_oneview/
[4] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44aYIptcf-Pt9WePe5SnaSVgAAAAQ&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[5] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33aYIptcf-Pt9WePe5SnaSVgAAAAQ&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[6] https://www.theregister.com/2026/02/02/notepad_hijacking_lotus_blossom/
[7] https://www.theregister.com/2026/02/02/russialinked_apt28_microsoft_office_bug/
[8] https://www.theregister.com/2026/01/30/trizetto_health_data_stolen/
[9] https://www.theregister.com/2026/01/29/google_ipidea_crime_network/
[10] https://cbzc.policja.gov.pl/bzc/aktualnosci/785,Cyberprzestepczosc-w-2025-roku-efekty-procesowe-i-najwazniejsze-sprawy.html
[11] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44aYIptcf-Pt9WePe5SnaSVgAAAAQ&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[12] https://www.theregister.com/2025/08/21/rapperbot_seized/
[13] https://www.theregister.com/2026/01/19/dont_underestimate_prorussia_hacktivists_warns/
[14] https://whitepapers.theregister.com/
Re: Unfortunate use of the word "Bail" in an headline
Neil Barnes
It means the same in the UK, as suggested by the phrase 'remain under non-custodial police supervision'.
Not sure why it's an unfortunate use?
Unfortunate use of the word "Bail" in an headline
Not that it matters, but in the U.S. the word "bail" in legal contexts means to release from jail.