CISA shares mitigation tips for ‘bulletproof’ cybercrimes

November 21, 2025 / By ICBA

The Cybersecurity & Infrastructure Security Agency and its partners released a guide on mitigating risks from bulletproof hosting (BPH) providers.

Details: CISA said:

The guide will help internet service providers and network defenders mitigate cybercriminal activity enabled by BPH providers.

Organizations with unprotected or misconfigured systems remain at high risk of compromise, as malicious actors leverage BPH infrastructure for activities such as ransomware, phishing, malware delivery, and denial-of-service attacks.

By reducing the effectiveness of BPH infrastructure, defenders can force cybercriminals to rely on legitimate providers that comply with legal processes.

Subscribe now

Sign up for the Independent Banker newsletter to receive twice-monthly emails about new issues and must-read content you might have missed.

Featured Webinars

Modern Positive Pay for a Modern Fraud Problem

11/18/25 | 2:00 PM CST

Banking on Relationships: Designing Experiences That Deliver

12/2/25 | 1:00 PM CST

Join ICBA Community

Interested in discussing this and other topics? Network with and learn from your peers with the app designed for community bankers.

Join the conversation Example Text

Subscribe Today

Sign up for Independent Banker eNews to receive twice-monthly emails that alert you when a new issue drops and highlight must-read content you might have missed.

News Watch Today

ICBA supports proposal to bar agency use of reputation risk

Treasury publishes penny FAQs

Agencies adjust CRA asset thresholds

View All NewsWatch Today Example Text

Join the Conversation with ICBA Community

ICBA Community is an online platform led by community bankers to foster connections, collaborations, and discussions on industry news, best practices, and regulations, while promoting networking, mentorship, and member feedback to guide future initiatives.

Join the Community Example Text