The year-old Dutch startup is folding in a seven-year-old performance-marketing platform, betting that customers want AI, automation and human specialists in one place.
Most startups spend their first year trying to survive. Aizy has spent its first year buying a company older than itself.
The Breda-based AI-marketing firm announced that it has acquired Uptmz, a rival performance-advertising platform, merging the two into a single system that serves more than 600 customers.
The combined platform spans advertising across Google, Microsoft and Meta, pairing Uptmz’s automation software with Aizy’s AI optimisation and its bench of performance specialists.
Advertisement
Financial terms were not disclosed. Customers of both will move onto one integrated platform, able to run campaigns themselves, lean on specialists, or hand over the whole job.
The two halves come at the problem from different ends. Uptmz grew out of the Dutch agency group Springbok Group and spun out as an independent company in 2022, building over seven years into a technically strong, scalable platform for Google and Microsoft ads, weighted towards automation.
Aizy, barely a year old, has built in the other direction, starting from AI intelligence and human support rather than raw tooling.
That contrast is the stated logic of the deal. “This combination gives us the best of both worlds,” said Stefan Nuijten, Aizy’s founder, describing user-friendly software on one side and real intelligence on the strategy and execution side, and claiming a lead over the rush of similar initiatives that have appeared lately.
Advertisement
Vincent Stoit, co-founder of Uptmz, said companies increasingly want a multichannel approach and strategic support that goes beyond software alone, and that Aizy could carry his platform into its next phase.
The wager beneath the language is that the market for advertising software is consolidating away from single-purpose AI tools and towards integrated platforms.
Plenty of products optimise one channel or automate one task; Aizy’s bet is that mid-market advertisers would rather buy AI, automation and specialist help as one bundle than assemble them from parts.
Acquiring a built-out platform is a faster way to make that case than building it.
Advertisement
Aizy’s short history has been unusually well-funded for its age. The company raised early backing from investors including DeGiro co-founder Gijs Nagel and the tech investors Michiel Mol and Joost van der Klooster, and a €2m injection in February 2026 valued it at around €22m, less than a year after launch, on roughly €2m of annual recurring revenue and more than 150 customers at the time.
The Uptmz deal is what that capital is now buying: scale, bought rather than grown.
The company says the combination lays the groundwork for international expansion across the European AI-performance-marketing market. That is the ambition; the integration is the test.
Merging a year-old AI-first startup with a seven-year-old automation platform, and keeping 600 customers happy through it, is the kind of operational work that decides whether an acquisition this early is bold or premature.
The same public ledger that enables transparency in crypto often acts as a double-edged sword for some of its whales, who are identified and targeted by hackers, con artists, and other criminal elements
Bloomberg is reporting a 75% increase in recorded physical attacks (also known as crypto wrench attacks) against cryptocurrency holders year-on-year in 2025
Whales, crypto-related firms, and exchanges have responded by upping the ante on security protocols, increasing bodyguards, and even employing pre-emptive measures
Cryptocurrency executives and whales alike are increasingly being targeted by a mix of criminal elements worldwide, even as security continues to be beefed up to protect the not-so-anonymous owners of cryptocurrency.
The transparency introduced to the crypto world is putting some coin-collectors at risk of physical harm, and even kidnapping.
But many are also being outed by their lavish lifestyles, presence at crypto conferences, or, in some cases, leaked exchange data.
Latest Videos From
Advertisement
A high-ROI approach for criminals
Unlike most of their targets, criminals generally find crypto executives and enthusiasts to be easy pickings, especially when they flaunt a lavish lifestyle or talk volume at conferences, crypto meets, or even drum up their holdings online.
Given the unrecoverable nature of many of their holdings and the liquidity that they command, in addition to the ability to quickly move them across platforms, cryptocurrency-related physical attacks are on the rise, up a meteoric 75% as per a report by Bloomberg.
“The logic from the adversarial perspective of what the bad actors are seeing is — this is low risk, high ROI,” said Adam Healy, CEO of Station70, a US-based security company focused on digital asset protection, while speaking to Bloomberg, pointing out that if the funds are laundered correctly, it makes for an easy payday.
Some even play the long game, with a much more sophisticated attack on Drift, wiping an estimated $280 million from the derivatives exchange, in which hackers posed as a trading firm and even met staff at various conferences.
Advertisement
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Beefed up security amid other measures
With crypto wrench attacks becoming increasingly mainstream, crypto exchanges have responded by doubling down on protection for their executives. Crypto exchange Gemini, for example, spent $5 million on security for its co-founders, Cameron and Tyler Winklevoss (also known as the Winklevoss twins).
Security protocols for individuals in similar situations are being established to provide greater protection. TRM’s Phil Ariss, the director of UK Public Sector Relations, stated: “Large, regulated exchanges and custodians are increasingly converging on something that looks very close to big‑bank practice for a small group of key personnel — think executive protection for a handful of individuals, secure travel protocols, hardened offices, and internal policies about home addresses and children’s schools not being publicly visible.”
Advertisement
Private crypto holders are also employing bodyguards, attending physical security-focused conferences, and even looking to invest in decoy wallets and time-delay locks, and to remove their cold-storage wallets from their day-to-day routines altogether.
Even with a recorded 75% YoY increase, the problem might be understated, with many silently paying ransoms, underreporting losses, or simply refusing to involve the authorities in what can often be a crime involving impossible-to-recover securities or additional perceived attention, which can be seen as painting a target on one’s back.
Kyndryl said the ‘politicisation’ of the deal has ‘overshadowed’ potential benefits it could have provided to Dutch citizens.
The government of the Netherlands has blocked Kyndryl’s proposed acquisition of Dutch cloud provider Solvinity, citing a risk to public interest.
Solvinity stores data used by the country’s citizen identification tool DigiD. The company’s tools are also used by public institutions including the tax office and universities. The acquisition would have reportedly set Kyndryl back €100m.
“The [Dutch] Investment Screening Bureau (ISB) advised me to proceed with a complete prohibition of this acquisition. I have made this advice my own and have adopted it,” said Willemijn Aerdts, the country’s minister for the digital economy and sovereignty, in a translated letter to parliament.
Advertisement
“The Netherlands attaches great value to the presence of foreign, including explicitly American, technology companies and their contribution to the Dutch economy and digital infrastructure,” the minister added, though she did not explain why the acquisition would risk public interest.
This is the first time the ISB has blocked a US acquisition since it was set up in 2020.
Several members of the Dutch parliament had openly criticised Solvinity’s acquisition by a US IT company over concerns that the US government could access private European citizen data.
“We are extremely disappointed by the Netherlands’ government decision to prohibit Kyndryl’s acquisition of Solvinity,” said Kyndryl in a statement.
Advertisement
“Since announcing the proposed transaction, Kyndryl has consistently engaged in good faith with relevant stakeholders across the Netherlands’ government.
“Despite this engagement and our long history of managing mission-critical operations in the Netherlands, the politicisation of this process has overshadowed the clear and important benefits this transaction would have brought to Solvinity’s customers and Dutch citizens”.
Kyndryl announced the proposed acquisition last November, stating that the deal would enable it to offer customers expanded services in “modernising, innovating and securing sensitive and complex workloads”.
The back-and-forth led to China temporarily halting Nexperia chip exports in early October. However, a Dutch court later upheld the seizure decision, as well as a decision to suspend the company’s Chinese CEO and hand control off to EU-based directors.
The dispute, triggered by the Dutch government, led to parent company Wingtech suing its subsidiary Nexperia earlier this month, arguing that the government’s actions resulted in billions in losses. The company is demanding €1bn in damages.
Don’t miss out on the knowledge you need to succeed. Sign up for the Daily Brief, Silicon Republic’s digest of need-to-know sci-tech news.
Ivan Miranda has turned a long-running experiment with rolling balls into a clock that actually keeps pace with passing seconds. The latest version of his marble timepiece refreshes its display fast enough to show hours, minutes, and seconds without any visible lag between changes. Each digit takes shape inside a compact 3-by-5 grid. Fifteen marbles settle into the exact spots needed to outline a number. White marbles stand where a digit needs its bright segments, while black marbles fill the remaining positions to create clear contrast. The result looks like a physical version of familiar numeric shapes, built from actual objects rather than light or ink.
Hundreds of marbles, a stunning collection, live at the bottom of the machine, waiting to be sorted, and to be honest, they are getting a good exercise there. So, an elevator moves rows of marbles up in batches at a time, and infrared sensors examine each marble’s colour as it rises. Colors that do not match are softly shoved to one side by little actuators, and the entire cycle is repeated. They merely keep going until they have the perfect marble mix, at which point the mix required for the next exhibit is tossed down the tight tracks. Gravity takes over, transporting the picked marbles to their proper spots in the grids.
For years, the machine simply chugged away, updating once per minute. It was just the right pace to allow the marbles to organize themselves, travel to their destination, and settle in. However, adding only a few seconds to the mix nearly threw everything off course. Marbles were jamming up against the walls or each other, black and white marbles would take slightly different routes, causing them to be out of sync with one another, the plastic parts would flex and bend under the loads, and the drive system was nearing failure due to the large spikes in power demand.
Miranda needed to think of a new way to do things, so he developed a series of modifications that all worked together. He expanded the main housing so that marbles could move around without becoming too crowded. Then he built a safety net, which is a type of buffer zone that collects all marbles for a digit in one location before the last move. Release is now accomplished using gates carved from robust aluminum and equipped with a thin metal plate that serves as both a hinge and a spring. The flywheel, which weighs just shy of two kilograms, simply spins silently away on the drive shaft, keeping the motion flowing smoothly even as the mechanism begins to pull strongly. They took sure to include a great smooth-riding joint in the axle so that power is properly distributed even though the layout results in an unusual angle.
All of these modifications resulted in the 15 marbles for each digit dropping into their final positions in around 150 milliseconds. Which is just fast enough for the display to change once per second while still producing clean, crisp numerals. The time is handled by an Arduino controller, which is connected to a constant clock source and is in charge of communicating with the sensors and actuators. The motors and gears handle all of the heavy lifting, with the flywheel smoothing out any peaks and troughs that would otherwise cause the entire system to stall.
Recycling is still the slowest part, as the marbles tumble back down to the collection area after each cycle and must be hoisted again for the next cycle. The existing elevator just cannot match the one-second pace for lengthy run times, therefore the equipment continues to hesitate or slow down during long tests. Even with such limitation, the core display is able to process updates at a rate comparable to real-life seconds.
The entire design is a bit of a hybrid, as he used 3D printed tracks and frames where they made sense, and only a few proper machined metal parts where they were truly needed. Miranda has also been documenting every step of the route on camera, highlighting the worst of the clogs that slowed progress and the best of the solutions that restarted the flow. What began as a ridiculous idea about moving actual pixels has evolved into a workable proof of concept for how gravity, sensors, and properly formed pieces can accomplish tasks such as spitting out correct seconds without the traditional bits, hands, or glowing bits. [Source]
The Global Tech Ecosystem Index for 2026 tracks start-up ecosystems in 325 cities across 77 countries through three categories.
European cities account for 10 of the top 20 densest tech ecosystems in the world, according to a new report by innovation tracking platform Dealroom.
The ‘Global Tech Ecosystem Index’ for 2026 tracks start-up ecosystems in 325 cities across 77 countries through three categories: scale, per capita performance – or density – and growth, aiming to provide a “multidimensional view of the global innovation landscape”.
In density ratings, 45 European cities feature in the global top 100, ahead of North America’s 40. The rankings measure innovation output per capita, including start-up activity, enterprise value creation, ‘unicorns’ and university affiliations.
Advertisement
Cambridge, London, Stockholm, Ghent, Lausanne, Oxford, Tallinn, Copenhagen, Munich and Amsterdam are among the 20 global density leaders. The UK’s Cambridge is third in this metric, behind only the Bay Area and Boston, both in the US.
US ecosystems account for nine entries overall for density leaders.
Europe is one of six global macro regions monitored by the index – alongside North America; Latin America; Asia-Pacific; Middle East and North Africa; and Sub-Saharan Africa – for economic ties, investment flows and tech ecosystem integration.
The index suggests this approach reflects how innovation ecosystems operate in practice, connected by trade, talent and capital rather than by strict geography alone.
Advertisement
In the index’s scale rankings, tracking the “world’s largest and most successful tech ecosystems”, London (fourth), Paris (eighth) and Stockholm (19th) feature in the top 20, with 11 places occupied by North American cities.
Istanbul, Zagreb and Kyiv are European entries in the top 20 growth locations globally.
“As Europe struggles with entrenched low growth, political leaders see tech and innovation as a fundamental building block of economic competitiveness,” said Yoram Wijngaard, Dealroom’s founder and CEO.
“Innovation is seen as a route not only to securing growth but also national resilience and strategic autonomy. What stands out is not just the strength of leading hubs like London and Paris, but the rise of high-performing smaller ecosystems often built around leading research and academic institutions.”
Advertisement
In the AI sector, European ecosystems account for 10 of the index’s global top 20 by density, with Cambridge ranking second for the category. Tel Aviv, Israel and nine US cities complete the category.
In the index’s defence sector top 20 by density, European cities account for six entries, with Munich ranking second for the category.
Dealroom said: “The rankings reflect Europe’s distinctive innovation model – globally competitive ecosystems built around research institutions, technical talent and specialised industries rather than scale alone. Across the continent, smaller cities are increasingly producing outsized impact in areas such as AI, biotech, climate-tech and advanced manufacturing.”
According to Dealroom, its database draws from four sources: aggregated public information such as news, filings, registries, job boards; community-submitted data from start-ups, investors and accelerators validated by Dealroom; direct government API connections; and third-party data partnerships.
Advertisement
Don’t miss out on the knowledge you need to succeed. Sign up for the Daily Brief, Silicon Republic’s digest of need-to-know sci-tech news.
Looking for a portable Bluetooth speaker that will not disappoint in terms of performance? The Ultimate Ears WONDERBOOM 4, priced at $51.44 (was $100), is an ideal fit. It fits neatly into daypacks or backpacks without adding weight, yet produces music that penetrates through even small spaces and outdoor gatherings with startling power.
This speaker is 4 inches tall and weighs 15 ounces, making it easy to pick up and move with one hand, whether you’re setting it up or simply repositioning it. On top, there is an elastic loop that can be clipped into your backpack or bike handle without bulking up. The device is coated in a fabric finish and has some excellent rubberized portions at the ends to keep it gripping even when your hands are damp and soggy. Plus, it’s made to withstand some punishment: the IP67 rating means you can put it in a muddy puddle and still know it’ll work, and the fact that it floats means that if you drop it in a pool or lake, it’s less of a nightmare and more of a ‘oh well, I’ll just fish it out’.
Balanced 360-Degree Sound: The WONDERBOOM 4 portable waterproof Bluetooth speaker features 360-degree sound in a petite package; boosted sound for up…
Outdoor Boost and Podcast Mode: Engineered for full stereo sound; tap the Outdoor Boost button for outdoor environments; use the new Podcast Mode to…
14 Hours of Boom: With a rechargeable battery that lasts throughout the day, this waterproof portable speaker booms on with up to 14 hours of…
The sound is, frankly, pretty impressive all things considered. See, the configuration of the two active drivers and some passive radiators is set up such that it’s nice and open, which is wonderful news for anyone who wants to use it from a table or on the ground, and it works nicely no matter how you hold it, so you don’t have to worry about setting it perfectly. The bass, while not ridiculously deep, has a great weight to it, and the vocals are audible whether you’re listening to a podcast or just chilling out to some music.
Advertisement
There are also some extremely cool features to look out for. For example, tapping the button at the bottom activates the Outdoor Boost feature, which helps cut through background noise and get the sound through loud and clear. You can even pair a second WONDERBOOM 4 to get proper stereo separation, which is a game changer for larger rooms or sharing with a friend because it provides a considerably wider soundscape without requiring any additional cords or downloading anything. It also has multipoint Bluetooth connections, which allow you to couple with two devices at the same time and effortlessly switch between them.
The controls are simple to use, with volume buttons right up front for quick adjustments on the go. Everything else, including power, pairing, and playback controls, is conveniently located up top. The good news is that you don’t have to be a tech whiz to get started; simply plug it in, flip the switch, and you’re ready to go. You’ll have up to 14 hours of gameplay, which should provide for a road trip, a few shorter sessions, or a full day of work, plus some evening listening before you need to recharge. When you’re done, simply grab a standard USB-C cable to get back up and running.
Dutch authorities have taken offline a massive botnet of 17 million devices and seized more than 200 servers at a local provider that supported the operation.
The action was carried out following an investigation from the Police in collaboration with the country’s cybersecurity agency, the National Cyber Security Centre (NCSC).
According to the authorities, the seized servers controlled “computers, tablets, and smartphones to carry out cyberattacks.”
Botnets are networks of compromised devices used for illegal activities such as distributed denial-of-service (DDoS) attacks, malicious traffic proxying, or cryptocurrency mining.
Advertisement
“The investigation revealed that the botnet consisted of at least 17 million infected devices and that the 200 servers used to host the infrastructure were located in the Netherlands,” the NCSC said.
“ The police subsequently seized several botnet servers from a hosting provider for investigation purposes. The hosting provider took the botnet offline because it was being used for criminal activities.”
Although the authorities did not name the botnet, local media reported that it was linked to a service called Asocks, which advertises itself as a “universal proxy service” with 7 million IP addresses, 150 locations, and 100,000 clients.
The platform offers corporate, residential, and mobile proxies for monthly subscriptions between $5 and $15, with discounts for bulk purchases.
Advertisement
Although such services often comprise IPs that voluntarily donate bandwidth by using a specialized client in exchange for a fee, NCSC’s action indicates that the owners of the devices that were part of the botnet did not knowingly participate in supporting cybercrime operations.
BleepingComputer has contacted Asocks with a request for a comment on the allegations, but we have not received a response by publication time.
To protect networking devices from botnet infections, ensure the default credentials have been changed to something unique and strong, the latest firmware update has been applied, and remote administration panels are disabled when not needed.
Automated pentesting tools deliver real value, but they were built to answer one question: can an attacker move through the network? They were not built to test whether your controls block threats, your detection rules fire, or your cloud configs hold.
This guide covers the 6 surfaces you actually need to validate.
The cable news channel has accused the AI company of “massive copyright infringement.”
Hapabapa/Getty Images
CNN has joined the growing ranks of media companies suing Perplexity for copyright infringement. The cable news network has accused the AI search company of “massive copyright infringement” that includes wrongfully scraping its website and copying more than 17,000 pieces of its content.
The lawsuit, which was filed Thursday, claims that the AI company “unlawfully crawls, scrapes, copies, and distributes CNN’s content from CNN Digital Platforms and third-party platforms.” It also accuses the AI tools of reproducing “verbatim copies” of its articles, including paywalled stories, in query responses to users. Perplexity’s AI tools allegedly have incorrectly attributed “hallucinated” content to CNN, which the company says in the suit violates its trademark.
“CNN’s lawsuit stands for the proposition that Perplexity, a company valued at tens of billions of dollars, should not be able to steal from entities that create the original content Perplexity exploits,” a CNN spokesperson said in a statement to the outlet. “The public rely on high quality news journalism reported by human beings to understand their world, which is frequently dangerous and expensive to produce. Commercial operators can and must pay to make use of it.”
Advertisement
CNN is far from the first media company to sue Perplexity for scraping content without permission. The New York Times, Chicago Tribune, Reddit, Merriam-Webster, Encyclopedia Britannica and Nikkei have also filed lawsuits against the company. “You can’t copyright facts,” Perplexity’s Chief Communications Officer Jesse Dwyer said in a statement to CNN.
Interestingly, it seems that Perplexity was at one point trying to strike a deal with CNN that would have allowed it to use some of the network’s content. According to the lawsuit, the two companies were in negotiations last year that would have made paywalled CNN content available to Perplexity’s paid subscribers. The deal ultimately fell through, but Perplexity continued to use CNN’s name and content in its products despite warnings from the TV network’s legal team. Perplexity never responded, the lawsuit says.
The reboot of the classic Xbox series is now coming out in February 2027.
Fable, a reboot of the Xbox fantasy RPG series developed by Playground Games, has been delayed. The game’s release date is shifting from fall 2026 to February 2027 “so it can have the dedicated moment it deserves,” according to a post from Xbox on X. The new release date will give developers more time to polish the game before it comes out, while also moving it out of the blast radius of Grand Theft Auto VI, which is scheduled for release on November 19.
This isn’t the first time the reboot has been delayed, and as Microsoft notes in its announcement post, the back half of the year is particularly stacked with big releases like Call of Duty: Modern Warfare 4, Control Resonant and the aforementioned Grand Theft Auto VI. Moving to 2027 rather than duking it out with those more hotly anticipated titles could give Fable more time to shine. It does make a long development cycle even longer than it was before, though. The Fable reboot was originally announced in 2020, and Microsoft didn’t share proper gameplay footage of the game until January of this year. That means from announcement to release, Fable will have taken seven years to make, and that’s likely not taking into account work that went into the project ahead of its original announcement.
Advertisement
This is year is packed with incredible games for XBOX players to enjoy, from Halo: Campaign Evolved, Gears of War: E-Day and Call of Duty Modern Warfare 4 to Control Resonant, Star Wars: Galactic Racer and Grand Theft Auto VI. In order to plan our game launches through the… pic.twitter.com/eNXiA9ebn4
During its earlier 2026 showcase, Microsoft demoed Fable‘s detailed character creator and ambitious approach to simulating NPCs. The company also shared that the game would be available on PlayStation 5, alongside Xbox Series X/S, PC via Steam and Xbox and Game Pass Ultimate. While Fable won’t be available this year, Microsoft says it will show off “a major new look“ at the game during its Xbox Games Showcase on June 7.
You have probably experienced the following scenario yourself. A website suddenly stops loading, a login page times out, or an online service becomes unreachable at the worst possible moment. Sometimes the cause is not an internal outage, but a Distributed Denial-of-Service (DDoS) attack designed to overwhelm the service from the outside.
DDoS attacks have long been one of the simplest ways to disrupt an online service:flooding it with enough traffic, exhausting its infrastructure, and making it unreachable without breaking into the target’s systems. Now more than ever DDoS is being packaged, branded, and sold with the language of a mature online service, and the impact is well recorded in the real world.
Cloudflare reported blocking a 7.3 Tbps attack in 2025 and later said it mitigated a 31.4 Tbps attack in its Q4 2025 DDoS report. Microsoft also said Azure mitigated a 15.72 Tbps attack in October 2025, attributing the activity to the Aisuru botnet.
Behind those incidents, underground sellers are competing over the same buyers with an increasingly polished pitch. Recent underground activity analyzed by Flare researchers describe attack panels, API access, monthly plans, reseller options, customer support, botnet-backed capacity, game-server methods, and Cloudflare bypass claims.
Advertisement
A comparison of two datasets of DDoS-related underground activity from the first five months of 2023 and the first five months of 2026, shows how quickly that offer has changed. What once appeared more frequently as scripts, tutorials, leaked tools, and scattered forum posts is now more often presented as a repeatable product that is easier to buy and operate.
A DDoS attack attempts to overwhelm a website, application, network, or server with traffic from many sources at once. Some attacks target network capacity, while others focus on application layer resources such as login pages and APIs. The objective is usually simple: make the service unavailable, unstable, or expensive to operate.
DDoS-as-a-service lowers the barrier further. Instead of building infrastructure, an attacker can pay for access to a web panel, choose a target, select a duration, and rely on someone else’s botnet, proxy network, or third-party attack infrastructure.
A flow chart that illustrates how DDoS attacks work
Flare Researchers Analysis
Flare researchers searched for DDoS-related underground activity from two periods in time. The first was the fivefirst months of 2023 and the second was the first five months of 2026. The team cleaned the data, curated it and found some important insights.
Topic
Advertisement
2023
2026
Change
Volume of records
4,403
Advertisement
4,964
Slight increase
High-signal DDoS service ads
38
364
Advertisement
~10x increase
Unique ad clusters
31
123
~4x increase
Unique actors
Advertisement
15
41
~3x increase
Sources observed
22
Advertisement
43
~2x increase
An important disclaimer, in this research we focused on distributed DoS. There’s another category, which is denial of service.
Technically it is a bit different in the way a server is targeted, but the goal is the same. In this research we only focused on DDoS offerings and did our best to exclude the DoS offerings.
DDoS-as-a-service platforms are openly advertised across dark web forums and cybercrime communities — the same sources Flare monitors continuously.
Advertisement
Flare tracks underground marketplaces, botnet infrastructure chatter, and threat actor activity across thousands of dark web sources, so your security team sees emerging threats before they impact your operations.
The topics in the posts from 2023 are more diverse. Many offerings revolved around scripts, leaked tools, tutorials, or generic “botnet service” advertisements.
One repeated type of post from 2023 (as seen in the screenshot below) promoted a “Botnet Service L7 – L4” and claimed Layer 3, Layer 4, and Layer 7 capability, optional API access, automatic payments, high attack slots, game-server targeting, and bypasses for Cloudflare-related protections. The same advertising text appeared across multiple sources and actors, suggesting copying, reselling, or recycling marketing.
A post from 2023 offering Botnet services
While the post from 2023 was focused about the services, more recent posts from 2026 are focused around the price and the offering they give.
An advertisement of “SatelliteStress” described the service as an IP stresser with a user-friendly panel, API access, game-server support, and monthly plans starting at €20. The same post claimed the service was “100% botnet-powered” and did not rely on downstream APIs, a positioning meant to distinguish it from resellers that depend on another provider’s infrastructure.
Advertisement
As illustrated in the screenshot below, Areshun, which is another post that offers a “Premium DDoS Service” with Layer 4 and Layer 7 attacks, monitoring, API integration, custom plans, 24/7 support, and promotional discount codes is also pinpointed on specific service and its price.
Screenshot taken from Flare’s platform. Sign up for the free trial to access if you aren’t already a customer.
Another similar example is of “RebirthStress”, which is similarly marketed as a botnet-powered IP and web stressing device, a free Layer 7 hub, more than 400 slots, reselling suitability, and plans starting at $15 per month.
If you go over these posts, one-by-one and make the comparison, you see a distinct trend. The post in 2026 is more focused on a product, the sellers are competing one against another on customers. They package everything nicely, offer shiny features: ease of use, fully automated, full support, privacy promised, reselling capacity, and reliability.
The technical details have not disappeared, they became part of the sale pitch. In 2026 ads more commonly bundle Layer 4 and Layer 7 claims (means the service support both network-level attacks and application-layer attacks) words such as “panel,” “API,” “slots,” “bypass,” “monitoring,” “uptime,” and “support.”
One THORCC-related advertisement claimed more than 7,000 active Layer 4 bots and promoted bandwidth analytics and attack-vector statistics. Another Russian and English post presented “professional stress testing” while claiming Cloudflare and DDoS-Guard bypasses, high concurrency, and long attack durations.
Advertisement
Sellers are possibly exaggerating about their capabilities. However, the consistency of their marketing language remains important intelligence.
It shows what buyers are being encouraged to value beyond raw traffic volume, including web panels, automation, bypass claims, and the ability to launch or resell attacks with minimal effort.
The pricing of a DDoS attack in 2026 is very cheap. We’ve seen the following offers:
There are some more expensive offerings. An actor named “SamuraiDD” advertised attacks starting at $100 per day (see in the screenshot below).
Advertisement
Screenshot taken from Flare’s Platform. Sign up for the free trial to access if you aren’t already a customer.
Another actor named “POWERDDOS” used a tiered model of $5 tests, $100 per day for “weak” target, $200 per day for “medium” target, and $500 per day for “strong” or protected targets.
Lastly, we’ve also seen some “premium” offerings which included infrastructure-style targeting, including a DDoS botnet attack network advertised for $2,000.
The pattern shows a market segmented by buyer type. Cheap tests and short attacks for low-skill users, daily pricing for one-off disruption, private negotiation for longer campaigns, and higher-value infrastructure or reseller-style offers for more serious customers.
Public reporting on the booter economy (a paid DDoS-for-hire service that lets users launch attacks through someone else’s infrastructure) also aligns with this low-cost access model, with Akamai noting that some DDoS booter services can cost less than $25 per month and may offer limited trials.
Conclusions
DDoS-as-a-service is no longer only about traffic volume. The market is dropping down the entry bar, enabling easier purchase, easier operation, and easier to resell. What matters is not only how powerful an attack is, but how easy it is to launch an attack through a panel, various plans, full support, API access, and rented infrastructure.
Advertisement
This lowers the barrier for several types of actors. Low-skill users can buy short, cheap attacks. More serious customers can negotiate longer or higher-volume campaigns. Resellers can help expand the reach of the original service. As a result, defenders should not assume that disruptive DDoS activity requires a sophisticated attacker behind the keyboard.
In the near future, this market will likely continue moving toward more polished service models. As clearer pricing tiers, more automation, stronger reseller programs, and heavier branding around “bypass” capabilities and attack reliability.
Steeper discounts have resulted in the lowest prices ever on numerous M5 Pro and M5 Max 14-inch MacBook Pro configurations, with every model on sale.
Whether you’re looking for the standard M5 Pro 14-inch MacBook Pro that’s marked down to $1,999 at Amazon and B&H, or if you’d like to maximize your savings with Expercom’s record-breaking $1,300 markdown on a loaded M5 Max spec, there are a variety of deals to choose from this weekend.
You must be logged in to post a comment Login