Europol announced a large disruption of a dark web scam network, taking offline 373,000+ sites and seizing 105 servers. The operation targeted CSAM “as-a-service” advertising and continues work to investigate identified customers.

Europol highlighted a major international law-enforcement effort aimed at dismantling a dark web scam network used to promote CSAM “as-a-service.” The action combined extensive takedowns and technical seizures to disrupt both visibility and operational capability. According to Europol’s announcement, the crackdown resulted in 373,000+ dark web sites being knocked offline, significantly shrinking the network’s ability to reach potential customers through repeated online presence. In addition to removing that online footprint, authorities seized 105 servers associated with the operation. The server seizures were described as part of the broader disruption of infrastructure used to run or support the scam. By targeting servers as well as websites, Europol indicated the operation sought to make the network harder to restore quickly, since both hosting points and operational components were affected. Investigators said the advertised service was fraudulent. Customers who paid for the CSAM offering were reportedly not delivered the promised material, which Europol characterized as fraud rather than any functioning provision of content. This framing suggests that the network relied on payment processing and marketing assurances to extract money without fulfilling the claimed outcome. Europol also reported ongoing investigative work into identified customers. That next stage likely involves analyzing evidence collected during the operation to trace participation, payment behavior, and connections among individuals. Overall, the operation reflects coordinated action against harmful online ecosystems, showing how broad-scale takedowns and server seizures can reduce the operational reach of dark web scams and support further accountability through follow-up investigations.