Ukrainian Network FDN3 Launches Massive Brute-Force Attacks on SSL VPN and RDP Devices

Ukrainian network FDN3, part of a larger abusive infrastructure, launched massive brute-force and password spraying campaigns targeting SSL VPN and RDP devices between June and July 2025. This network, along with others, is believed to be operated by a common bulletproof hosting administrator, leveraging offshore locations like Seychelles for anonymity. The investigation highlights the ongoing issue of abusive activities enabled by offshore ISPs.