The Federal Bureau of Investigation (FBI) seized the domain names of several websites associated with pirated games. Notably, NSW2U[.]com, which Nintendo has been battling for many years, was shut down.
According to TorrentFreak, the operation was conducted in collaboration with other law enforcement agencies, including the Fiscal Information and Investigation Service (a unit of the country’s Tax and Customs Administration, Belastingdienst). It is still unknown whether the operation was limited to domain confiscation or if arrests were made and charges were filed.
The FBI has seized several domain names associated with well-known piracy sites, including NSW2U[.]com, Game-2u[.]com, Bigngame[.]com, ps4pkg[.]com, mgnetu[.]com, and nswdl[.]com.
Law enforcement officials report that from February 28, 2025, to May 28, 2025, these sites facilitated 3.2 million downloads. The estimated losses for the rights holders are valued at 170 million USD.
Visitors to these sites are now greeted by a law enforcement banner notifying them of the domain seizures. Additionally, DNS servers have been updated to point to fbi.seized.gov, a domain that has previously been used in a similar manner.
The publication notes that NSW2U[.]com was added to the list of notorious pirate sites by the U.S. Trade Representative (USTR) at the beginning of 2025, while the three other domains were mentioned in documents as “related sites.”
Usually, in such matters, the USTR relies on the opinions of rights holders. In this case, these domains were pointed out by the Entertainment Software Association (ESA) — an American association of software and computer game producers. In its recommendation, the ESA mentioned that NSW2U links to game-2u[.]com, ps4pkg[.]com, and BigNGame[.]com, which also provide access to pirated games.
Journalists report that the connection between the domains is quite real. The fact is that NSW2U mainly focuses on releases for the Nintendo Switch and was associated with other domains specializing in different platforms.
According to the ESA, which represents the interests of Nintendo, Sony, and Microsoft, NSW2U hosted thousands of links to pirated games. Among them were many well-known titles, whose leaks occurred before their official release date.
“This kind of ‘pre-release’ piracy is particularly harmful to ESA member companies, as it allows site users to download pirated copies of video games before consumers have the opportunity to select and purchase a legitimate copy,” stated representatives of the association.
2025.03.16 — Researchers force DeepSeek to write malware
According to Tenable, the AI chatbot DeepSeek R1 from China can be used to write malware (e.g. keyloggers and ransomware). DeepSeek was released in January 2025 and caused a stir…
Full article →
2025.04.15 — Hackers exploit authentication bypass bug in OttoKit WordPress plugin
Hackers exploit an authentication bypass vulnerability in the OttoKit (formerly SureTriggers) WordPress plugin used by more than 100,000 websites. First attacks were recorded just…
Full article →
2025.02.12 — 2.8 million IP addresses used to brute-force network devices
The Shadowserver Foundation warns of a massive web login brute-forcing attacks targeting nearly 2.8 million IP addresses per day. Unknown attackers are seeking…
Full article →
2025.01.25 — 18,000 script kiddies have been infected with backdoor via XWorm RAT builder
According to CloudSEK analysts, malefactors attack novice hackers using a fake malware builder. Script kiddies' systems become infected with a backdoor that steals data and subsequently…
Full article →
2025.02.23 — New JavaScript obfuscation technique uses invisible Unicode characters
According to Juniper Threat Labs , a new JavaScript obfuscation technique that uses invisible Unicode characters was used in a phishing attack targeting Political Action…
Full article →
2025.02.21 — Microsoft fixes vulnerability in Power Pages exploited by cybercriminals
Microsoft patched a severe privilege escalation vulnerability in Power Pages used by hackers as a 0-day. The vulnerability tracked as CVE-2025-24989 (CVSS score 8.2) pertains…
Full article →
2025.01.26 — Cisco patched a critical vulnerability in Meeting Management
Cisco released updates to fix a critical (CVSS score: 9.9) vulnerability in Meeting Management. The bug enables an unprivileged remote authenticated attacker to gain administrative privileges. The vulnerability…
Full article →
2025.01.23 — Fake Telegram CAPTCHA forces users to run malicious PowerShell scripts
Hackers used the news of Ross Ulbricht pardoning to lure users to a rogue Telegram channel where they are tricked into running malicious PowerShell code. This…
Full article →
2025.04.01 — Hackers abuse MU plugins to inject malicious payloads to WordPress
According to Sucuri, hackers store malicious code in the MU-plugins (Must-Use Plugins) directory in WordPress and execute it while remaining undetected. The technique was first discovered…
Full article →
2025.01.28 — J-magic backdoor attacked Juniper Networks devices using 'magic packets'
A massive backdoor attack targeting Juniper routers often used as VPN gateways has been uncovered. The devices were attacked by the J-magic malware that…
Full article →