if you know the suspect addresses
Something is not being explained.
Can just 30 addresses really be a major problem? It should be real easy to block 30 addresses.
If not blocked by the local ISP, it can be blocked at the ISP outside Russia.
There are companies that sell real time reputation checking services - both as an ISP service and as a firewall feature.
It is easy to speak ill of Russia and China and forget the other players. There is no commitment from the USA, Israel, India and the EU to resist the temptation to hack their enemies.
Lead by example.