Dozens arrested in international DDoS-for-hire crackdown
Security

Dozens arrested in international DDoS-for-hire crackdown

Law enforcement agencies arrested 34 suspects in 13 countries, including the U.K and the U.S., as part of a crackdown last week on DDoS (distributed denial-of-service) attacks.

The arrests targeted buyers of DDoS-for-hire services, which get paid to flood websites or internet-connected systems with traffic, forcing them to go offline.

In addition to the 34 arrests, law enforcement agencies interviewed and warned another 101 individuals. Many of the suspects were under the age of 20, the European Union police agency Europol said in a Monday statement.

Most buyers of DDoS-for-hire services use them to pull pranks, often in online gaming. For example, a flood of traffic can be sent to a rival player’s IP address, severing their internet connection to a game.

But DDoS attacks can also be used for more malicious purposes. For example, hackers have used them to shut down online businesses as part of extortion schemes.

In more extreme cases, massive DDoS attacks can be used to disrupt the internet all across a country, like they did in a bombardment against DNS service provider Dyn in October that slowed access to many popular websites in the U.S.

It doesn’t help that DDoS-for-hire service have made it easy for amateurs to launch such attacks. Security firm Imperva estimates that the percentage of DDoS attacks relying on these services has risen to 93 percent.

One DDoS-for-hire service targeted in last week's crackdown was called Netspoof, according to the U.K.’s National Crime Agency. It offered subscription packages for as little as US$5 or as much as $480. Some customers were paying more than $10,000 to launch hundreds of attacks through the service, the agency said.

“Victims have included gaming providers, government departments, internet hosting companies, schools and colleges,” the agency said.

As part of the crackdown, the FBI detained a 26-year-old in California named Sean Sharma, an alleged buyer of a DDoS-for-hire service. He was charged with launching an attack against a website belonging to an unnamed San Francisco-based chat service. If convicted, Sharma could face up to 10 years in prison, the FBI said in a statement.

It's unclear how many DDoS-for-hire services were shut down as part of last week's crackdown. But the investigation also involved authorities in France, Spain, other European countries, and Australia

IDG Insider

PREVIOUS ARTICLE

«Currency demonetization hits India’s mobile phone sales

NEXT ARTICLE

PCWorld's December Digital Edition: Laptops of Luxury»
author_image
IDG Connect

IDG Connect tackles the tech stories that matter to you

Add Your Comment

Most Recent Comments

Our Case Studies

IDG Connect delivers full creative solutions to meet all your demand generatlon needs. These cover the full scope of options, from customized content and lead delivery through to fully integrated campaigns.

images

Our Marketing Research

Our in-house analyst and editorial team create a range of insights for the global marketing community. These look at IT buying preferences, the latest soclal media trends and other zeitgeist topics.

images

Poll

Should companies have Bitcoins on hand in preparation for a Ransomware attack?