2014, Cybercrime and DDOS - Cyber Security Informer

The Dutch police took down 15 DDoS-for-hire services in a week

Security Affairs

APRIL 13, 2020

Dutch authorities have taken down 15 DDoS-for-hire services in a week, this is another success of law enforcement in the fight against cybercrime. An operation conducted by Dutch authorities last week has shut down 15 DDoS-for-hire services (aka DDoS booters or DDoS stressor), states a press release published by Dutch police.

DDOS

DDOS Cybercrime Advertising Government

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. Upon installing the threat, the bot drops a file in /tmp/.pwned

DDOS

DDOS Architecture Malware Cybercrime

AWS mitigated largest DDoS attack ever of 2.3 Tbps

Security Affairs

JUNE 17, 2020

Tbps DDoS attack, the largest ever, which surpassed the previous record of 1.7 Amazon announced it has mitigated the largest ever DDoS attack of 2.3 ” The report didn’t name the target of the DDoS attack, AWS experts only revealed that the magnitude was obtained with CLDAP reflection attack. Pierluigi Paganini.

DDOS

DDOS Advertising Internet Internet

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. Image: SentinelOne.com.

DDOS

DDOS Internet Internet Government

The operator of DDoS-for-hire service pleads guilty

Security Affairs

MARCH 3, 2019

Usatyuk developed and operated other DDoS-for-hire services with a co-conspirator between August 2015 and November 2017. The list of illegal DDoS-for-hire services operated by the man includes ExoStress.in (“ ExoStresser ”), QuezStresser.com, Betabooter.com (“ Betabooter ”), Databooter.com, Instabooter.com, Polystress.com, and Zstress.net.

DDOS

DDOS Advertising Cybercrime Cyber Attacks

Developer of DDoS Mirai based botnets sentenced to prison

Security Affairs

JUNE 26, 2020

A man accused to have developed distributed denial of service (DDoS) botnets based on the Mirai botnet was sentenced to 13 months in federal prison. Schuchman compromised hundreds of thousands of IoT devices, including home routers and IP cameras, to create multiple DDoS IoT botnets that he rented to carry out the attacks.

DDOS

DDOS IoT Advertising Internet

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Krebs on Security

APRIL 30, 2024

Finnish prosecutors quickly zeroed in on a suspect: Julius “Zeekill” Kivimäki , a notorious criminal hacker convicted of committing tens of thousands of cybercrimes before he became an adult. After being charged with the attack in October 2022, Kivimäki fled the country. Kivimäki was 15 years old at the time.

DDOS

DDOS Cybercrime Hacking Passwords

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Security Affairs

OCTOBER 3, 2019

Dutch police seized a bulletproof hosting service in a major takedown, the infrastructure was used by tens of IoT botnets involved in DDoS attacks. The servers were hosted at an unnamed data center in Amsterdam, it was used by tens of IoT botnets involved in DDoS attacks worldwide. ” continues the statement. Pierluigi Paganini.

DDOS

DDOS IoT Cybercrime Advertising

Finland’s Most-Wanted Hacker Nabbed in France

Krebs on Security

FEBRUARY 5, 2023

A notorious hacker convicted of perpetrating tens of thousands of cybercrimes, Kivimäki had been in hiding since October 2022, when he failed to show up in court and Finland issued an international warrant for his arrest. The DDoS-for-hire service allegedly operated by Kivimäki in 2012. Kivimäki was 15 years old at the time.

Cybercrime

Cybercrime DDOS Hacking Accountability

Law enforcement take down 15 DDoS-for-Hire services

Security Affairs

DECEMBER 22, 2018

The Department of Justice (DoJ) announced that the FBI seized 15 domains associated with DDoS-for-hire services. The FBI has seized 15 domains associated with DDoS-for-hire services (aka booters or stressers ) that were used by their customers to launch powerful DDoS attacks. Authorities Take Down 15 DDoS-for-Hire Websites.

DDOS

DDOS Advertising Internet Internet

Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure

Security Affairs

NOVEMBER 11, 2019

Researchers from Radware reported that massive TCP SYN-ACK DDoS reflection attacks hit Amazon, SoftLayer and telecom infrastructure in the last month. Researchers from Radware are warning of a wave of TCP SYN-ACK DDoS reflection attacks that in the last 30 days hit Amazon, SoftLayer and telecom infrastructure. Pierluigi Paganini.

DDOS

DDOS Telecommunications Advertising Cybercrime

Duke-Cohan sentenced to three years in prison due to false bomb threats and DDoS

Security Affairs

DECEMBER 10, 2018

The British teenager George Duke-Cohan (19) has been sentenced to three years in prison due to false bomb threats and carrying out DDoS attacks. The team was offering a DDoS-for-hire service that has many similarities with the booter implemented by the popular Lizard Squad hacking crew. Security Affairs – cybercrime, DDoS).

DDOS

DDOS Advertising Cybercrime Hacking

A few dollars to bring down sites with new Bushido-based DDoS-for-hire service

Security Affairs

OCTOBER 27, 2018

Security researchers at FortiGuard Labs have discovered a new DDoS-for-hire service called “ 0x-booter” built with leaked code that implements an easy to use interface. “ The DDoS-for-hire service allows users to power different attacks, primarily at the Transport and Application layers. ” .

DDOS

DDOS IoT Advertising Hacking

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Shortly after that, those same servers came under a sustained distributed denial-of-service (DDoS) attack. Chaput said whoever was behind the DDoS was definitely not using point-and-click DDoS tools, like a booter or stresser service. A DIRECT QUOT The domain quot[.]pw billion last year.

Scams

Scams DDOS Cryptocurrency Accountability

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a

Cybercrime

Cybercrime Banking Computers and Electronics DDOS

Anonymous Belgium hacker identified after dropping USB drive while throwing Molotov cocktail

Security Affairs

JUNE 25, 2019

The Anonymous member is a 35-year-old man from Roeselare, Belgium, was arrested after throwing a Molotov cocktail at the Crelan Bank office in Rumbeke, back in 2014. the police raided his house and investigated into his computer and electronic devices revealing a long cybercrime activity.

DDOS

DDOS Banking Computers and Electronics Cybercrime

The author of the Mirai botnet gets six months of house arrest

Security Affairs

OCTOBER 30, 2018

million in compensation for DDoS attacks against the systems of Rutgers University. million in compensation for DDoS attacks against the systems of Rutgers University. In September, Jha and two accomplices admitted to be the authors of the infamous botnet and avoided the jail after helping feds in another cybercrime investigations.

DDOS

DDOS IoT Advertising Malware

Mirai authors avoid the jail by helping US authorities in other investigations

Security Affairs

SEPTEMBER 19, 2018

Three men who admitted to being the authors of the Mirai botnet avoided the jail after helping the FBI in other cybercrime investigations. Now three individuals who admitted to being the authors of the infamous botnet avoided the jail after helping feds in another cybercrime investigations. ” continues the press release.

Cybercrime

Cybercrime DDOS Cryptocurrency Advertising

Top Zeus Botnet Suspect “Tank” Arrested in Geneva

Krebs on Security

NOVEMBER 15, 2022

Wanted Ukrainian cybercrime suspect Vyacheslav “Tank” Penchukov (right) was arrested in Geneva, Switzerland. Penchukov was named in a 2014 indictment by the U.S. Ultimately, Penchukov’s political connections helped him evade prosecution by Ukrainian cybercrime investigators for many years.

Banking

Banking Small Business Accountability Cybercrime

Creator of multiple IoT botnets, including Satori, pleaded guilty

Security Affairs

SEPTEMBER 4, 2019

Kenneth Currin Schuchman (21) from Vancouver, Washington pleaded guilty to creating and operating multiple DDoS IoT botnet , including Satori. Kenneth Currin Schuchman (21) from Vancouver, Washington, aka Nexus Zeta, pleaded guilty to creating and operating multiple DDoS IoT botnets. SecurityAffairs – Satori, cybercrime).

IoT

IoT DDOS Internet Internet

Security Affairs newsletter Round 253

Security Affairs

MARCH 1, 2020

Raccoon Malware, a success case in the cybercrime ecosystem. Silence Hacking Crew threatens Australian banks of DDoS attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Lampion malware v2 February 2020.

Banking

Banking Advertising Malware Ransomware

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

MAY 30, 2022

The botnet was first discovered by Fortinet in March, the DDoS botnet targeted several routers and web servers by exploiting known vulnerabilities. The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion. Upon installing the threat, the bot drops a file in /tmp/.pwned

Malware

Malware DDOS IoT Cybercrime

Security Affairs newsletter Round 251

Security Affairs

FEBRUARY 16, 2020

Massive DDoS attack brought down 25% Iranian Internet connectivity. Safer internet day – Cybercrime facts Infographic. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. A new round of the weekly newsletter arrived!

Cyber Attacks

Cyber Attacks Banking Advertising Internet

Hackers targeted the US Census Bureau network, DHS report warns

Security Affairs

OCTOBER 11, 2020

.” In the past, the US Census has been hit by attacks, such as hacks and DDoS attacks during a 2018 test of census systems attributed to Russia-linked hackers and a 2015 hack attributed to the Anonymous collective. The HTA report warns of an intensification of malicious activities conducted by both nation-states and cybercrime groups.

Government

Government Advertising Hacking Data collection

AESDDoS bot exploits CVE-2019-3396 flaw to hit Atlassian Confluence Server

Security Affairs

APRIL 28, 2019

Threat actors leverage the vulnerability to install denial of service (DDoS) malware and crypto-currency miners, and to remotely execute code. ” The AESDDoS bot involved in the recent attacks has the ability to launch several types of DDoS attacks, including SYN, LSYN, UDP, UDPS, and TCP flood. . Pierluigi Paganini.

DDOS

DDOS Malware Advertising Software

British hacker sentenced to jail for attack on Liberian Telecoms firms

Security Affairs

JANUARY 11, 2019

An employee of the rival firm Cellcom paid Kaye to carry out a DDoS attack on the Liberian phone and internet provider Lonestar. Daniel Kaye admitted that the DDoS attack aimed at the African telco company inadvertently isolated Liberia from the Internet. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS Telecommunications Advertising Internet

Security Affairs newsletter Round 199 – News of the week

Security Affairs

FEBRUARY 3, 2019

Cobalt cybercrime gang abused Google App Engine in recent attacks. Law enforcement worldwide hunting users of DDoS-for-Hire services. Imperva mitigated DDoS attack generated 500 Million Packets per Second, the largest ever. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. 20% discount.

DDOS

DDOS Data breaches Advertising Cybercrime

Ukrainian police dismantled a bot farm involved in multiple spam campaigns

Security Affairs

OCTOBER 3, 2019

Cybercrime is a prolific business, criminal organizations continues to make profits with illegal activities in the cyberspace, but police are ready to contrast them. The servers were hosted at an unnamed data center in Amsterdam, it was used by tens of IoT botnets involved in DDoS attacks worldwide. . “Cyber ??

Cybercrime

Cybercrime VPN Advertising Accountability

Security Service of Ukraine arrested the popular hacker Sanix who sold billions of stolen credentials

Security Affairs

MAY 20, 2020

The man is known in the cybercrime underground for selling billions of stolen credentials. Sanix has been active on the cybercrime underground at least since 2018, he focuses in the sale of stolen data from organizations. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Cybercrime

Cybercrime Passwords Advertising Hacking

Security Affairs newsletter Round 186 – News of the week

Security Affairs

OCTOBER 28, 2018

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS IoT Advertising Media

A new Adwind variant involved in attacks on US petroleum industry

Security Affairs

OCTOBER 1, 2019

The Adwind RAT was first discovered early 2012, the experts dubbed it Frutas RAT and later it was identified with other names, Unrecom RAT (February 2014), AlienSpy (October 2014), and recently JSocket RAT (June 2015). DDoS attacks, brute-forcing attacks). The malware uses delivers RAT payloads via nested JAR archives. .”

Malware

Malware Advertising DDOS Cybercrime

Underestimating the FONIX – Ransomware as a Service could be an error

Security Affairs

OCTOBER 11, 2020

The actors behind FONIX RaaS advertised several products on various cybercrime forums. Currently, FONIX does not appear to be threatening victims with additional consequences (such as public data exposure or DDoS attacks) for non-compliance.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Encryption Advertising DDOS

Exclusive – MalwareMustDie Team analyzed the Cayosin Botnet and its criminal ecosystem

Security Affairs

FEBRUARY 9, 2019

One of them is the Layer 7 (HTTP) Attack reported in the picture below documenting how this kind of malware can evade the anti-DDoS solutions like Cloudfare. They seem interested in building tools to DDoS and boast about taking down services with OVH, Choopa, NFO – and if the hype is real, maybe even Rocket League servers.”.

DDOS

DDOS IoT Advertising Penetration Testing

Security Affairs newsletter Round 248

Security Affairs

JANUARY 26, 2020

For the second time in a few days, Greek Government websites hit by DDoS attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Cisco Webex flaw allows unauthenticated remote attackers to join private meetings.

Data breaches

Data breaches Advertising Antivirus DDOS

Security Affairs newsletter Round 240

Security Affairs

NOVEMBER 17, 2019

Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure. TA505 Cybercrime targets system integrator companies. DDoS-for-Hire Services operator sentenced to 13 months in prison. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS Spyware Advertising Ransomware

Experts spotted a new Mirai variant that targets new processors

Security Affairs

APRIL 10, 2019

The new samples also use a new “TCP SYN” DDoS attack option called “attack_method_ovh.” The improvements observed by the experts will expand the number of potential targets giving the attackers more DDoS firepower and posing a severe risk to the Internet infrastructure. ” continues the analysis. Pierluigi Paganini.

Architecture

Architecture DDOS IoT Internet

ElectrumDoSMiner botnet reached 152,000 hosts

Security Affairs

APRIL 29, 2019

Researchers at Malwarebytes are monitoring the evolution of the ElectrumDoSMiner DDoS botnet that reached 152,000 infected hosts. MalwareBytes researchers are closely monitoring attacks against users of the popular Electrum Bitcoin wallet, in particular, the evolution of the Electrum DDoS botnet. Pierluigi Paganini.

DDOS

DDOS Advertising Cyber Attacks Malware

Group with numerous faces: chronicle of UltraRank’s deceptive JS-sniffer campaigns

Security Affairs

AUGUST 27, 2020

In the context of UltraRank, the report exemplifies the JS-sniffers’ transformation from a minor online threat into a complex one supported by organized cybercrime. Cybercrime prodigy. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Banking

Banking Cybercrime Marketing Advertising

New Linux/DDosMan threat emerged from an evolution of the older Elknot

Security Affairs

APRIL 1, 2019

The popular expert unixfreaxjp analyzed a new China ELF DDoS’er malware tracked as “Linux/DDoSMan” that evolves from the Elknot malware to deliver new ELF bot. The code seems inspired from multiple source code of China basis DDoS client, like Elknot. Figure 2: The C2 software for Linux DDoS. On the MMD blog.

DDOS

DDOS Malware Encryption Penetration Testing

Security Affairs newsletter Round 210 – News of the week

Security Affairs

APRIL 21, 2019

A new DDoS technique abuses HTML5 Hyperlink Audit Ping in massive attacks. Operator of Codeshop Cybercrime Marketplace Sentenced to 90 months in prison. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Computers and Electronics

Computers and Electronics Data breaches Advertising Spyware

Reassessing cyberwarfare. Lessons learned in 2022

SecureList

DECEMBER 14, 2022

For instance, in late 2013 and January 2014, we observed higher-than-normal activity in Ukraine by the Turla APT group, as well as a spike in the number of BlackEnergy APT sightings. Taking sides: professional ransomware groups, hacktivists, and DDoS attacks. As soon as the attack stops, the target website becomes available again.

DDOS

DDOS Ransomware Government Energy and Utilities

The Link Between AWM Proxy & the Glupteba Botnet

Krebs on Security

JUNE 28, 2022

There is also ample evidence to suggest that Glupteba may have spawned Meris , a massive botnet of hacked Internet of Things (IoT) devices that surfaced in September 2021 and was responsible for some of the largest and most disruptive distributed denial-of-service (DDoS) attacks the Internet has ever seen. But on Dec.

Passwords

Passwords Malware Internet Internet

Security Affairs newsletter Round 283

Security Affairs

SEPTEMBER 27, 2020

IoT

IoT Banking Advertising Ransomware

Phishers prefer Tesla, top 3 malware strains in Coronavirus phishing campaigns

Security Affairs

APRIL 9, 2020

Group-IB Threat Intelligence has tracked down more than 500 posts on underground forums in which users offered coronavirus discounts and promotional codes on DDoS, spamming, and other services to stimulate demand, affected by the pandemic. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Phishing

Phishing Malware Spyware DDOS

The Dutch police took down 15 DDoS-for-hire services in a week

Enemybot, a new DDoS botnet appears in the threat landscape

Trending Sources

AWS mitigated largest DDoS attack ever of 2.3 Tbps

Stark Industries Solutions: An Iron Hammer in the Cloud

The operator of DDoS-for-hire service pleads guilty

Developer of DDoS Mirai based botnets sentenced to prison

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Finland’s Most-Wanted Hacker Nabbed in France

Law enforcement take down 15 DDoS-for-Hire services

Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure

Duke-Cohan sentenced to three years in prison due to false bomb threats and DDoS

A few dollars to bring down sites with new Bushido-based DDoS-for-hire service

Interview With a Crypto Scam Investment Spammer

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Anonymous Belgium hacker identified after dropping USB drive while throwing Molotov cocktail

The author of the Mirai botnet gets six months of house arrest

Mirai authors avoid the jail by helping US authorities in other investigations

Top Zeus Botnet Suspect “Tank” Arrested in Geneva

Creator of multiple IoT botnets, including Satori, pleaded guilty

Security Affairs newsletter Round 253

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs newsletter Round 251

Hackers targeted the US Census Bureau network, DHS report warns

AESDDoS bot exploits CVE-2019-3396 flaw to hit Atlassian Confluence Server

British hacker sentenced to jail for attack on Liberian Telecoms firms

Security Affairs newsletter Round 199 – News of the week

Ukrainian police dismantled a bot farm involved in multiple spam campaigns

Security Service of Ukraine arrested the popular hacker Sanix who sold billions of stolen credentials

Security Affairs newsletter Round 186 – News of the week

A new Adwind variant involved in attacks on US petroleum industry

Underestimating the FONIX – Ransomware as a Service could be an error

Exclusive – MalwareMustDie Team analyzed the Cayosin Botnet and its criminal ecosystem

Security Affairs newsletter Round 248

Security Affairs newsletter Round 240

Experts spotted a new Mirai variant that targets new processors

ElectrumDoSMiner botnet reached 152,000 hosts

Group with numerous faces: chronicle of UltraRank’s deceptive JS-sniffer campaigns

New Linux/DDosMan threat emerged from an evolution of the older Elknot

Security Affairs newsletter Round 210 – News of the week

Reassessing cyberwarfare. Lessons learned in 2022

The Link Between AWM Proxy & the Glupteba Botnet

Security Affairs newsletter Round 283

Phishers prefer Tesla, top 3 malware strains in Coronavirus phishing campaigns

Stay Connected