2014, DDOS and Internet - Cyber Security Informer

Booter Boss Interviewed in 2014 Pleads Guilty

Krebs on Security

FEBRUARY 28, 2019

A 20-year-old Illinois man has pleaded guilty to running multiple DDoS-for-hire services that launched millions of attacks over several years. net prior to our phone call in 2014. But Usatyuk’s involvement in the DDoS-for-hire space very much predates that period. Usatyuk of Orland Park, Ill. in , quezstresser[.]com

DDOS

DDOS Computers and Electronics Internet Internet

Massive DDoS attack brought down 25% Iranian Internet connectivity

Security Affairs

FEBRUARY 9, 2020

Iran comes under cyber-attack again, a massive offensive brought down a large portion of the Iranian access to the Internet. Iran infrastructures are under attack, a massive cyberattack brought down a large portion of the Iranian access to the Internet, according to the experts the national connectivity fell to 75%.

DDOS

DDOS Internet Internet Telecommunications

DDoS-for-Hire Boss Gets 13 Months Jail Time

Krebs on Security

NOVEMBER 20, 2019

A 21-year-old Illinois man was sentenced last week to 13 months in prison for running multiple DDoS-for-hire services that launched millions of attacks over several years. Justice Department, in just the first 13 months of the 27-month long conspiracy, Usatyuk’s booter users ordered approximately 3,829,812 DDoS attacks.

DDOS

DDOS Internet Internet Advertising

Courts Hand Down Hard Jail Time for DDoS

Krebs on Security

JANUARY 14, 2019

On Friday, a 34-year-old Connecticut man received a whopping 10-year prison sentence for carrying out distributed denial-of-service (DDoS) attacks against a number of hospitals in 2014. According to court testimony, Kaye was hired in 2015 to attack Lonestar , Liberia’s top mobile phone and Internet provider. Daniel Kaye.

DDOS

DDOS Internet Internet Spyware

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. Image: SentinelOne.com.

DDOS

DDOS Internet Internet Government

AWS mitigated largest DDoS attack ever of 2.3 Tbps

Security Affairs

JUNE 17, 2020

Tbps DDoS attack, the largest ever, which surpassed the previous record of 1.7 Amazon announced it has mitigated the largest ever DDoS attack of 2.3 ” The report didn’t name the target of the DDoS attack, AWS experts only revealed that the magnitude was obtained with CLDAP reflection attack. Pierluigi Paganini.

DDOS

DDOS Advertising Internet Internet

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. Upon installing the threat, the bot drops a file in /tmp/.pwned

DDOS

DDOS Architecture Malware Cybercrime

Experts warn of surge in DDoS attacks targeting education institutions

Security Affairs

SEPTEMBER 15, 2020

Experts warn of a surge in the DDoS attacks against education institutions and the academic industry across the world. The DDoS attacks are causing severe issues to the targeted education institutions such as temporarily takedown of the network and online classes. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Education

Education DDOS Advertising Cyber Attacks

FBI warns cyber actors abusing protocols as new DDoS attack vectors

Security Affairs

JULY 27, 2020

The FBI issued an alert last week warning about the discovery of new network protocols that have been exploited to launch large-scale DDoS attacks. The Federal Bureau of Investigation sent an alert last week warning about large-scale distributed denial of service (DDoS) attacks that abused new network protocols. continues the report.

DDOS

DDOS IoT Internet Internet

New Zealand stock exchange (NZX) halted 2 days by DDoS attack

Security Affairs

AUGUST 27, 2020

New Zealand’s stock exchange (NZX) confirmed it was hit by a massive distributed denial of service (DDoS) attack from abroad that knocked it offline two days. The DDoS attack impacted traders, anyway financial or personal information of the users was not accessed. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS Marketing Advertising Internet

New Lucifer DDoS botnet targets Windows systems with multiple exploits

Security Affairs

JUNE 26, 2020

Upon infecting a system the bot turns it into a cryptomining client and could use it to launch distributed denial-of-service (DDoS) attacks. The malware author named the bot Satan DDoS, but Palo Alto Network’s Unit42 researchers dubbed it Lucifer because there’s another malware with the same name, the Satan Ransomware.

DDOS

DDOS Malware Advertising Passwords

Hoaxcalls Botnet expands the target list and adds new DDoS capabilities

Security Affairs

APRIL 24, 2020

The Hoaxcalls IoT botnet expanded the list of targeted devices and has added new distributed denial of service (DDoS) capabilities. The botnet was initially designed to launch DDoS attacks using UDP, DNS and HEX floods. Experts also noticed that the new variant implements 16 new DDoS capabilities. ” Radware concludes.

DDOS

DDOS IoT Advertising DNS

Developer of DDoS Mirai based botnets sentenced to prison

Security Affairs

JUNE 26, 2020

A man accused to have developed distributed denial of service (DDoS) botnets based on the Mirai botnet was sentenced to 13 months in federal prison. Schuchman compromised hundreds of thousands of IoT devices, including home routers and IP cameras, to create multiple DDoS IoT botnets that he rented to carry out the attacks.

DDOS

DDOS IoT Advertising Internet

DDoS-for-Hire Services operator sentenced to 13 months in prison

Security Affairs

NOVEMBER 15, 2019

the administrator of DDoS-for-hire services was sentenced to 13 months in prison, and additional three years of supervised release. Usatyuk , a man that was operating several DDoS-for-hire services was sentenced to 13 months in prison, and additional three years of supervised release. Sergiy P. , hours of network downtime.

DDOS

DDOS Computers and Electronics Advertising Internet

T-Mobile suffered a major outage in the US allegedly caused by a massive DDoS attack

Security Affairs

JUNE 16, 2020

Wireless carrier T-Mobile suffered a major outage in the United States, that impacted service at other carriers, due to a “massive” DDoS attack. Wireless carrier T-Mobile suffered a massive DDoS attack that caused a major outage in the United States that impacted service at other carriers due to a “massive” DDoS attack.

DDOS

DDOS Mobile Wireless Advertising

Law enforcement take down 15 DDoS-for-Hire services

Security Affairs

DECEMBER 22, 2018

The Department of Justice (DoJ) announced that the FBI seized 15 domains associated with DDoS-for-hire services. The FBI has seized 15 domains associated with DDoS-for-hire services (aka booters or stressers ) that were used by their customers to launch powerful DDoS attacks. Authorities Take Down 15 DDoS-for-Hire Websites.

DDOS

DDOS Advertising Internet Internet

SANDMAN AND FINEPROXY BEHIND THE DDOS ATTACKS AGAINST TIMETV.LIVE

Security Affairs

APRIL 28, 2020

Timetv.live is the latest Azeri news site targeted by Denial of Service (DDoS) attacks launched by Sandman threat actor, the attack took place on March 21, 2020. Just like many other DDoS attacks we have seen in the past against Azeri media, the attacker monitors the success of the floods using the HostTracker service.

DDOS

DDOS Media VPN Advertising

The operator of DDoS-for-hire service pleads guilty

Security Affairs

MARCH 3, 2019

Usatyuk developed and operated other DDoS-for-hire services with a co-conspirator between August 2015 and November 2017. The list of illegal DDoS-for-hire services operated by the man includes ExoStress.in (“ ExoStresser ”), QuezStresser.com, Betabooter.com (“ Betabooter ”), Databooter.com, Instabooter.com, Polystress.com, and Zstress.net.

DDOS

DDOS Advertising Cybercrime Cyber Attacks

Brazil expert discovers Oracle flaw that allows massive DDoS attacks

Security Affairs

OCTOBER 17, 2018

million servers running the RPCBIND service from being used in amplified DDoS attacks. The exploitation of this vulnerability could cause major problems on the Internet. million servers running RPCBIND on the Internet. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

DDOS

DDOS Internet Internet System Administration

Imperva mitigated DDoS attack generated 500 Million Packets per Second, the largest ever

Security Affairs

JANUARY 30, 2019

Imperva mitigated a SYN flood DDoS attack against one of its clients that exceeded 500 million packets per second, this is the largest ever. This attack was a SYN flood DDoS and it is the largest DDoS attack by packet volume ever observed. . Since today, the 2018 GitHub DDoS attack that peaked 1.35 or instance.

DDOS

DDOS Advertising Internet Internet

The Now-Defunct Firms Behind 8chan, QAnon

Krebs on Security

OCTOBER 22, 2020

Some of the world’s largest Internet firms have taken steps to crack down on disinformation spread by QAnon conspiracy theorists and the hate-filled anonymous message board 8chan. based Internet Service Provider that serves as N.T. Technology’s colocation provider and sole connection to the larger Internet.

Internet

Internet Internet Technology DDOS

China used the Great Cannon DDoS Tool against forum used by Hong Kong protestors

Security Affairs

DECEMBER 5, 2019

China is accused to have used the “Great Cannon” DDoS tool to launch attacks against LIHKG , a forum used by Hong Kong residents to organize protests. The last time the Great Cannon was used by the Chinese authorities was in 2017 when it was involved in DDoS attacks on the Mingjingnews.com site, a US-based Chinese media outlet.

DDOS

DDOS Firewall Advertising Government

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

Security Affairs

FEBRUARY 3, 2020

L inear eMerge E3 smart building access systems designed by N ortek Security & Control (NSC) are affected by a severe vulnerability (CVE-2019-7256) that has yet to be fixed and attackers are actively scanning the internet for vulnerable devices. Passwords can be found in p roduct documentation and compiled lists available on the Internet.”

DDOS

DDOS Hacking Internet Internet

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Security Affairs

OCTOBER 3, 2019

Dutch police seized a bulletproof hosting service in a major takedown, the infrastructure was used by tens of IoT botnets involved in DDoS attacks. The servers were hosted at an unnamed data center in Amsterdam, it was used by tens of IoT botnets involved in DDoS attacks worldwide. ” continues the statement. Pierluigi Paganini.

DDOS

DDOS IoT Cybercrime Advertising

Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure

Security Affairs

NOVEMBER 11, 2019

Researchers from Radware reported that massive TCP SYN-ACK DDoS reflection attacks hit Amazon, SoftLayer and telecom infrastructure in the last month. Researchers from Radware are warning of a wave of TCP SYN-ACK DDoS reflection attacks that in the last 30 days hit Amazon, SoftLayer and telecom infrastructure. Pierluigi Paganini.

DDOS

DDOS Telecommunications Advertising Cybercrime

A few dollars to bring down sites with new Bushido-based DDoS-for-hire service

Security Affairs

OCTOBER 27, 2018

Security researchers at FortiGuard Labs have discovered a new DDoS-for-hire service called “ 0x-booter” built with leaked code that implements an easy to use interface. “ The DDoS-for-hire service allows users to power different attacks, primarily at the Transport and Application layers. ” .

DDOS

DDOS IoT Advertising Hacking

Massive increase in XorDDoS Linux malware in last six months

Malwarebytes

MAY 25, 2022

XorDDoS, a Linux Trojan known for its modularity and stealth, was first discovered in 2014 by the white hat research group, MalwareMustDie (MMD). DDoS attacks have become instrumental in successfully distracting organizations and security experts from figuring out threat actors’ end goal: Malware deployment or system infiltration.

Malware

Malware IoT DDOS DNS

10 Takeaways From The 2014 Verizon Breach Report

SiteLock

AUGUST 27, 2021

According to the report “Web applications remain the proverbial punching bag of the Internet. WordPress, or Drupal) to gain control of servers for use in DDoS campaigns.”. Out of nearly 4,000 web app exploits investigated, more than 10% involved the exposure of data.

Retail

Retail Data breaches DDOS Passwords

The CallStranger UPnP vulnerability affects billions of devices

Security Affairs

JUNE 9, 2020

that affects billions of devices, it could be exploited by attackers to carry out multiple malicious activities, including distributed denial-of-service (DDoS) attacks and data exfiltration. The researcher believes that botnets might soon start exploiting the flaw to launch DDoS attacks abusing end-user devices. Pierluigi Paganini.

DDOS

DDOS Internet Internet Advertising

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Chaput said the spammers used more than 1,500 Internet addresses across 400 providers to register new accounts, which then followed popular accounts on Mastodon and sent private mentions to the followers of those accounts. Shortly after that, those same servers came under a sustained distributed denial-of-service (DDoS) attack.

Scams

Scams DDOS Cryptocurrency Accountability

Bot list with Telnet credentials for more than 500,000 servers and IoT devices leaked online

Security Affairs

JANUARY 19, 2020

According to ZDNet that first published the news, the list was leaked on a popular hacking forum by the operator of a DDoS booter service. The list appears to be the result of an Internet scan for devices using default credentials or easy-to-guess passwords. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

IoT

IoT DDOS InfoSec Internet

250 Webstresser Users to Face Legal Action

Krebs on Security

FEBRUARY 1, 2019

. “Size does not matter – all levels of users are under the radar of law enforcement, be it a gamer booting out the competition out of a game, or a high-level hacker carrying out DDoS attacks against commercial targets for financial gain,” Europol officials warned.

Computers and Electronics

Computers and Electronics DDOS Internet Internet

Hacker who disrupted Sony gaming gets a 27-months jail sentence

Security Affairs

JULY 4, 2019

Austin Thompson (23) from Utah, the hacker who carried out massive DDoS attacks on Sony, EA, and Steam gets a 27-months prison sentence. The hacker who brought offline with massive DDoS attacks online gaming networks between December 2013 and January 2014 has been sentenced to 27 months in prison. SecurityAffairs – Sony, DDoS).

DDOS

DDOS Computers and Electronics Advertising Internet

InfectedSlurs botnet targets QNAP VioStor NVR vulnerability

Security Affairs

DECEMBER 17, 2023

In November, Akamai warned of a new Mirai -based DDoS botnet, named InfectedSlurs , actively exploiting two zero-day vulnerabilities to infect routers and video recorder (NVR) devices. released June 21, 2014). The Mirai-based botnet InfectedSlurs was spotted targeting QNAP VioStor NVR (Network Video Recorder) devices. and earlier (5.0.0

Firmware

Firmware Wireless DDOS IoT

British hacker sentenced to jail for attack on Liberian Telecoms firms

Security Affairs

JANUARY 11, 2019

An employee of the rival firm Cellcom paid Kaye to carry out a DDoS attack on the Liberian phone and internet provider Lonestar. Daniel Kaye admitted that the DDoS attack aimed at the African telco company inadvertently isolated Liberia from the Internet. SecurityAffairs – Liberia, DDoS). ” reported the BBC.

DDOS

DDOS Telecommunications Advertising Internet

Creator of multiple IoT botnets, including Satori, pleaded guilty

Security Affairs

SEPTEMBER 4, 2019

Kenneth Currin Schuchman (21) from Vancouver, Washington pleaded guilty to creating and operating multiple DDoS IoT botnet , including Satori. Kenneth Currin Schuchman (21) from Vancouver, Washington, aka Nexus Zeta, pleaded guilty to creating and operating multiple DDoS IoT botnets.

IoT

IoT DDOS Internet Internet

3 Dangerous Myths About DDoS Attacks

NopSec

APRIL 13, 2017

Distributed denial of service (DDoS) attacks are a growing but frequently misunderstood threat in the cybersecurity world. Defined generally, a DDoS attack occurs when an adversary directs traffic that is either large in volume or ill-formed against a service in order to render that service unavailable to legitimate users.

DDOS

DDOS Internet Internet IoT

Security Affairs newsletter Round 251

Security Affairs

FEBRUARY 16, 2020

Massive DDoS attack brought down 25% Iranian Internet connectivity. Safer internet day – Cybercrime facts Infographic. Reading the 2019 Internet Crime Complaint Center (IC3) report. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. A new round of the weekly newsletter arrived!

Cyber Attacks

Cyber Attacks Banking Advertising Internet

Law enforcement and Microsoft join forces to dismantle botnet using LED Light Control Console

Security Affairs

APRIL 20, 2020

Threat actors used the consoles to deliver malware and ransomware through an IoT botnet that was also used to launch distributed denial-of-service (DDoS) attacks. “One particular IP was associated with dozens of activities related to the distribution of malware, phishing emails, ransomware, and DDoS attacks.”

IoT

IoT DDOS Advertising Malware

Kaiji, a new Linux malware targets IoT devices in the wild

Security Affairs

MAY 5, 2020

Security researchers spotted a new piece of DDoS bot dubbed Kaiji that is targeting IoT devices via SSH brute-force attacks. The malicious code was designed to target Linux-based servers and Internet of Things (IoT) devices and use them as part of a DDoS botnet. You may want to block #C2 at: 1[.]versionday[.]xyz versionday[.]xyz

IoT

IoT Malware DDOS Advertising

Security Affairs newsletter Round 269

Security Affairs

JUNE 21, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. authorities sanction six Nigerian nationals for BEC and Romance Fraud. Pierluigi Paganini. SecurityAffairs – hacking, newsletter).

DDOS

DDOS Spyware Advertising Mobile

Trend Micro observed notable malware activity associated with the Momentum Botnet

Security Affairs

DECEMBER 18, 2019

Experts revealed details on the tools and techniques used by the botnet to compromise Linux devices and recruit them in launching distributed denial-of-service (DDoS) attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware

Malware DDOS Advertising DNS

Crooks exploit exposed Docker APIs to build AESDDoS botnet

Security Affairs

JUNE 15, 2019

Threat actors are actively scanning the Internet for exposed Docker APIs on port 2375 and use them to deliver a malicious code that drops the AESDDoS Trojan. ” The AESDDoS malware is active since at least since 2014 and it was used to build large DDoS botnet. launching DDoS attacker, mining cryptocurrency, etc.).

DDOS

DDOS Malware Advertising Cryptocurrency

Roboto, a new P2P botnet targets Linux Webmin servers

Security Affairs

NOVEMBER 21, 2019

.” The analysis of the bot revealed that it supports seven functions: reverse shell, self-uninstall, gather process’ network information, gather Bot information, execute system commands, run encrypted files specified in URLs, DDoS attack, etc. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS System Administration Advertising DNS

Booter Boss Interviewed in 2014 Pleads Guilty

Massive DDoS attack brought down 25% Iranian Internet connectivity

Trending Sources

DDoS-for-Hire Boss Gets 13 Months Jail Time

Courts Hand Down Hard Jail Time for DDoS

Stark Industries Solutions: An Iron Hammer in the Cloud

AWS mitigated largest DDoS attack ever of 2.3 Tbps

Enemybot, a new DDoS botnet appears in the threat landscape

Experts warn of surge in DDoS attacks targeting education institutions

FBI warns cyber actors abusing protocols as new DDoS attack vectors

New Zealand stock exchange (NZX) halted 2 days by DDoS attack

New Lucifer DDoS botnet targets Windows systems with multiple exploits

Hoaxcalls Botnet expands the target list and adds new DDoS capabilities

Developer of DDoS Mirai based botnets sentenced to prison

DDoS-for-Hire Services operator sentenced to 13 months in prison

T-Mobile suffered a major outage in the US allegedly caused by a massive DDoS attack

Law enforcement take down 15 DDoS-for-Hire services

SANDMAN AND FINEPROXY BEHIND THE DDOS ATTACKS AGAINST TIMETV.LIVE

The operator of DDoS-for-hire service pleads guilty

Brazil expert discovers Oracle flaw that allows massive DDoS attacks

Imperva mitigated DDoS attack generated 500 Million Packets per Second, the largest ever

The Now-Defunct Firms Behind 8chan, QAnon

China used the Great Cannon DDoS Tool against forum used by Hong Kong protestors

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure

A few dollars to bring down sites with new Bushido-based DDoS-for-hire service

Massive increase in XorDDoS Linux malware in last six months

10 Takeaways From The 2014 Verizon Breach Report

The CallStranger UPnP vulnerability affects billions of devices

Interview With a Crypto Scam Investment Spammer

Bot list with Telnet credentials for more than 500,000 servers and IoT devices leaked online

250 Webstresser Users to Face Legal Action

Hacker who disrupted Sony gaming gets a 27-months jail sentence

InfectedSlurs botnet targets QNAP VioStor NVR vulnerability

British hacker sentenced to jail for attack on Liberian Telecoms firms

Creator of multiple IoT botnets, including Satori, pleaded guilty

3 Dangerous Myths About DDoS Attacks

Security Affairs newsletter Round 251

Law enforcement and Microsoft join forces to dismantle botnet using LED Light Control Console

Kaiji, a new Linux malware targets IoT devices in the wild

Security Affairs newsletter Round 269

Trend Micro observed notable malware activity associated with the Momentum Botnet

Crooks exploit exposed Docker APIs to build AESDDoS botnet

Roboto, a new P2P botnet targets Linux Webmin servers

Stay Connected