Monday, July 15, 2024

Authorities Taken Down WeLeakInfo and other Domains Providing DDoS Service

In a recent announcement by the U.S. Department of Justice (DoJ) and the FBI, three domains were seized. It is believed that these domains are being utilized by cybercriminals to sell stolen personal information or to provide DDoS attack services in connection with data breaches.

The seizure is the result of an investigation carried out by U.S. authorities into the sale and purchase of illicit services via websites and domains.

Domains Seized

The seizure includes the following three domains:-

  • weleakinfo[.]to
  • ipstress[.]in
  • ovh-booter[.]com

After a joint operation, all these above-mentioned domains were seized. And this operation was jointly coordinated with the following agencies:-

  • National Police Corps of the Netherlands.
  • The Federal Police of Belgium

Apart from this, as a result of this action, a suspect was arrested, server infrastructure was seized, and a number of locations were searched.

Data Available for Trading

There was a website called WeLeakInfo[.]to sell subscriptions that allowed users to search for data stolen in over 10,000 data breach incidents. An estimated 7 billion records contained a variety of personally identifiable information (PII):-

  • Names
  • Email
  • Usernames
  • Phone numbers
  • Passwords

Moreover, the threat actors also used another two domains for the provision of booter services or stressor services, respectively.

Clients can ask for these types of services to be performed in order to have a website or web platform that they think might be vulnerable to large-scale DDoS attacks taken down.

Here’s what FBI Special Agent in Charge, Wayne A. Jacobs, stated:-

“These seizures are prime examples of the ongoing actions the FBI and our international partners are undertaking to disrupt malicious cyber activity. Disrupting malicious DDoS operations and dismantling websites that facilitate the theft and sale of stolen personal information is a priority for the FBI.”

Furthermore, the federal agencies have issued an advisory stating that anybody who has a theoretical knowledge of these portals and their operators should immediately report to the FBI.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.


Latest articles

Critical Cellopoint Secure Email Gateway Flaw Let Attackers Execute Arbitrary Code

A critical vulnerability has been discovered in the Cellopoint Secure Email Gateway, identified as...

Singapore Banks to Phase out OTPs for Bank Account Logins Within 3 Months

The Monetary Authority of Singapore (MAS) and The Association of Banks in Singapore (ABS)...

GuardZoo Android Malware Attacking military personnel via WhatsApp To Steal Sensitive Data

A Houthi-aligned group has been deploying Android surveillanceware called GuardZoo since October 2019 to...

ViperSoftX Weaponizing AutoIt & CLR For Stealthy PowerShell Execution

ViperSoftX is an advanced malware that has become more complicated since its recognition in...

Malicious NuGet Campaign Tricking Developers To Inject Malicious Code

Hackers often target NuGet as it's a popular package manager for .NET, which developers...

Akira Ransomware Attacking Airline Industry With Legitimate Tools

Airlines often become the target of hackers as they contain sensitive personal and financial...

DarkGate Malware Exploiting Excel Files And SMB File Shares

DarkGate, a Malware-as-a-Service (MaaS) platform, experienced a surge in activity since September 2023, employing...
Guru baran
Guru baran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Free Webinar

Low Rate DDoS Attack

9 of 10 sites on the AppTrana network have faced a DDoS attack in the last 30 days.
Some DDoS attacks could readily be blocked by rate-limiting, IP reputation checks and other basic mitigation methods.
More than 50% of the DDoS attacks are employing botnets to send slow DDoS attacks where millions of IPs are being employed to send one or two requests per minute..
Key takeaways include:

  • The mechanics of a low-DDoS attack
  • Fundamentals of behavioural AI and rate-limiting
  • Surgical mitigation actions to minimize false positives
  • Role of managed services in DDoS monitoring

Related Articles