Saturday, July 20, 2024
EHA

World’s Biggest DDoS Attack Selling Market Place Finally Taken Down by Operation Power OFF

Administrators of DDoS-for-hire Service were arrested as a result of a joint Operation Power OFF led by the Dutch police, and UK’s National Crime Agency along with the support of Europol and other law enforcement agencies.

The 6 administrators behind DDoS-for-hire website were located in the United Kingdom, Croatia, Canada, and Serbia. Top users of the marketplace are from Netherlands, Italy, Spain, Croatia, the United Kingdom, Australia, Canada and Hong Kong.

DDoS-for-hire Service 

It is such a service that attackers have a number of remotely connected bots devices to direct a huge traffic to a website or the online platforms.

The DDoS-for-hire Service service provider Webstresser[.]org to be considered as the biggest marketplace for the DDOS and it has over 136,000 registered users and they conducted 4 million attacks.European police confirmed that the illegal service was shut down and its infrastructure was seized.

To make these services available users need to pay a nominal fee through online payment gateways or through cryptocurrencies. Registered users could avail this service as low as EUR 15.00 per month and it allows anyone to launch a DDoS attack even with zero technical skills.

“We have a trend where the sophistication of certain professional hackers to provide resources is allowing individuals – and not just experienced ones – to conduct DDoS attacks and other kinds of malicious activities online”, said Steven Wilson, Head of Europol’s European Cybercrime Centre (EC3).

“International law enforcement will not tolerate these illegal services and will continue to pursue its admins and users. This joint operation is yet another successful example of the ongoing international effort against these destructive cyber attacks” said Jaap van Oss, Dutch Chairman of the Joint Cybercrime Action Taskforce (J-CAT).

Europol said using stresser or booter services for DDoS attack lead to severe penalties such as prison sentence, a fine or both.

“DDoS attacks are illegal. Many IT enthusiasts get involved in seemingly low-level fringe cybercrime activities, unaware of the consequences that such crimes carry” Europol said.

Website

Latest articles

Hackers Claiming Dettol Data Breach: 453,646 users Impacted

A significant data breach has been reported by a threat actor known as 'Hana,'...

CrowdStrike Update Triggers Widespread Windows BSOD Crashes

A recent update from cybersecurity firm CrowdStrike has caused significant disruptions for Windows users,...

Operation Spincaster Disrupts Approval Phishing Technique that Drains Victim’s Wallets

Chainalysis has launched Operation Spincaster, an initiative to disrupt approval phishing scams that have...

Octo Tempest Know for Attacking VMWare ESXi Servers Added RansomHub & Qilin to Its Arsenal

Threat actors often attack VMware ESXi servers since they accommodate many virtual machines, which...

TAG-100 Actors Using Open-Source Tools To Attack Gov & Private Orgs

Hackers exploit open-source tools to execute attacks because they are readily available, well-documented, and...

macOS Users Beware Of Weaponized Meeting App From North Korean Hackers

Meeting apps are often targeted and turned into weapons by hackers as they are...

Hackers Exploiting Legitimate RMM Tools With BugSleep Malware

Since October 2023, MuddyWater, which is an Iranian threat group linked to MOIS, has...
Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Free Webinar

Low Rate DDoS Attack

9 of 10 sites on the AppTrana network have faced a DDoS attack in the last 30 days.
Some DDoS attacks could readily be blocked by rate-limiting, IP reputation checks and other basic mitigation methods.
More than 50% of the DDoS attacks are employing botnets to send slow DDoS attacks where millions of IPs are being employed to send one or two requests per minute..
Key takeaways include:

  • The mechanics of a low-DDoS attack
  • Fundamentals of behavioural AI and rate-limiting
  • Surgical mitigation actions to minimize false positives
  • Role of managed services in DDoS monitoring

Related Articles