Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
Botnet Crime Security

Ransomware Adds DDoS Attacks To Annoy More People (softpedia.com) 37

An anonymous reader writes: Ransomware developers have found another method of monetizing their operations by adding a DDoS component to their malicious payloads. So instead of just encrypting your files and locking your screen, new ransomware versions seen this week also started adding a DDoS bot that quietly blasts spoofed network traffic at various IPs on the Internet.
Softpedia points out that "Renting out DDoS botnets on the Dark Web is a very lucrative business, even if prices have gone down in recent years."
This discussion has been archived. No new comments can be posted.

Ransomware Adds DDoS Attacks To Annoy More People

Comments Filter:
  • need to be hunted down and killed, and quickly too, do it enough and soon the rest of them will quit because it is not worth it anymore
    • need to be hunted down and killed, and quickly too, do it enough and soon the rest of them will quit because it is not worth it anymore

      I'd like to get a Kickstarter campaign going for this. Call it the "Botnet Operator Death Squad". I'd donate.

  • How will they be able to submit their online ransomware payment if their network is clogged from a DDoS?
  • by quarkoid ( 26884 ) on Sunday May 22, 2016 @11:14AM (#52159963) Homepage

    Spoofed DDOS attacks wouldn't be a problem if the users' ISPs implemented source address filtering.

    Come to think of it, an awful lot of the Internet's problems would be resolved by ISPs implementing source address filtering.

    • by gweihir ( 88907 )

      Indeed. And this has been known for more than a decade. But I expect nothing will happen until ISPs become liable for damage done if they do not implement source address filtering.

      • by Agripa ( 139780 )

        Nothing will happen because they are busy installing metering so they can fine users for excessive data transfers. As a bonus, the ISP gets paid for the DDOS packets as well.

        • by gweihir ( 88907 )

          AFAIK, they do not. ISPs pay for upstream data and less and less of that. For downstream, they only pay bandwidth, as they do not control that.

          • by Agripa ( 139780 )

            What I mean is that the ISP's metering records outgoing and *incoming* packets whether solicited or not. So for every 50GB of UDP traffic someone sends you which you cannot block, you have to pay AT&T $10.

  • One can pay to get encrypted files back. But one still have the DDoS component. When will it be possible to pay for the malware being removed?

To stay youthful, stay useful.

Working...