Alleged Proprietors of 'DDOS For Hire' Service vDOS Arrested (krebsonsecurity.com) 63
Long-time Slashdot reader pdclarry writes: Brian Krebs reports that the two youthful (18-year-old) alleged proprietors of vDOS, the DDOS service have been arrested in Israel on a complaint from the FBI. They have been released on $10,000 bond each, their passports lifted, and they have been placed under house arrest, and banned from using the Internet for 30 days. They were probably identified through a massive hack of the vDOS database recently [reported Friday morning on Slashdot].
Krebs also reports that vDOS's DNS addresses were hijacked by the firm BackConnect Security to get out from under a sustained DDOS attack, and that his site, krebsonsecurity.com has been under a sustained DDOS attack since his last article was published, with the packets containing the string "godiefaggot". Those attacks continue, but, as he has been the target of many DDOS attacks in the past, he's covered by a DDOS protection firm. The two teenagers coordinated more than 150,000 denial-of-service attacks over the last two years, according to Krebs, using at least four servers in Bulgaria.
Krebs also reports that vDOS's DNS addresses were hijacked by the firm BackConnect Security to get out from under a sustained DDOS attack, and that his site, krebsonsecurity.com has been under a sustained DDOS attack since his last article was published, with the packets containing the string "godiefaggot". Those attacks continue, but, as he has been the target of many DDOS attacks in the past, he's covered by a DDOS protection firm. The two teenagers coordinated more than 150,000 denial-of-service attacks over the last two years, according to Krebs, using at least four servers in Bulgaria.
Re:What a legend (Score:5, Interesting)
Re:What a legend (Score:5, Insightful)
Re: (Score:2)
Use of Internet is less a fundamental right than freedom of movement, and that has also been limited for them. That is what you do when you catch criminals. You limit their freedom.
Shachar
Re: (Score:1)
Re: (Score:1)
On the bright side they don't support censorship :)
Re: (Score:3, Insightful)
So how do you explain the fact they were arrested? Is it so incomprehensible to you that and Israeli may be an asshole without being an agent of the state of Israel?
Shachar
Re: (Score:3)
I will say one thing in your favor. Your inability to distinguish private and state actors isn't limited to Israel.
The US did not spot them. A security researcher did.
Shachar
Re: Israelis? (Score:2)
Re: (Score:2)
Jewish rights were legally acknowledged in England in 1215 in the Magna Carta.
It is funny that you don't know it, but anywhere you had Lords you had to have Jews because the Lords were all Christians, and forbidden to collect interest on loans. Guess what, rich people don't loan out their money without interest! So it was a basic part of the governance of nations to insure that there were enough Jews in each area to keep the economy going. You can find times where some idiot tried to cause them problems, bu
Re: (Score:1)
What a Surprise (Score:1)
Once again we see a couple script kiddies who thought they were such hot poop for being able to crash a couple servers get what they deserve.
They wanted to so desperately be some hotshot badass criminals? Well wish granted.
The fewer teenage imbeciles we have running around with rebranded LOICs, giving actual hackers and penetration testers a bad name in the process, the better.
Re: (Score:2)
Re: (Score:2)
No that's called farming STDs.
These kids got off so easy, they made 600k in 2 years so it isn't hard to see how they made that whimsy 10k bond. And 30 day ban from the net. Just LOLs for these kids, now they have more street cred.
They haven't gotten off. They were arrested, posted bail, and had restrictions placed on them including the 30 day ban, lifting their passports and house arrest, presumably pending the next court appearance. There's more to come.
Re: (Score:2)
You make the same strange slander as the summary. I doubt their passports were "lifted," they were much more likely confiscated.
Re: (Score:2)
"No, that wasn't it. Nope, that wasn't it either." You shouldn't have to test that.
How long have they been active? (Score:4, Interesting)
I read the article here a couple of days ago where he "outed" the pair and got the impression that vDOS had been active for more than just two years.
Brian Krebs writes that he has obtained the hacked database of an Israeli company that is responsible for most of the large-scale DDoS attacks over the past (at least) 4 years.
They are 18 now? Most of their misdeeds would have been performed as minors, and I'm a bit sceptical that they started when they were (at most) 14.
Re: (Score:2)
They are 18 now? Most of their misdeeds would have been performed as minors, and I'm a bit sceptical that they started when they were (at most) 14.
It doesn't matter; they can and probably will be tried as adults for the lot of it. That whole "minor" thing means exactly fuck. We expect children to behave responsibly but we give them no rights, then are surprised when they don't behave the way we like.
Sucks to be an Israeli (Score:2)
Re: (Score:2)
Re: (Score:1)
Re: (Score:2)
Maybe. The countries immediately surrounding Israel either have bigger issues to deal with, or don't have a very good rule of law.
How is that a good thing, though?
Shachar
Re: (Score:1)
Re: (Score:1)
Since when is DDOSing considered hacking?
How big is your botnet? You clearly don't know anything.
What I miss here ... (Score:1)
What happend to those good folks?
Busy? Distracted? Overslept? Tired? Despirited? Think they're all right? Should we worry?
DNS vs BGP (Score:5, Informative)
Krebs also reports that vDOS's DNS addresses were hijacked by the firm BackConnect Security to get out from under a sustained DDOS attack
According to the article it was a BGP (ie IP address) hijacking not a DNS hijacking. DNS isn't even mentioned at all in the article aside from a phone number in a domain registration found to match one obtained from the hack.
Re: (Score:1)
Haven't read the post, but if you use BGP to hijack the IPs on which the DNS reside, then you have hijacked the DNS. A literal reading of the sentence you quote supports that theory, IMHO.
Shachar
Whipping's Too Good For Them! (Score:2)
Why does everyone treat these DDOS attacks (and other cyber threats) so lightly? These two punks get a slap on the wrist, and it just goes on and on! There are significant effects from these threats, you know; not just some bank inconvenienced for a day or so, or the release of a new computer game being spoiled.
Public whipping would be nice, actually. I stop short at firing squads .. barely.
Re: (Score:2)
The point is, it is not a small crime. This wasn't a couple of kids with a can of spray paint. They were running a criminal enterprise for an extended period of time, causing damage to many businesses and individuals.
Several years in prison is appropriate, and would send the correct message.