Monday, April 12, 2021
  • Setup menu at Appearance » Menus and assign menu to Top Bar Navigation
Advertisement
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
No Result
View All Result
Home Internet Security

A DDoS gang is extorting businesses posing as Russian government hackers

October 25, 2019
in Internet Security
A DDoS gang is extorting businesses posing as Russian government hackers
586
SHARES
3.3k
VIEWS
Share on FacebookShare on Twitter

For the past week, a group of criminals has been launching DDoS attacks against companies in the financial sector and demanding ransom payments while posing as “Fancy Bear,” the infamous hacking group associated with the Russian government, known for hacking the White House in 2014 and the DNC in 2016.

The attacks, brought to ZDNet‘s attention by one of our readers, were confirmed today by Link11 and Radware, two companies that provide DDoS mitigation services and have documented similar “ransom denial-of-service” (RDOS) attacks in the past years.

You might also like

Ransomware: The internet’s biggest security crisis is getting worse. We need a way out

Washington State educational organizations targeted in cryptojacking spree

Critical Zoom vulnerability triggers remote code execution without user input

In an interview with ZDNet, Daniel Smith, Radware ERT researcher, said the attacks started last week and targeted the financial vertical.

Smith said “the group is launching large scale, multi-vector demo DDoS attacks when sending victims the ransom letter.”

A Link11 spokesperson said the same thing, adding that the purpose of these demo attacks is to serve as an initial warning and intimidation factor, to convince victims into paying the ransom demand.

According to a copy of the ransom letter [PDF] the group is sending victims, the fake Fancy Bear group is asking for payments of 2 bitcoin, which is about $15,000 at today’s exchange rate.

fb-extortion.png

Image via Link11

Link11’s Thomas Pohle said these demo attacks are a mixture of different protocols, such as DNS, NTP, CLDAP, ARMS, and WS-Discovery.

Furthermore, the extortionists appear to study and choose their targets in advance. Pohle said the DDoS attacks don’t target companies’ public website, but at their backend servers, which aren’t usually protected by DDoS mitigation systems and cause downtimes — and possibly intimidating victims.

In addition, Pohle said that beyond the financial vertical, they’ve also seen some DDoS ransom attacks aimed at companies in the entertainment and retail business.

“The victims are threatened with a follow-up DDoS attack if they do not make a payment in bitcoin within a week,” Radware’s Smith told ZDNet. “At the moment, no follow-up attacks have been observed.”

Revival of a 2017 trend?

Smith also said the ransom letter used this past week is nearly identical to one used in 2017 by another DDoS ransom gang that also posed as Russia’s Fancy Bear group.

In fact, 2017 has been the year when DDoS-based ransom demands reached their peak, with dozens of groups operating all at the same time.

Some DDoS extortionists were seen posing as almost any widely-known hacking group known at the time, such as Anonymous, LulzSec, Armada Collective, New World Hackers, Lizard Squad, and Fancy Bear.

Other groups didn’t bother imitating better known hacking groups and tried making a name for themselves, such as Kadyrovtsy, RedDoor, ezBTC, Borya Collective, Stealth Ravens, XMR Squad, ZZb00t, Meridian Collective, Xball Team, and Collective Amadeus.

It was a free-for-all for almost the entire year, but attacks subsided as victims learned that many extortionists did not have the firepower to follow through with actual DDoS attacks.

But unlike its 2017 predecessors, this new Fancy Bear copycat that emerged last week at least appears to own an actual DDoS botnet.

However, it is worth mentioning that they are not the real Fancy Bear group. Russia’s elite cyber-espionage and hacking unit have never been seen launching DDoS attacks. Their targets usually include embassies, NATO bases, US political parties, and government agencies.

Any company receiving such email threats should report the incident to law enforcement officials.

Credit: Zdnet

Previous Post

Redis Labs goes Google Cloud, Graph, and other interesting places

Next Post

A Guide for Creating and Optimizing Them

Related Posts

Ransomware: The internet’s biggest security crisis is getting worse. We need a way out
Internet Security

Ransomware: The internet’s biggest security crisis is getting worse. We need a way out

April 12, 2021
Washington State educational organizations targeted in cryptojacking spree
Internet Security

Washington State educational organizations targeted in cryptojacking spree

April 10, 2021
Critical Zoom vulnerability triggers remote code execution without user input
Internet Security

Critical Zoom vulnerability triggers remote code execution without user input

April 10, 2021
Nation-state cyber attacks targeting businesses are on the rise
Internet Security

Nation-state cyber attacks targeting businesses are on the rise

April 10, 2021
These are the terrible passwords that people are still using. Here’s how to do better
Internet Security

These are the terrible passwords that people are still using. Here’s how to do better

April 9, 2021
Next Post
A Guide for Creating and Optimizing Them

A Guide for Creating and Optimizing Them

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

January 6, 2019
Microsoft, Google Use Artificial Intelligence to Fight Hackers

Microsoft, Google Use Artificial Intelligence to Fight Hackers

January 6, 2019

Categories

  • Artificial Intelligence
  • Big Data
  • Blockchain
  • Crypto News
  • Data Science
  • Digital Marketing
  • Internet Privacy
  • Internet Security
  • Learn to Code
  • Machine Learning
  • Marketing Technology
  • Neural Networks
  • Technology Companies

Don't miss it

Ransomware: The internet’s biggest security crisis is getting worse. We need a way out
Internet Security

Ransomware: The internet’s biggest security crisis is getting worse. We need a way out

April 12, 2021
Data Center Infrastructure Market is Projected to Reach USD 100 Billion by 2027
Data Science

Data Center Infrastructure Market is Projected to Reach USD 100 Billion by 2027

April 12, 2021
Hawaiʻi’s Keck Observatory Aids in Discovery of Rare “Quadruply Imaged Quasars”
Machine Learning

Hawaiʻi’s Keck Observatory Aids in Discovery of Rare “Quadruply Imaged Quasars”

April 12, 2021
Interpretive Analytics in One Picture
Data Science

Interpretive Analytics in One Picture

April 12, 2021
AI and Machine Learning Driven Contract Lifecycle Management for Government Contractors
Machine Learning

AI and Machine Learning Driven Contract Lifecycle Management for Government Contractors

April 12, 2021
Cambridge Quantum Computing Pioneers Quantum Machine Learning Methods for Reasoning
Machine Learning

Cambridge Quantum Computing Pioneers Quantum Machine Learning Methods for Reasoning

April 11, 2021
NikolaNews

NikolaNews.com is an online News Portal which aims to share news about blockchain, AI, Big Data, and Data Privacy and more!

What’s New Here?

  • Ransomware: The internet’s biggest security crisis is getting worse. We need a way out April 12, 2021
  • Data Center Infrastructure Market is Projected to Reach USD 100 Billion by 2027 April 12, 2021
  • Hawaiʻi’s Keck Observatory Aids in Discovery of Rare “Quadruply Imaged Quasars” April 12, 2021
  • Interpretive Analytics in One Picture April 12, 2021

Subscribe to get more!

© 2019 NikolaNews.com - Global Tech Updates

No Result
View All Result
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News

© 2019 NikolaNews.com - Global Tech Updates