Lizard Squad: Xbox Live, PSN Attacks Were a 'Marketing Scheme' For DDoS Service

blottsie writes The devastating Christmas Day attacks against the gaming networks of Sony and Microsoft were a marketing scheme for a commercial cyberattack service, according to the hackers claiming responsibility for the attacks. Known as Lizard Squad, the hacker collective says it shut down the PlayStation Network (PSN) and Xbox Live network on Dec. 25 using a distributed denial-of-service (DDoS) attack, a common technique that overloads servers with data requests. The powerful attacks rendered the networks unusable for days, infuriating gamers around the world and causing yet-untold losses of revenue. Now, members of Lizard Squad say the group is selling the DDoS service they used against Sony and Microsoft to anyone willing to pay.

Re:But what laws are they breaking?

1) Yes, DDoSing someone is illegal
2) In order to carry out the DDoS they very likely have millions of PCs in a botnet. Every single one of those is a count of unauthorised use of a computer system.

Re:But what laws are they breaking?

[nedlohs]

It comes under the CFAA.- http://www.law.cornell.edu/usc...

"knowingly causes the transmission of a program, information, code, or command, and as a result of such conduct, intentionally causes damage without authorization, to a protected computer;"

a DoS is transmitting information at some point.
Damage is broadly defined: "the term “damage” means any impairment to the integrity or availability of data, a program, a system, or information"
Protected computer is broadly defined to include: "which is used in or affecting interstate or foreign commerce or communication"

"without authorization" might be an issue, but I can't see courts not deciding that the DoS wasn't authorized even if one a "public" channel is being used (say slamming the authentication servers).