Slashdot Mirror

← Back to Stories (view on slashdot.org)

Alleged Proprietors of 'DDOS For Hire' Service vDOS Arrested (krebsonsecurity.com)

Posted by EditorDavid on from the teenagers-in-trouble dept.

Long-time Slashdot reader pdclarry writes: Brian Krebs reports that the two youthful (18-year-old) alleged proprietors of vDOS, the DDOS service have been arrested in Israel on a complaint from the FBI. They have been released on $10,000 bond each, their passports lifted, and they have been placed under house arrest, and banned from using the Internet for 30 days. They were probably identified through a massive hack of the vDOS database recently [reported Friday morning on Slashdot].

Krebs also reports that vDOS's DNS addresses were hijacked by the firm BackConnect Security to get out from under a sustained DDOS attack, and that his site, krebsonsecurity.com has been under a sustained DDOS attack since his last article was published, with the packets containing the string "godiefaggot". Those attacks continue, but, as he has been the target of many DDOS attacks in the past, he's covered by a DDOS protection firm. The two teenagers coordinated more than 150,000 denial-of-service attacks over the last two years, according to Krebs, using at least four servers in Bulgaria.

63 comments

  1. That has to be unconstitutional! by Anonymous Coward · · Score: 0

    and banned from using the Internet for 30 days.

    I can't imagine anything more torturing short of actual torture.

    1. Re:That has to be unconstitutional! by Sun · · Score: 1

      Use of Internet is less a fundamental right than freedom of movement, and that has also been limited for them. That is what you do when you catch criminals. You limit their freedom.

      Shachar

    2. Re:That has to be unconstitutional! by Anonymous Coward · · Score: 0

      Or you exile them as jews were many times nation to nation, even exiled to a stolen palestinian land after WWII as nobody wanted them around due to their laws shown below and misdeeds in those nations as crooks and liars: When you're asked why England (1330), Spain, France, Germany and Egypt kicked jews out over history that question was quickly down moderated, as was the first link, and you failed to answer https://developers.slashdot.org/comments.pl?sid=9630813&cid=52854261/

      There is no doubletalking your way out of it.

      Everyone knows the true answer from history and that link above is why you had to run away from it.

      No double-talk subterfuge wording you could come up with which the jews' talmud says it's ok for them to use?

      In the talmud jew book of law I see what they put in it about non jews https://developers.slashdot.org/comments.pl?sid=9630813&cid=52853705/ - talk racist!

      Additionally which anyone is free to easily verify, Your entire post history is almost all about defending YOUR kind (which you are an israeli/jew Sun/Shachar) https://slashdot.org/comments.pl?sid=2625426&cid=38734582/

      Go away.

      You're easily seen through and easy to dispatch with facts you can't validly overcome as shown in the 2nd link above. You have a definite dog in this hunt and it, with you, are easily shot down for it by the laws of your own kind and so many nations kicking you out over time too no less.

    3. Re: That has to be unconstitutional! by Anonymous Coward · · Score: 0

      What the hell is wrong with you? Did a Rabbi touch you in a naughty place when you were a kid? You should probably see someone about that.

    4. Re: That has to be unconstitutional! by Anonymous Coward · · Score: 0

      I can ask you the same but back myself with fact: Spanish expulsion (1492), France (1306), Egypt ("despoiled" = robbed by jews), Arabs (post 1948), England (1330 Edward longshanks), Romans under titus, Russia pogroms, and yes Germany expelling jews says it all. Truth/fact != wrong.

      Truth hurt? Yes. Your weak reply proved that.

      So do 8 nations from only a partial listing.

      So does stealing palestinian lands to get rid of them and they still practice their ways of robbing goy/gentiles (non jews) as they do not rob their own.

      Even their own in Christ and Jeremiah tried to warn them about their misdoings.

      I don't like someone trying to make saints out of sinners.

      Especially racist sinners who claim anti-semitism when they are proven racists themselves from their own book of cultural laws https://developers.slashdot.org/comments.pl?sid=9630813&cid=52853705/

      But apparently it's ok to say that about non jews but if you tell truth of jews from that or their exile ridden history by many nations it's "anti semitism"? No. I know not.

      Try "jew guilt" us? There's plenty in that link to their talmud cultural laws and their history to be guilty of.

      Most especially not when Freedom of speech and free speech zone bs is subverting the USA itself yet they can put out text from their talmud in that link. Double standards galore! Guess that's the power of "despoiled monies" worldwide throughout history gets you. In the end it gets you nowhere like your weak reply has.

    5. Re:That has to be unconstitutional! by Anonymous Coward · · Score: 0

      and banned from using the Internet for 30 days.

      I can't imagine anything more torturing short of actual torture.

      I can. and none of it has anything to do wif compewterz and int4rw3bz.

    6. Re: That has to be unconstitutional! by D00MSlayer · · Score: 1

      Keep fucking that chicken, AC.

    7. Re: That has to be unconstitutional! by Anonymous Coward · · Score: 0

      D00MSlayer yet he crushed Joo so easily here https://it.slashdot.org/comments.pl?sid=9638661&cid=52865817/ with historical facts Jew can't overcome.

  2. Is this a CLOUDFLARE CRIMINAL issue? by Anonymous Coward · · Score: 0, Troll

    vDOS? Like vdos-s.com?

    CloudFlare has many criminal customers. Check out this recent list of DDoS/"Stresser"/"Booter" websites proudly hosted by CloudFlare:

    alphastress.com, anonymous-stresser.net, aurastresser.com, beststresser.com, boot4free.com, booter.eu, booter.org, booter.xyz, bullstresser.com, buybooters.com, cnstresser.com, connectionstresser.com, crazyamp.me, critical-boot.com, cstress.net, cyberstresser.org, darkstresser.info, darkstresser.net, databooter.com, ddos-fighter.com, ddos-him.com, ddos.city, ddosbreak.com, ddosclub.com, ddostheworld.com, defcon.pro, destressbooter.com, destressnetworks.com, diamond-stresser.net, diebooter.com, diebooter.net, down-stresser.com, downthem.org, exitus.to, exostress.in, free-boot.xyz, freebooter4.me, freestresser.xyz, grimbooter.com, heavystresser.com, hornystress.me, iddos.net, inboot.me, instabooter.com, ipstresser.co, ipstresser.com, jitterstresser.com, k-stress.pw, layer-4.com, layer7.pw, legionboot.com, logicstresser.net, mercilesstresser.com, mystresser.com, netbreak.ec, netspoof.net, networkstresser.com, neverddos.com, nismitstresser.net, onestress.com, onestresser.net, parabooter.com, phoenixstresser.com, pineapple-stresser.com, powerstresser.com, privateroot.fr, purestress.net, quantumbooter.net, quezstresser.com, ragebooter.net, rawlayer.com, reafstresser.ga, restricted-stresser.info, routerslap.com, sharkstresser.com, signalstresser.com, silence-stresser.com, skidbooter.info, spboot.net, stormstresser.net, str3ssed.me, stressboss.net, stresser.club, stresser.in, stresser.network, stresser.ru, stresserit.com, synstress.net, titaniumbooter.net, titaniumstresser.net, topstressers.com, ts3booter.net, unseenbooter.com, vbooter.org, vdos-s.com, webbooter.com, webstresser.co, wifistruggles.com, xboot.net, xr8edstresser.com, xtreme.cc, youboot.net

    If CloudFlare would stop providing bulletproof hosting for criminals and spammers, the internet would be a better place. But CloudFlare apparently loves its criminal customers. DDoS purveyors, terrorist websites, malware distributors, CloudFlare seems to welcome them all to its hive of scum and villainy. Maybe it's time to revive the concept of the Usenet Death Penalty and apply it to all traffic to and from CloudFlare. They're the sewer of the internet and should be null routed and de-peered.

    See also: CloudFlare Watch

    1. Re:Is this a CLOUDFLARE CRIMINAL issue? by Anonymous Coward · · Score: 1

      On the bright side they don't support censorship :)

    2. Re: Is this a CLOUDFLARE CRIMINAL issue? by Anonymous Coward · · Score: 0

      Hum... Cloudflare isn't a host.... They are a CDN with DNS wrapped into the same package.

  3. Israelis? by Anonymous Coward · · Score: 0

    Go figure, Mossad against the world.

    1. Re:Israelis? by Sun · · Score: 2, Insightful

      So how do you explain the fact they were arrested? Is it so incomprehensible to you that and Israeli may be an asshole without being an agent of the state of Israel?

      Shachar

    2. Re: Israelis? by Anonymous Coward · · Score: 0

      Actually, that is pretty incomprehensible. Why did the US spot them while they were under the noses of the Israelis LEOs?

    3. Re: Israelis? by Sun · · Score: 2

      I will say one thing in your favor. Your inability to distinguish private and state actors isn't limited to Israel.

      The US did not spot them. A security researcher did.

      Shachar

    4. Re: Israelis? by Luthair · · Score: 1

      They apparently also did not ddos Israeli targets rather international ones.

    5. Re: Israelis? by Aighearach · · Score: 1

      Jewish rights were legally acknowledged in England in 1215 in the Magna Carta.

      It is funny that you don't know it, but anywhere you had Lords you had to have Jews because the Lords were all Christians, and forbidden to collect interest on loans. Guess what, rich people don't loan out their money without interest! So it was a basic part of the governance of nations to insure that there were enough Jews in each area to keep the economy going. You can find times where some idiot tried to cause them problems, but you'll always find a backlash restoring their rights. For important historical reasons, as it turns out.

    6. Re: Israelis? by Anonymous Coward · · Score: 0

      Guess what? Your disinfo's wrong: Arabs, israeli relatives by Abraham who are oil rich, believe interest is wrong "Sharia prohibits acceptance of specific interest or fees for loans of money (known as riba, or usury), whether the payment is fixed or floating" https://en.wikipedia.org/wiki/Islamic_banking_and_finance/ and you don't explain them being kicked from England by Edward after the date you cite or the 7 other nations cited.

    7. Re:Israelis? by D00MSlayer · · Score: 1

      You're more annoying than a spambot

    8. Re:Israelis? by Anonymous Coward · · Score: 0

      D00MSlayer yet he crushed Joo so easily here https://it.slashdot.org/comments.pl?sid=9638661&cid=52865817/ with historical facts Joo can't overcome.

  4. Re:What a legend by Gumbercules!! · · Score: 4, Interesting

    Actually the guy is a pretty good journalist - unlike most he doesn't just cut and paste from another source and turn up for his paycheque. He's also pretty fearless and done some real investigations. I like him.

  5. What a Surprise by Anonymous Coward · · Score: 1

    Once again we see a couple script kiddies who thought they were such hot poop for being able to crash a couple servers get what they deserve.

    They wanted to so desperately be some hotshot badass criminals? Well wish granted.

    The fewer teenage imbeciles we have running around with rebranded LOICs, giving actual hackers and penetration testers a bad name in the process, the better.

    1. Re:What a Surprise by HBI · · Score: 1

      Really really got to come up with a better name than "penetration testing". Sounds like something I do with desperate Craigslist chicks.

      --
      HBI's Law: Frequency of calling others Nazis is directly correlated with the likelihood of the accuser being Communist.
    2. Re: What a Surprise by Anonymous Coward · · Score: 0

      No that's called farming STDs.
      These kids got off so easy, they made 600k in 2 years so it isn't hard to see how they made that whimsy 10k bond. And 30 day ban from the net. Just LOLs for these kids, now they have more street cred.

    3. Re: What a Surprise by Anonymous Coward · · Score: 0

      Accounts where they have that money are likely to have been frozen.

    4. Re: What a Surprise by Anonymous Coward · · Score: 0

      Yeah they probably didn't find all of it, 600k in 2 years is all they could find evidence for. The rest is probably all in Bitcoins that will be sold in about 31 days. I mean, what do you think people pay for these attacks with? They were only able to take cards for a little while and had tons of trouble taking PayPal so yeah, it's bitcoins. Good luck freezing that.

    5. Re: What a Surprise by pdclarry · · Score: 1

      No that's called farming STDs.
      These kids got off so easy, they made 600k in 2 years so it isn't hard to see how they made that whimsy 10k bond. And 30 day ban from the net. Just LOLs for these kids, now they have more street cred.

      They haven't gotten off. They were arrested, posted bail, and had restrictions placed on them including the 30 day ban, lifting their passports and house arrest, presumably pending the next court appearance. There's more to come.

    6. Re:What a Surprise by Aighearach · · Score: 1

      "No, that wasn't it. Nope, that wasn't it either." You shouldn't have to test that.

    7. Re: What a Surprise by Aighearach · · Score: 1

      You make the same strange slander as the summary. I doubt their passports were "lifted," they were much more likely confiscated.

  6. How long have they been active? by Vlad_the_Inhaler · · Score: 3, Interesting

    I read the article here a couple of days ago where he "outed" the pair and got the impression that vDOS had been active for more than just two years.

    Brian Krebs writes that he has obtained the hacked database of an Israeli company that is responsible for most of the large-scale DDoS attacks over the past (at least) 4 years.

    They are 18 now? Most of their misdeeds would have been performed as minors, and I'm a bit sceptical that they started when they were (at most) 14.

    --
    Mielipiteet omiani - Opinions personal, facts suspect.
    1. Re:How long have they been active? by drinkypoo · · Score: 1

      They are 18 now? Most of their misdeeds would have been performed as minors, and I'm a bit sceptical that they started when they were (at most) 14.

      It doesn't matter; they can and probably will be tried as adults for the lot of it. That whole "minor" thing means exactly fuck. We expect children to behave responsibly but we give them no rights, then are surprised when they don't behave the way we like.

      --
      "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
  7. Re:What a legend by Anonymous Coward · · Score: 5, Insightful

    Seriously, I don't get the hate Krebs seems to get from the general public. The guy does in-depth analysis of different criminal rings and scams and posts in scathing detail on his website. If he was so ineffectual or not a big deal, you wouldn't have these criminal rings constantly trying to take him down. Whether its targeted attacks on his website or even attacks against him personally (some of his enemies even tried to frame him for possession of heroin but Krebs discovered and foiled the plot), they obviously don't like the light he's throwing on the whole shady scene. More power to him and I can't wait to see what he reveals next.

  8. Sucks to be an Israeli by h33t+l4x0r · · Score: 1

    Any other country within 1000Km of Israel would tell the FBI to go screw.

    1. Re:Sucks to be an Israeli by golodh · · Score: 1

      No other country within 1000 Km of Israel depends quite so much on US good will for its survival.

    2. Re:Sucks to be an Israeli by h33t+l4x0r · · Score: 0

      Thanks for the clarification, Captain Obvious.

    3. Re:Sucks to be an Israeli by Sun · · Score: 1

      Maybe. The countries immediately surrounding Israel either have bigger issues to deal with, or don't have a very good rule of law.

      How is that a good thing, though?

      Shachar

    4. Re:Sucks to be an Israeli by h33t+l4x0r · · Score: 0

      For an 18 yr old hacker? It's a fucking great thing, dummy.

    5. Re:Sucks to be an Israeli by Anonymous Coward · · Score: 0

      Since when is DDOSing considered hacking? They are just white collar criminals of the lowest order. And it's a very good thing they got caught. Not that this will deter others from doing similar things which is really too bad.

    6. Re:Sucks to be an Israeli by h33t+l4x0r · · Score: 0

      Since when is DDOSing considered hacking?

      How big is your botnet? You clearly don't know anything.

    7. Re:Sucks to be an Israeli by Anonymous Coward · · Score: 0

      No botnet needed, just rent a few servers with good connectivity and no source address filtering. Then use NTP/DNS/... amplification to boost the output of the servers to a DDoS worthy amount of traffic.

    8. Re: Sucks to be an Israeli by Anonymous Coward · · Score: 0

      I will repeat what the person above has said, you clearly don't know anything.

    9. Re:Sucks to be an Israeli by Anonymous Coward · · Score: 0

      Israel has a higher GDP than Japan. They rely on the US to maintain the charade that they are under attack and are some sort of underdog victim. Greedy.

  9. Extradition agreements with Israel suck by Anonymous Coward · · Score: 0
    Israel is a haven for scammers and fraudsters operating internationally. Take for example the case of Gilbert Chikli and his crew who have netted millions of dollars through "fake boss" BEC fraud. France has an arrest warrant out for him, but can't get at him because they don't have an extradition agreement. Chikli and his gang (and other crews who use the same techniques) continually perpetrate this kind of fraud against companies based in countries that can't extradite from Israel. In the case the Krebs mentions, it seems like the Israelis allegedly carried out attacks against the US which *does* have an extradition agreement. Big mistake.

    Apart from BEC fraud and DDOS, a large part of the Israeli IT business is also involved in commercial adware installations pushed without consent, general spam and other irritations.

    In terms of fraud I would suggest it's a top three country along with Russia and Nigeria.

  10. What I miss here ... by golodh · · Score: 0
    What I miss in this thread is are excited posts from Angry White Men or Libertarians telling us that this is Yet Another Example of "Da Gubbamint" stifling private anterprise and a ploy to promote Big Government.

    What happend to those good folks?

    Busy? Distracted? Overslept? Tired? Despirited? Think they're all right? Should we worry?

    1. Re:What I miss here ... by Anonymous Coward · · Score: 0

      This is an example of the govt not being able to catch these guys.
      Good old private enterprise caught them.
      At least the govt was willing to ask Israel to grab them.
      Any sign if the DDos stopped when they were arrested?

  11. DNS vs BGP by SilentChasm · · Score: 4, Informative

    Krebs also reports that vDOS's DNS addresses were hijacked by the firm BackConnect Security to get out from under a sustained DDOS attack

    According to the article it was a BGP (ie IP address) hijacking not a DNS hijacking. DNS isn't even mentioned at all in the article aside from a phone number in a domain registration found to match one obtained from the hack.

    1. Re:DNS vs BGP by Sun · · Score: 0

      Haven't read the post, but if you use BGP to hijack the IPs on which the DNS reside, then you have hijacked the DNS. A literal reading of the sentence you quote supports that theory, IMHO.

      Shachar

  12. Re: What a legend by Anonymous Coward · · Score: 0

    "The guy does in-depth analysis of different criminal rings and scams..."
    Found where the hate comes from!
    Also, looks like the criminals hate you now judging by that -1.

  13. damn jews! by Anonymous Coward · · Score: 0

    damn jews!

  14. Can't wait..... by Anonymous Coward · · Score: 0

    .......till I read about these guys whining about being placed in a cell with Bubba in "bang your in the ass prison"!

  15. Whipping's Too Good For Them! by Toad-san · · Score: 1

    Why does everyone treat these DDOS attacks (and other cyber threats) so lightly? These two punks get a slap on the wrist, and it just goes on and on! There are significant effects from these threats, you know; not just some bank inconvenienced for a day or so, or the release of a new computer game being spoiled.

    Public whipping would be nice, actually. I stop short at firing squads .. barely.

    1. Re: Whipping's Too Good For Them! by Anonymous Coward · · Score: 0

      Fuck off, you were never a kid once? These kids are 18 yet you want to ruin their lives. People like you make me sick man. Punish punish punish, is all you think of. Build a time machine and travel back to the 16th century if you want to kill people for small crimes, you fucking asshole.

    2. Re: Whipping's Too Good For Them! by Northdot · · Score: 2

      The point is, it is not a small crime. This wasn't a couple of kids with a can of spray paint. They were running a criminal enterprise for an extended period of time, causing damage to many businesses and individuals.

      Several years in prison is appropriate, and would send the correct message.

  16. List of attacked targets by Anonymous Coward · · Score: 0

    from TFA
    https://t.co/gfK3VdR0zn
    https://www.cloudflare.com/med...

  17. To the mentally challenged by Anonymous Coward · · Score: 0

    The people who expect protection from a central authority in a *WORLD WIDE NETWORK* are mentally challenged. There is no central authority with the means to provide actual protection and even if you can get cooperation among some countries there is no meaningful cooperation world wide that can solve the problem. The only solution is to implement better code [ie not run shitty code, particularly Microsoft Windows and other proprietary platforms, but free software doesn't magically solve the problem either, but its an essential starting point] and network designs such that when a DDoS attack hits you are ready for it. The only thing you are achieving [when your harasser is within certain cooperating jurisdictions, and failed to protect themselves from your backlash, etc] when you do go after people is revenge. Revenge is the goal of a sick, twisted, and backward people. These are the people who need to be contained [not implying prison here, just restrained from doing unnecessary damage to to others for things they should have and could have taken reasonable measures to protect against].