Search This Blog

Powered by Blogger.

Blog Archive

Labels

Showing posts with label Cyber Crime Reports. Show all posts

A Huge DDoS Network was Taken Down by the US DOJ

 


According to the US Department of Justice (DOJ), 48 domains were seized after it was discovered that they were offering distributed denial of service (DDoS) attacks on-demand as a service that criminals could exploit.  

This information was provided in a press release from the office of E Martin Estrada, the United States Attorney for the Central District of California. This release was intended to inform the public that in addition to these seizures, six defendants are being charged with crimes in connection with operating these platforms.  
 
With the addition of the DDoS attacks which are plaguing the internet, this news brings back to the forefront the concept of Cybercrime-as-a-Service, outlined in the Microsoft Digital Defence Report (MDDR) released in November 2022. 

What is DDoS?

It is a platform for performing distributed denial-of-service attacks (DDoS attacks) that primarily allows anyone to purchase and execute such attacks for free. Based on the software as a service (SaaS) business model, these services are lucrative because they allow the owner of an IoT botnet to conduct low-overhead attacks.


DoS-for-Hire Services

Until recently, the majority of cybercrime-as-a-service reports have covered cybercrime using the context of ransomware, or a threat actor encrypting data and locking it out so that people cannot access what they want (usually until a ransom has been paid), or droppers bots that spread malware via delaying software updates.  

Despite this, DDoS-as-a-service (sometimes known as "booters" since they boot targeted systems from the internet) continues to be one of the most popular cybercrime methods for those who wish to commit a crime without having the necessary knowledge. 

According to the US Attorney's office, the websites seized during the operation launched "millions" of DDoS attacks, attacking victims around the world, with some claiming to provide legitimate services for your business to cope with stress. 

With booter services such as these, anyone can launch cyberattacks against victims, causing grave harm to individuals, and compromising the internet access of everyone, said US Attorney Estrada, noting the ease with which the attacks are carried out, allowing for maximum damage to be done. 

This week’s sweeping law enforcement activity is a considerable step in our ongoing efforts to eradicate criminal conduct that threatens the internet’s infrastructure and our ability to function in a digital world.

There are several organizations, including the FBI, the National Crime Agency, the Netherlands Police, and the National Crime Strategy, which are taking a much softer approach towards anyone who shows an interest in using the DDoS-for-hire services that are available. 

To deter would-be cybercriminals from investing in these services and to educate the public about the dangers of DDoS activity, an advertorial campaign will be conducted using placement ads in search engines on common keywords related to DDoS-for-hire activity. The campaign aims to target the use of common keywords related to DDoS-for-hire activity. As part of its commitment to victims, the FBI has also pledged to assist them whenever possible. 

"The FBI is ready to work with victims of crimes whether they launch them independently or hire a skilled contractor to execute them," said Donald Alway, Assistant Director in Charge of the FBI Los Angeles Field Office. 

American victims of cybercrime are encouraged to contact their local FBI field office or to file a complaint with the FBI's Internet Crime Complaint Center at www.ic3.gov.

Denmark Gearing to be a Cyber-Secure Nation

According to the Digital Economy and Society Index (DESI) 2019, Denmark was announced as the most digitalized country in the world by the European Commission’s study. The study gave ranks around the five important pillars: Connectivity, Use of Internet Services, Integration of Digital Technology, Human Capital, and Digital Public Services. However, these factors also attract attack surfaces for threat actors. 

In past years, various important economic sectors and a large number of people have been attacked one such example includes the Petya cyberattack over Maersk.  The attack on the biggest shipping company in Danish in 2017, and the SolarWinds attack on the National Bank of Denmark in 2020 are some other examples.

The Danish government is constantly working towards making real efforts and transforming Denmark into the most cyber-secure country in the world and previous ranks also show the country proved it on various surfaces. 

However, as per the Danish Government’s National Strategy for Cyber and Information Security 2022-2024, the risk of cybercrime and cyber espionage is still high in the country. 

The National Strategy for Cyber and Information Security 2022-2024 has listed out its focus areas for the people of Denmark and its infrastructures. Below you can learn details of the main focus areas of the government. 

 • Robust protection of vital societal functions 

Government and vital organizations need to be able to maintain functions that are important to society and economic activity in a crisis where critical IT infrastructure might be nonfunctional for a short or longer period of time. 

 • Strengthening the cooperation between the public and private sectors 

Government agencies and private organizations need to cooperate more closely and share knowledge and experiences about cyber threats and incidents. 

 • Improving and prioritizing levels of skills and management 

The government ascribed great importance to cyber security while highly recommending to institutions prioritize Cyber and information security in top management, and related skills must be strengthened. This applies to an overview of assets, vulnerabilities, and knowledge of potential threats. 

Active participation in the international fight against cyber threats 
 
Lastly, the Denmark officials urged International governments and their cooperation with the EU, UN, NATO, and like-minded countries to advance efforts against cyber threats to protect Denmark and other Nations from malicious cyberattacks and cyber espionage. 

As per the data, the government has allocated a total of DKK 270 million (EUR 36 million) to 34 initiatives running from 2022 until 2024 to equip the Nation with advanced technology tools to protect the infrastructure of the nation.