Language Selection

English French German Italian Portuguese Spanish

Denial of service attack victim speaks out

Filed under
Security

he founder of an online payment system has spoken to silicon.com about his experience of being targeted by Russian gangsters who threatened to destroy his website and his business if he didn't pay them $10,000 to leave him alone.

To this day his website is under continual attack.

Asif Malik, founder of NoChex, said his first contact with these hackmailers was in August 2004 when he received an email saying his website would be taken down by a denial of service attack if the money wasn't paid into an account based in Latvia.

"We'd received loads of emails like this before and my initial reaction was just ignore it," Malik told silicon.com. "But an hour later the site went down. They'd attacked us with 155Mb of data."

Malik was in no doubt what this would mean for his business.

"If they did what they said they'd do, which was attack the site for 30 days continuously, then we would have been unable to process transactions and we would have lost all our merchants.

"We'd not be in business today," he added.

Such an attack, often generated by a network of compromised machines all directing traffic at a particular server or website, will overload and bring down a website.

Malik then contacted the Russian gangsters behind the extortion scam and asked for one day to get the money together. They agreed to the delay and stopped the attack.

However, during that time Malik contacted his ISP Pipex who were already threatening to "black hole" his website as the attack was impacting the whole Pipex network and asked them to implement a Cisco Guard solution which effectively rerouted all traffic and cleaned it of the malicious traffic being generated by the crippling denial of service.

"The next morning they were emailing asking 'where is our money?'. When they realised we weren't going to pay-up they launched another attack but this time it had no effect."

Predictably this did not go down well. Malik received a string of abusive and threatening emails.

And to this day the attacks continue - though they have little impact on the NoChex website.

"I think they are still looking for a new way in," said Malik. Though he now employs several penetration testing companies to continually check he's leaving no door open for the Russian extortionists to return.

Malik reported the attack to Scotland Yard but as yet has heard nothing of the ongoing investigation.

Many other victims of such attacks, most commonly targeted at businesses such as online casinos, bookmakers and payment services, whose businesses are very time sensitive, have also spoken out about their problems.

Full Story.

More in Tux Machines

Microsoft vs GNU/Linux

Netflix and GNU/Linux

today's howtos

KDE/Qt

  • Device Tailored Compositors with Qt Wayland at CLAAS E-Systems
    Have you heard about software in cars that run on embedded devices? Do you think that creating such software might be challenging? Well, welcome to a complete new world of complexity, welcome to the world of agriculture machines! For many years, automatic steering (on fields), terminals to control the complex mechanical operations of a self-driving 16 ton combine harvester on a soft ground, and self-optimization systems to optimize any tiny bit of your harvester, are key demands from customers. I, myself, am working at CLAAS E-Systems, the electronics and software department within the CLAAS group. Our group is well known for being among the leading manufacturers for combine harvesters, tractors and forage harvesters.
  • Qt Wayland Is Next Appearing On Tractors & Farm Equipment
    With Qt 5.8's Qt Wayland Compositor Framework taking shape, more developers are beginning to tailor a Qt Wayland compositor to their use-cases. One of those is a company specializing in farm equipment like combine harvesters, tractors, and harvesters. As a guest post on the official Qt blog, developer Andreas Cord-Landwehr of CLAAS E-Systems talked up Qt Wayland for their purposes in the highly-regulated agriculture industry.
  • KDevelop 5.1 Open-Source IDE Launches with LLDB and OpenCL Support, Many Changes
    The development team behind the popular, open-source, cross-platform, free and powerful KDevelop IDE (Integrated Development Environment) were proud to announce the official release and general availability of KDevelop 5.1. KDevelop 5.1 is now the most advanced stable version of the application, which is written entirely in Qt and designed to be used on various GNU/Linux distributions that usually ship with the KDE Plasma desktop environment, but also on the latest releases of the Microsoft Windows operating system.