aa419 is back again, though still under DDoS attack, according to their web site on a CastleCops server. CastleCops itself has been and is still under DDoS attack. As of 18.September they are down, but supposedly because of a hardware failure, according to a comment posted in a washingtonpost blog. In that blog they also report that CastleCops is now subject to a different type of attack. The crooks use hijacked PayPal accounts to make donations to CastleCops. To users this makes it look like CastleCops are the crooks. CastleCops is working with the FBI, and they are working on returning the defrauded money.
Cyberwar for real.
Thursday, September 20, 2007
Friday, September 7, 2007
aa419 under attack.
aa419 (artists against 419 scams) is under serious DDOS attack, and mostly not accessible. In a cache at google, I found some of the following forum notes:
Posted: Tue Sep 04, 2007 11:13 pm
As some of you may have noticed, aa419.org has been under a severe DDOS attack the last days. The attack is still ongoing. Our fabulous tech specialists were able to block thousands of IP addresses. As a result we can keep the website online despite the attack.
We strongly suspect that a Russian crime syndicate is behind this - apparently they are a bit upset about many, many shut down job scam / money mule scam websites. So in a way this DDOS attack is good news, because it certainly means that we cost these people a LOT of money.
We absolutley intend to keep aa419 online and not give in to them. And we think this is a good time to get some more money mule / job scam websites shut down.
Posted: Tue Sep 04, 2007 11:42 pm
SumYunGai wrote:
Botnet time is expensive. I suppose you've passed the IP addresses on to ISPs so they can take the appropriate action, whether that's warning the user or shutting down their Internet connection.
Yes, we are passing the IP addresses on to the relevant ISPs. But we are talking about several thousand blocked IP addresses so far.
Posted: Wed Sep 05, 2007 4:52 pm
Allright, the hoster temporarily took down our server. The criminals were pounding our server at 400GB/h. That means, they severaly increased the attack after our excellent tech guys were able to keep aa419 online the last days despite the attack.
We will keep you updated.
Also, 419eater.com and Scamwarners.com appears to be under attack (see this blog). And according to CastleCops, which is another anti-phising/malware/spam site, several other sites, including CastleCops are under severe ddos attacks.
Posted: Tue Sep 04, 2007 11:13 pm
As some of you may have noticed, aa419.org has been under a severe DDOS attack the last days. The attack is still ongoing. Our fabulous tech specialists were able to block thousands of IP addresses. As a result we can keep the website online despite the attack.
We strongly suspect that a Russian crime syndicate is behind this - apparently they are a bit upset about many, many shut down job scam / money mule scam websites. So in a way this DDOS attack is good news, because it certainly means that we cost these people a LOT of money.
We absolutley intend to keep aa419 online and not give in to them. And we think this is a good time to get some more money mule / job scam websites shut down.
Posted: Tue Sep 04, 2007 11:42 pm
SumYunGai wrote:
Botnet time is expensive. I suppose you've passed the IP addresses on to ISPs so they can take the appropriate action, whether that's warning the user or shutting down their Internet connection.
Yes, we are passing the IP addresses on to the relevant ISPs. But we are talking about several thousand blocked IP addresses so far.
Posted: Wed Sep 05, 2007 4:52 pm
Allright, the hoster temporarily took down our server. The criminals were pounding our server at 400GB/h. That means, they severaly increased the attack after our excellent tech guys were able to keep aa419 online the last days despite the attack.
We will keep you updated.
Also, 419eater.com and Scamwarners.com appears to be under attack (see this blog). And according to CastleCops, which is another anti-phising/malware/spam site, several other sites, including CastleCops are under severe ddos attacks.
Tuesday, September 4, 2007
Virus and Anti-Spam software that gets you...
BBC News had a piece on virus and hacking tools that have become a commercial commodity for criminals to purchase. Apparently all kinds of hacking tools are now offered commercially and as kits. Expect more SPAM, phishing, and other types of attacks in the future.
Another threat to personal computers stems for poor or even fraudulent anti-virus and/or anti-spyware software. There is plenty of anti-spyware software out there that really only makes the problem worse. Bad and dangerous programs posing as security software are certainly not good. Therefore, buy your products only from large, established, reputable companies.
A notorious case of such rogue software is/was SpyLocked or SpyWareLocked. Searches with google turn up lots of sites with instructions how to remove it. See, e.g., these removal instructions.
It even got its own entry on Wikipedia. Another fake program is VirusLocker (see these removal instructions).
The imagination of fraudsters is unlimited. Check out this huge list of bad software sites on the Spyware Warrior Site.
Another threat to personal computers stems for poor or even fraudulent anti-virus and/or anti-spyware software. There is plenty of anti-spyware software out there that really only makes the problem worse. Bad and dangerous programs posing as security software are certainly not good. Therefore, buy your products only from large, established, reputable companies.
A notorious case of such rogue software is/was SpyLocked or SpyWareLocked. Searches with google turn up lots of sites with instructions how to remove it. See, e.g., these removal instructions.
It even got its own entry on Wikipedia. Another fake program is VirusLocker (see these removal instructions).
The imagination of fraudsters is unlimited. Check out this huge list of bad software sites on the Spyware Warrior Site.
Subscribe to:
Posts (Atom)
