DDoS extortion

[theymos]

Someone threatened to DDoS the forum if I didn't pay 10 BTC, and then shortly afterward there was a DDoS attack which took down the forum for a while. Needless to say, I will never pay this demand. For now, the attack has either stopped or been significantly reduced, but it might happen again in the near future. If there is another attack, I will try my best to mitigate it.

[1713527235]

1713527235

[1713527235]

1713527235

[1713527235]

1713527235

[1713527235]

1713527235

[1713527235]

1713527235

[vodaljepa]

Thanks for letting us know, I was wondering what was going on

[otrkid70]

Don't pay those assholes anything......If the site goes down for a bit i'm sure we will all survive. Don't give into the demand.

[--Encrypted--]

10BTC for some DDoS on a forum? that's just ridiculous.

[Xexen4]

hey theymos ignore this threads but i can protect you with praying for 5btc security is most important ^^

[gentlemand]

I assumed this forum was threatened with that about a thousand times a second. Then the wee creeps come on here and eulogise what they're screwing with.

[Quickseller]

Didn't we subscribe to some kind of DDoS mitigation service several months ago?

I have to agree that in the vast majority of the time it is not a good idea to pay this kind of extortion.

[theymos]

Didn't we subscribe to some kind of DDoS mitigation service several months ago?

Quite some time ago the forum was behind a DDoS protection service, but this service had many failures, and the alternatives were either unbelievably expensive or too intrusive (ie. they'd break HTTPS's security, make things difficult for Tor users, etc.), so I decided to roll my own DDoS protection. This has gone fairly well so far, though my DDoS mitigation techniques haven't been tested by any particularly large attacks until now. (Small-scale DoS attacks are very common, and my mitigations handle them easily.)

[jacktheking]

Yes, you should never pay someone that threaten DDOS Bitcointalk. We, Bitcointalker here, will donate if there is a need to upgrade the server to a better standard.  .

I guess that the attacker is out of resource now. Happy defending! .

[Alaki_away]

I'd guess that DDoS attacker hacked mah account as well or the beta is leaking passwords. I'm not getting the reason how am I hacked? However, I've sent you a pm(theymos) for mah account recovery. How about checking 'em(mah pm)?

[KenR]

Why not use cloudflaire servers? They proved to be resistant against all ddos attacks. Just my two cents.
Thanks for sharing the info.

[Quickseller]

Why not use cloudflaire servers? They proved to be resistant against all ddos attacks. Just my two cents.
Thanks for sharing the info.

This has been discussed a number of times. I believe that you need to give up your HTTPS keys to google in order to use CloudFlaire which is not something that theymos wants to do just yet. If you give your HTTPS keys to a third party then that party can potentially impersonate you without detection.

[AgentofCoin]

I'd guess that DDoS attacker hacked mah account as well or the beta is leaking passwords. I'm not getting the reason how am I hacked? However, I've sent you a pm(theymos) for mah account recovery. How about checking 'em(mah pm)?

My guess is both of your above guesses are full of crap since your saying he also "hacked" your btc wallet.
So, you likely have malicious software on your computer and I'm guessing is still there now.

Also, this thread is to notify users of this DDoS extortion attempt and/or possible future downtime.
You posting in this thread to ask Theymos to check his PMs about your account reset is offtopic.

[notlist3d]

10BTC for some DDoS on a forum? that's just ridiculous.

Extortion is ridiculous to begin with.  I'm glad theymos shared so we know whats going on if site slows down, or worst stops.  But if you pay them once... they will come back again wanting more chances are.  So who ever doing it is a idiot to think they will get payment.

Heck on the big hack on DB a while back theymos offered reward for tips/telling who did attack.  I like this side much better find a way to legally get the person trying to do this in court.

[Yazuki]

you go theymos! screw those lamers trying to extort you

[Slark]

10BTC for some DDoS on a forum? that's just ridiculous.

Not really. This is the biggest cryptocurrency forum in the world. Everyone knows it. Hackers assume that Theymos has a small fortune in BTC from donations and ads published on bitcointalk.
So it will be easy for him to pay 'small fee' of 10 BTC to prevent DDOS. But paying anything is not the answer and solution but instead dead end and invitation to another DDOS.

[Lauda]

Not really. This is the biggest cryptocurrency forum in the world. Everyone knows it. Hackers assume that Theymos has a small fortune in BTC from donations and ads published on bitcointalk.
So it will be easy for him to pay 'small fee' of 10 BTC to prevent DDOS. But paying anything is not the answer and solution but instead dead end and invitation to another DDOS.

I doubt that this is the case. The sender could probably be part of some larger group that is sending out these emails everywhere. Just recently, it has been discovered that a group has been doing this and due to receiving coins on a single address (some 'people' pay and some don't) they have not launched a single attack (free Bitcoins?). Anyhow, the forum should be fine for now. DDoS is just a temporary issue.

[Amph]

is this the same guy(i'm assuming) that back then caused that huge ddos of the forum and we remained two days without the forum? it may be the same person, but i don't remember an extorsion at that time...

[Spoetnik]

This was a common occurrence last year.
Cryptsy got hit as well as RarBG and many others.
I also seen stories about other P2P sites and rumors all over about Extortion demands for BTC.
Pretty sure a couple stories mentioned this last couple months at Torentfreak.

And ya screw 'em i would not give in to them.
Pay them once & they would be back later for more money anyway.

[Your Point Is Invalid]

How did you get the message @theymos? Maybe we can track them down