Bitcoin Forum
November 14, 2024, 05:04:12 AM *
News: Check out the artwork 1Dq created to commemorate this forum's 15th anniversary
 
   Home   Help Search Login Register More  
Pages: [1] 2 »  All
  Print  
Author Topic: DDoS attacks  (Read 1468 times)
CasinoBit (OP)
Sr. Member
****
Offline Offline

Activity: 364
Merit: 250



View Profile
May 26, 2013, 02:29:58 PM
 #1

I am curious have there been instances of DDoS and the attacker demanding ransom in other services in the community?

We have been experiencing DDoS attacks until the mitigation server was switched, now everything seems to be better *knocks on wood*.

What had really left me puzzled is how come we got attacked and asked for ransom but businesses such as Mt Gox, S Dice etc never had any problems?
OnkelPaul
Legendary
*
Offline Offline

Activity: 1039
Merit: 1005



View Profile
May 26, 2013, 02:36:55 PM
 #2

What had really left me puzzled is how come we got attacked and asked for ransom but businesses such as Mt Gox, S Dice etc never had any problems?

They would probably not be talking about a ransom.

Gox has been under several DDoSes, I don't think all of them were targeted to manipulate BTC exchange rate, there's a good chance that some of them were attempts to extort money from Gox.

Onkel Paul

CMMPro
Hero Member
*****
Offline Offline

Activity: 588
Merit: 500



View Profile
May 26, 2013, 03:01:38 PM
 #3

Whoever was performing the recent DDOS on SR was asking for money.

I think it was only $5k worth of BTC though....still that is the definition.

Hawker
Legendary
*
Offline Offline

Activity: 1218
Merit: 1001



View Profile
May 26, 2013, 03:26:19 PM
 #4

I am curious have there been instances of DDoS and the attacker demanding ransom in other services in the community?

We have been experiencing DDoS attacks until the mitigation server was switched, now everything seems to be better *knocks on wood*.

What had really left me puzzled is how come we got attacked and asked for ransom but businesses such as Mt Gox, S Dice etc never had any problems?

DDOS of gaming sites is normal.  My sites are under constant attack that range from 5 to 15 gbps.  It just never stops and the reason is simple.  If you are down, someone else has revenue that would otherwise have been yours.
threeip
Full Member
***
Offline Offline

Activity: 154
Merit: 100



View Profile WWW
May 26, 2013, 08:48:25 PM
 #5

What had really left me puzzled is how come we got attacked and asked for ransom but businesses such as Mt Gox, S Dice etc never had any problems?

If you are down, someone else has revenue that would otherwise have been yours.

Either;
attacker wants cash - doesnt care about 'you' - ddos and ransom
attacker wants your site down - hates 'you' - ddos and more ddos

ส็็็็็็็็็็็็็็็็็็็็็็็็็ GPG:2AFD99BB ಠ_ಠ mon
CasinoBit (OP)
Sr. Member
****
Offline Offline

Activity: 364
Merit: 250



View Profile
May 26, 2013, 09:00:49 PM
 #6

DDOS of gaming sites is normal.  My sites are under constant attack that range from 5 to 15 gbps.  It just never stops and the reason is simple.  If you are down, someone else has revenue that would otherwise have been yours.

What is your website? Our DDoS peaked at 25gbps but what surprises me is that there apparently not have been many similar attacks on more popular bitcoin sites.

I feel quite honored to be honest.
Maged
Legendary
*
Offline Offline

Activity: 1204
Merit: 1015


View Profile
May 26, 2013, 09:26:09 PM
 #7

I think a long time ago when MtGox was younger they said that someone was DDoSing them but would stop for a $10k ransom. Or maybe that was some other site. Point is, this is extremely common. In fact, it's one of the best ways for botnet operators to monetize their botnets.

CasinoBit (OP)
Sr. Member
****
Offline Offline

Activity: 364
Merit: 250



View Profile
May 26, 2013, 09:36:56 PM
 #8

I think a long time ago when MtGox was younger they said that someone was DDoSing them but would stop for a $10k ransom. Or maybe that was some other site. Point is, this is extremely common. In fact, it's one of the best ways for botnet operators to monetize their botnets.

I've heard of botnets mining LTC but never blackmailing websites... I was under the impression that that was the newest trend.
Hawker
Legendary
*
Offline Offline

Activity: 1218
Merit: 1001



View Profile
May 26, 2013, 09:47:04 PM
 #9

I think a long time ago when MtGox was younger they said that someone was DDoSing them but would stop for a $10k ransom. Or maybe that was some other site. Point is, this is extremely common. In fact, it's one of the best ways for botnet operators to monetize their botnets.

I've heard of botnets mining LTC but never blackmailing websites... I was under the impression that that was the newest trend.

How long have you been in gaming?  Sportingbet used to get attacked that way in the 90s.  Every big match was preceded by a ddos and a message "Pay us or no revenue for you."
Maged
Legendary
*
Offline Offline

Activity: 1204
Merit: 1015


View Profile
May 26, 2013, 09:48:04 PM
 #10

I think a long time ago when MtGox was younger they said that someone was DDoSing them but would stop for a $10k ransom. Or maybe that was some other site. Point is, this is extremely common. In fact, it's one of the best ways for botnet operators to monetize their botnets.

I've heard of botnets mining LTC but never blackmailing websites... I was under the impression that that was the newest trend.
No, they've been doing this for many years. You just don't hear about it much since nobody wants to draw attention to these terrorists.

CasinoBit (OP)
Sr. Member
****
Offline Offline

Activity: 364
Merit: 250



View Profile
May 26, 2013, 10:34:16 PM
 #11

No, they've been doing this for many years. You just don't hear about it much since nobody wants to draw attention to these terrorists.

Well they certainly deserve every cent they get for the risk they put themselves in, albeit a little difficult it would still be possible to track them down.

I think a long time ago when MtGox was younger they said that someone was DDoSing them but would stop for a $10k ransom. Or maybe that was some other site. Point is, this is extremely common. In fact, it's one of the best ways for botnet operators to monetize their botnets.

I've heard of botnets mining LTC but never blackmailing websites... I was under the impression that that was the newest trend.

How long have you been in gaming?  Sportingbet used to get attacked that way in the 90s.  Every big match was preceded by a ddos and a message "Pay us or no revenue for you."

Pretty long but I'm talking about BTC businesses, it amazed me that they demanded ransom in BTC and that websites such a bitzino, Strikesapphire, S. Dice etc weren't attacked (I don't even recall them being offline after all the times I've played).

Anyway Maged is probably right, these dogs don't deserve a mention, no serious bitcoin site would send ransom to Iranian 13 year old teenagers with moustaches.
Hawker
Legendary
*
Offline Offline

Activity: 1218
Merit: 1001



View Profile
May 26, 2013, 10:37:02 PM
 #12

If you pay even once, you have to accept that you pay every month. 

PM me if you want an intro to a firm that specialises in handling this type of ddos. 
CasinoBit (OP)
Sr. Member
****
Offline Offline

Activity: 364
Merit: 250



View Profile
May 26, 2013, 10:38:45 PM
 #13

If you pay even once, you have to accept that you pay every month. 

PM me if you want an intro to a firm that specialises in handling this type of ddos. 

We've already switched to a company that seems to handle themselves but thanks.

Haven't even considered paying them, just letting the community know.
Hawker
Legendary
*
Offline Offline

Activity: 1218
Merit: 1001



View Profile
May 26, 2013, 10:44:48 PM
 #14

If you pay even once, you have to accept that you pay every month. 

PM me if you want an intro to a firm that specialises in handling this type of ddos. 

We've already switched to a company that seems to handle themselves but thanks.

Haven't even considered paying them, just letting the community know.

I'm sorry to imply you did.  Good luck.  It costs them more to knock you down for an hour than you take in an hour so eventually they will be overpowered by your bandwidth and servers.  But getting to that point is a pain.
Maged
Legendary
*
Offline Offline

Activity: 1204
Merit: 1015


View Profile
May 26, 2013, 11:20:20 PM
 #15

If you pay even once, you have to accept that you pay every month. 
Don't you wish! You will have to pay them every time they run out of money for blow.

mcdett
Full Member
***
Offline Offline

Activity: 157
Merit: 101



View Profile
May 27, 2013, 01:52:19 AM
 #16

You can never pay them, it was mentioned here before, but as a good philosophy in general is to never pay blackmail or extortion... they'll always come back for more.  You need to upgrade your stuff.  Get an Akamai front end, a WAF tuned into typical ddos methods, and maybe some simple routines in your code to better verify normal users and not bad accounts.... but this all takes money.

Be glad the day you've been ddos'ed, it means you've arrived.  You just need to get your shit together now.  Be better, faster and stronger.


Good luck!
WinVery.com
Full Member
***
Offline Offline

Activity: 235
Merit: 100



View Profile
May 27, 2013, 02:04:31 AM
 #17

Posts like this will encourage them.
yocko06
Full Member
***
Offline Offline

Activity: 182
Merit: 100


1Kgyk4nQSzb3Pm9E9vWiGVyJ6jpPwripKf


View Profile
May 27, 2013, 02:55:26 AM
 #18

ddos attacker was most likely opencoin/ripple. most likely government driven in order to disrupt bitcoin and turn people to an alternative that is controlled rather than free.
CasinoBit (OP)
Sr. Member
****
Offline Offline

Activity: 364
Merit: 250



View Profile
May 27, 2013, 03:09:57 AM
 #19

Posts like this will encourage them.

How so?

Posts like this will show that we will not be bullied and that we are open to talk about it.
Tywill
Newbie
*
Offline Offline

Activity: 14
Merit: 0



View Profile WWW
May 27, 2013, 04:16:04 AM
 #20

You can never pay them, it was mentioned here before, but as a good philosophy in general is to never pay blackmail or extortion... they'll always come back for more.  You need to upgrade your stuff.  Get an Akamai front end, a WAF tuned into typical ddos methods, and maybe some simple routines in your code to better verify normal users and not bad accounts.... but this all takes money.

Be glad the day you've been ddos'ed, it means you've arrived.  You just need to get your shit together now.  Be better, faster and stronger.


Good luck!

worth reposting
Pages: [1] 2 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!