Two Europeans charged in US over DDOS attacks
Two European men have been indicted for allegedly orchestrating cyberattacks against two Web sites, a continuation of the first successful U.S. investigation ever into distributed denial-of-service attacks, according to the U.S. Department of Justice.
One of the men, Axel Gembe, 25, of Germany, is believed to be the programmer behind Agobot, a well-known malicious software program used to create a botnet or network of compromised PCs.
Gembe and 24-year-old Lee Graham Walker of Bleys Bolton, England, were indicted Thursday by a grand jury in Los Angeles, California, on one count of conspiracy and one count of intentionally damaging a computer system.
The two men were allegedly hired by Jay R. Echouafni, owner of Orbit Communication, a Massachusetts-based company that sold home satellite systems, to carry out DDOS attacks. Those attacks were directed at the public Web sites of two of Orbit's competitors, Rapid Satellite of Miami, Florida, and Weaknees of Los Angeles.
The attacks halted Weaknees' business for two weeks in October 2003, causing the company $200,000 in losses, the DOJ said. Weaknees sold digital video recorders online. Rapid Satellite, which sold home satellite television systems, was also damaged.
Echouafni remains at large. Another man, Paul Ashley, who prosecutors describe as one of the Echouafni's associates, has already completed a two-year prison sentence for his role in the conspiracy.
Walker is accused of helping maintain Gembe's botnet. According to the indictment, the two used IRC (Internet relay chat) to discuss ways to make the code behind the botnet more powerful and damaging to Web sites.
During a DDOS attack, computers infected with the botnet code are directed to send overwhelming amounts of data traffic to the targeted Web site, which usually causes the site to become unavailable.
In this case, computers in the botnet sent "syn" data packets to both Web sites. Syn packets initiate communication between two computers, but can be configured with false information.
Syn packets sent in an overwhelming data stream jams up the receiving server. Gembe's botnet could also direct large amounts HTTP traffic toward a Web site, which has the same damaging effect.
IDG News Service
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
law
Powered by TwitterOn Twitter now
law
Brian Proffitt
Microsoft/Novell: Breaking Down the Coupon Numbers
Esther Schindler
Drupal's Dries Buytaert on Building the Next Drupal
Tom Henderson
Top Ten General Operating Systems Rants
pasmith
PS3 motion controller delayed; goes up against Project Natal
sjvn
Neolithic Windows security hole alive and well in Windows 7
claird
Perl source code comparison makes for good reading
mikelgan
Cell phones don't create stress or interrupt much
Sandra Henry-Stocker
How to: The Unix Interview
Where Google Chrome security fails: the password
I heard mention that the Chrome OS will have some sort of encryption available a la bitlocker. If it's possible to encrypt personal data using another password or key, then it may have potential for very secure data.... And Ubuntu has an 'encrypt home directory' option, perhaps google should follow suit.
- Dann
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
- Ubuntu advances: Why Ubuntu server installations will surge in 2010
- Social media marketing: How to make friends with benefits
- More...
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
