Two Europeans charged in US over DDOS attacks
Two European men have been indicted for allegedly orchestrating cyberattacks against two Web sites, a continuation of the first successful U.S. investigation ever into distributed denial-of-service attacks, according to the U.S. Department of Justice.
One of the men, Axel Gembe, 25, of Germany, is believed to be the programmer behind Agobot, a well-known malicious software program used to create a botnet or network of compromised PCs.
Gembe and 24-year-old Lee Graham Walker of Bleys Bolton, England, were indicted Thursday by a grand jury in Los Angeles, California, on one count of conspiracy and one count of intentionally damaging a computer system.
The two men were allegedly hired by Jay R. Echouafni, owner of Orbit Communication, a Massachusetts-based company that sold home satellite systems, to carry out DDOS attacks. Those attacks were directed at the public Web sites of two of Orbit's competitors, Rapid Satellite of Miami, Florida, and Weaknees of Los Angeles.
The attacks halted Weaknees' business for two weeks in October 2003, causing the company $200,000 in losses, the DOJ said. Weaknees sold digital video recorders online. Rapid Satellite, which sold home satellite television systems, was also damaged.
Echouafni remains at large. Another man, Paul Ashley, who prosecutors describe as one of the Echouafni's associates, has already completed a two-year prison sentence for his role in the conspiracy.
Walker is accused of helping maintain Gembe's botnet. According to the indictment, the two used IRC (Internet relay chat) to discuss ways to make the code behind the botnet more powerful and damaging to Web sites.
During a DDOS attack, computers infected with the botnet code are directed to send overwhelming amounts of data traffic to the targeted Web site, which usually causes the site to become unavailable.
In this case, computers in the botnet sent "syn" data packets to both Web sites. Syn packets initiate communication between two computers, but can be configured with false information.
Syn packets sent in an overwhelming data stream jams up the receiving server. Gembe's botnet could also direct large amounts HTTP traffic toward a Web site, which has the same damaging effect.
IDG News Service
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
law
Powered by Twitter
jfruh
Apple syncing patent can't come soon enough
pasmith
New Twitter features borrow from 3rd party clients
Esther Schindler
Open Source Changes the Software Acquisition Process
mikelgan
How to set up continuous podcast play on the new iTunes
David Strom
Five important Windows 7 mobility features
sjvn
Guard your Wi-Fi for your own sake
Sandra Henry-Stocker
Grepping on Whole Words
Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
