Spamhaus DDoS Attacker Loses 'Catch Me If You Can' Game with Authorities

By

You likely already know that Spanish authorities have arrested the 35-year-old Dutchman hacker known as “SK,” who was responsible for the largest Distributed Denial of Service (DDoS) attack in March on the not-for-profit Internet organization Spamhaus, a London and Geneva-based group that helps email providers filter out spam and other unwanted content. He was apprehended a few days ago in the city of Granollers, 20 miles (35km) north of Barcelona.

The subject of an intensive search by U.S., U.K., Dutch and Spanish investigators, SK is a member of the “Cyberbunker” group that believes anything but child pornography and terrorism is fair game for publication on the Internet. The suspect is expected to be extradited from Spain to be tried in the Netherlands.

The good news is authorities got their man. In fact, when captured as the perpetrator of launching what is being called the largest DDoS attack in history (300Gbps as opposed to a typical attack of 50Gbps) on Spamhaus, he self-identified as belonging to the "Telecommunications and Foreign Affairs Ministry of the Republic of Cyberbunker." The not-so-good news is the level of sophistication SK employed to accomplish his malicious feat.

For decades, mobility has been a tool for those trying to elude surveillance or capture, going all the way back to the Cuban Missile Crisis when nuclear-armed missiles were put on trucks and shuttled between bunkers to elude U.S. reconnaissance.

SK did not just use a vehicle to evade capture, he actually had a van outfitted to launch and sustain his attack. In fact, the Spanish interior minister said SK was able to carry out network attacks from the back of a van that had been "equipped with various antennas to scan frequencies." This is an illustration of just how ingenuous the bad guys have become in their use of mobile technology.

The coordinated attack on Spamhaus, in protest over its decision to add servers maintained by Cyberbunker to a spam blacklist, opens a new chapter in keeping up with the bad actors. Cyberbunker, named for the former bunker it uses as its headquarters, has unfortunately not just gone mobile, but has provided a new means for others to copy.

This time the authorities got their man in a relatively short period of time. Given how quickly SK was placed in custody hopefully puts others with similar intent on notice that, while they can run, they cannot hide.   




Edited by Alisen Downey
SHARE THIS ARTICLE
Related Articles

Samsung's Bixby Creating New AI-driven Engagement Opportunities

By: Erik Linask    6/14/2019

Everywhere you look these days, voice is becoming the dominant enablement medium. Whether in a car, at home, in the office, or anywhere else, voice is…

Read More

The Most Important Features of Any Security Policy

By: Special Guest    5/29/2019

Advances in technology mean that a cybersecurity policy is as important as a physical security policy. Companies are now more vulnerable to attacks on…

Read More

Microsoft Live Mail to Outlook easy migration

By: Special Guest    5/24/2019

Microsoft has long been looking for ways to improve its email client. Unfortunately, for people who prefer to control their mailboxes themselves, some…

Read More

Should we fear the rise of the robots?

By: Special Guest    5/24/2019

Since the oldest times people have sought for ways to save them from hard physical work and menial activities. To find solutions they have invented ne…

Read More

How We Can Connect Rural America

By: Special Guest    5/23/2019

When Ginger and David McCullough sold their cattle ranch in the Texas Panhandle and moved to Johnson City to be closer to their son they didn't expect…

Read More