Spamhaus DDoS Attacker Loses 'Catch Me If You Can' Game with Authorities

By

You likely already know that Spanish authorities have arrested the 35-year-old Dutchman hacker known as “SK,” who was responsible for the largest Distributed Denial of Service (DDoS) attack in March on the not-for-profit Internet organization Spamhaus, a London and Geneva-based group that helps email providers filter out spam and other unwanted content. He was apprehended a few days ago in the city of Granollers, 20 miles (35km) north of Barcelona.

The subject of an intensive search by U.S., U.K., Dutch and Spanish investigators, SK is a member of the “Cyberbunker” group that believes anything but child pornography and terrorism is fair game for publication on the Internet. The suspect is expected to be extradited from Spain to be tried in the Netherlands.

The good news is authorities got their man. In fact, when captured as the perpetrator of launching what is being called the largest DDoS attack in history (300Gbps as opposed to a typical attack of 50Gbps) on Spamhaus, he self-identified as belonging to the "Telecommunications and Foreign Affairs Ministry of the Republic of Cyberbunker." The not-so-good news is the level of sophistication SK employed to accomplish his malicious feat.

For decades, mobility has been a tool for those trying to elude surveillance or capture, going all the way back to the Cuban Missile Crisis when nuclear-armed missiles were put on trucks and shuttled between bunkers to elude U.S. reconnaissance.

SK did not just use a vehicle to evade capture, he actually had a van outfitted to launch and sustain his attack. In fact, the Spanish interior minister said SK was able to carry out network attacks from the back of a van that had been "equipped with various antennas to scan frequencies." This is an illustration of just how ingenuous the bad guys have become in their use of mobile technology.

The coordinated attack on Spamhaus, in protest over its decision to add servers maintained by Cyberbunker to a spam blacklist, opens a new chapter in keeping up with the bad actors. Cyberbunker, named for the former bunker it uses as its headquarters, has unfortunately not just gone mobile, but has provided a new means for others to copy.

This time the authorities got their man in a relatively short period of time. Given how quickly SK was placed in custody hopefully puts others with similar intent on notice that, while they can run, they cannot hide.   




Edited by Alisen Downey
SHARE THIS ARTICLE
Related Articles

Radisys: How Service Providers Can Accelerate Time to Market Strategies

By: Erik Linask    1/18/2019

Not only are we in a digital, app- and mobile-centric world, but our expectations for services and information are growing by day. This of course puts…

Read More

An Inspiring Family Finds FIRST, and a Modern Roboticist Flourishes

By: Special Guest    1/14/2019

When it comes to Science, Technology, Education and Math (STEM), for the Smiths, living in Lithonia, Georgia, learning and growth is all in the family…

Read More

Siemens Wants to Feed the World Through Their Future of Food Project

By: Special Guest    1/10/2019

Last December, in Princeton, New Jersey, Siemens Corporate Technology US hosted its' annual Siemens ConneCTs conference and exhibition, with an array …

Read More

How to Combat Fake News

By: Special Guest    12/17/2018

With all the apps for verifying identity, there is no technology to differentiate fake news from real news. Paradoxically there are apps that can make…

Read More

Is AI Compliance Technology Really the Terminator? Why Smart RegTech Isn't a Threat

By: Special Guest    12/17/2018

Why is Smart RegTech a necessity for compliance and how can businesses identify the right technology solutions that will address any concerns with AI-…

Read More