2 min read

Identify who is behind DDoS blackmail plot, and earn yourself a Bitcoin bounty

Graham CLULEY

November 26, 2015

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Identify who is behind DDoS blackmail plot, and earn yourself a Bitcoin bounty

Twenty-or-so years ago, Mel Gibson starred in the movie “Ransom”. It was a fun bit of hokum, where he told the people who kidnapped his son that he wouldn’t pay them the $2 million ransom they demanded, but instead offered a bounty for anyone who could catch the kidnappers – dead or alive.

Such fun!

Of course, that would never happen in real life, right? Right?

However, as Softpedia reports, two websites have taken a leaf from mad Mel’s book and have offered a bounty on the extortionists who are attempting to blackmail them with denial-of-service threats.

Here’s what happened.

Hacked.com and sister site CryptoCoinsNews.com were both hit by a distributed denial-of-service (DDoS) attack earlier this week. The attacks were accompanies by an email from the apparent attackers, threatening to inform the sites’ advertisers about the downtime unless a 2 bitcoin ransom was paid.

blackmail-email

Source: Softpedia

We are attacking your website now and we have taking it down for around 3 hours now.

Pay us 2 Bitcoins now to:
[Bitcoin address]

Or we will keep attacking your website, we have only used 20% of the machines we have enslaved by our Trojan

If you do not pay those 2 BTC today, you will have to pay 3 BTC tomorrow

Also, if I don’t receive those 2 BTC within an hour, I will start mailing all the advertisers on your website telling them that your website is down.

Pay me those 2 BTC and I will tell you the fatal security vulnerabilities on your site. Pay me those 2 BTC instead of losing the trust of the advertisers. Countdown began.

So, what would you do?

Well, the first thing is probably to ensure that your website is working properly. Fortunately, in this case, the sites were able to mitigate the threat and restore access for their readers.

But should you pay a ransom to blackmailers? I would strongly argue that you shouldn’t. Paying extortionists only tells them that you are a soft target – who can probably be fleeced for “protection money” time and time again, as the threat continues to hang over your head.

I’m pleased to say that Hacked and CryptoCoinNews didn’t pay the ransom. Instead, they counter-attacked.

In statement posted on the Hacked and CryptoCoinNews websites they announced that they are offering 5 bitcoin (approximately 1700 USD) to anyone who can provide the following information:

  • the ID(s) of the extortionists
  • Location (address)
  • Similar attacks on other sites/companies
  • Other relevant information

I’m not entirely convinced that it’s wise to goad online criminals in this fashion, but you have to respect the bravado of the websites unprepared to cave in to internet threats.

tags


Author



Right now

Top posts

What is medical identity theft and how to protect against it

What is medical identity theft and how to protect against it

July 27, 2022

2 min read
Curious about Omegle? Here’s how the roulette-style chat platform can threaten your online privacy and security

Curious about Omegle? Here’s how the roulette-style chat platform can threaten your online privacy and security

July 07, 2022

5 min read
Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside

Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside

June 28, 2022

2 min read
Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online

Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online

June 28, 2022

3 min read
Bitdefender Reveals the Top Cyber Threats Faced by Consumers in 2021

Bitdefender Reveals the Top Cyber Threats Faced by Consumers in 2021

June 22, 2022

1 min read
Scam alert: Cybercrooks use shady investment domain to scam keen investors out of money and data

Scam alert: Cybercrooks use shady investment domain to scam keen investors out of money and data

May 24, 2022

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Chinese criminals scam kids desperate to play games for more than three hours a week Chinese criminals scam kids desperate to play games for more than three hours a week
Graham CLULEY

August 12, 2022

2 min read
Sophisticated Smishing Attack on Twilio Leads to Employee Credential Leak and Data Breach Sophisticated Smishing Attack on Twilio Leads to Employee Credential Leak and Data Breach
Silviu STAHIE

August 09, 2022

1 min read
Attackers Hit German Chambers of Industry and Commerce; All Digital Services Down Attackers Hit German Chambers of Industry and Commerce; All Digital Services Down
Silviu STAHIE

August 05, 2022

1 min read