2 min read

Man who made $542,925 renting out DDoS services sentenced to prison

Graham CLULEY

November 19, 2019

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Man who made $542,925 renting out DDoS services sentenced to prison

A 21-year-old man who made half a million dollars running DDoS-for-hire services has been sentenced to prison for 13 months.

Between August 2015 to November 2017 Sergiy P. Usatyuk of Orland Park, Illinois, and a co-conspirator, operated a number of “booter” services that launched millions of distributed denial-of-service attacks that rendered websites slow or inaccessible.

The illegal websites operated by Usatyuk had colourful names such as ExoStresser, QuezStresser, Betabooter, Databooter, Instabooter, Polystress, and Zstress.

Despite their different names, the “booter” (sometimes known as “stressser”) services were all designed for the same purpose – to make it simple for cybercriminals to hire a DDoS attacks that could swamp a targeted web server or computer with unwanted internet traffic, interrupting normal business operations and causing network downtime.

In one attack, highlighted by the Department of Justice, a subscriber to the Betabooter service launched a series of DDoS attacks against a school district in Pittsburgh, Pennsylvania. That attack is said to have not only disrupted the school district’s computer system, but also impacted the systems of 17 other organisations that shared the same IT infrastructure, including other school districts, the county government, and a Catholic Diocese in the area.

Low cost has made booter-based DDoS attack services offer an easy entry point for those tempted by a life as a cybercriminal.

Hiring a DDoS may cost relatively little, but the sheer number of website-clogging attacks initiated (over 3.8 million in the first 13 months of the criminal scheme) meant that significant sums of money were being earnt by Usatyuk and his accomplice. In addition, revenue was generated by selling ads for other booter services on the sites.

“The defendant made hundreds of thousands of dollars by launching countless indiscriminate cyber-attacks that victimized various segments of American society,” said Assistant Attorney General Brian A. Benczkowski of the Justice Department”s Criminal Division. “The Criminal Division and our law enforcement partners will remain vigilant in protecting the American public from these types of sophisticated, far-reaching threats.”

Once his 13 month prison sentence is over, Usatyuk will have to serve three years of supervised release. In addition the 21-year-old has been ordered to forfeit dozens of servers and other computer equipment, as well as $542,925 he made through the criminal scheme.

Any company which relies upon its website to make money, and provide services to its customers, needs to consider very seriously what it is going to do about DDoS attacks.

The problem hasn’t gone away, and the availability of “booter” services has put the ability to bring down websites through a DDoS attack into the hands of even the least technologically-inclined criminals.

tags


Author



Right now

Top posts

Threat actors impersonate Canadian gas retailer to deliver malicious OneNote phishing campaign, Bitdefender Labs warns

Threat actors impersonate Canadian gas retailer to deliver malicious OneNote phishing campaign, Bitdefender Labs warns

January 26, 2023

2 min read
Spammers phish eager vacationers with travel-themed lures, Bitdefender Antispam Lab warns

Spammers phish eager vacationers with travel-themed lures, Bitdefender Antispam Lab warns

January 19, 2023

4 min read
Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

November 29, 2022

2 min read
How to monitor your online privacy during your Thanksgiving trip

How to monitor your online privacy during your Thanksgiving trip

November 22, 2022

3 min read
Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

November 16, 2022

6 min read
Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

November 14, 2022

5 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

More than 50,000 People Affected by US Cellular Data Breach; Leaked Info Hits the Internet More than 50,000 People Affected by US Cellular Data Breach; Leaked Info Hits the Internet
Silviu STAHIE

February 08, 2023

2 min read
Russian Threat Actor Targets Ukraine Ministry and Polish Police in Similar Campaigns Russian Threat Actor Targets Ukraine Ministry and Polish Police in Similar Campaigns
Silviu STAHIE

February 06, 2023

1 min read
U.S. Department of Health and Human Services Hits ‘Banner Health’ with $1.25 Million Fine U.S. Department of Health and Human Services Hits ‘Banner Health’ with $1.25 Million Fine
Silviu STAHIE

February 03, 2023

1 min read