Website Linked To Attacks On UK Banks Is Shut Down

Uploaded on 2018-04-26 in NEWS-Cybersecurity News, GOVERNMENT-Law Enforcement, FREE TO VIEW, BUSINESS-Services-Financial

A website linked to more than 4m cyber-attacks worldwide, including against some of Britain’s biggest banks, has been shut down following a UK and Netherlands-led operation.

Webstresser.org had 136,000 registered users and could be rented for about £10 to launch distributed denial of service (DDoS) attacks, in which high volumes of internet traffic are launched at target computers to disable them.

Following an investigation led by the UK’s National Crime Agency (NCA) and the Dutch national police, servers were seized in the Netherlands, the US and Germany, effecting a takedown of the website.

Suspected members of the group were arrested recently in Scotland, Croatia, Canada and Serbia, the NCA said. The operation was supported by Europol and Police Scotland, as well as law enforcement in 11 countries. NCA officers also raided a property in Bradford, where the agency believed a suspect linked to the address used the Webstresser service to target seven of the UK’s biggest banks in attacks in November last year. 

The banks, which have not been named by investigators, were forced to reduce their operations or shut down entire systems, incurring costs in the hundreds of thousands.

Jo Goodall, senior investigating officer at the NCA, said: “A significant criminal website has been shut down and the sophisticated crime group behind it stopped as a result of an international investigation involving law enforcement agencies from 11 countries.

“The arrests made over the past two days show that the Internet does not provide bulletproof anonymity to offenders and we expect to identify further suspects linked to the site in the coming weeks and months as we examine the evidence we have gathered.”

Individuals with little or no technical knowledge could use the Webstresser service to launch crippling cyber attacks across the world. 

Other targets have included government institutions and police forces, as well as victims in the gaming industry.
Gert Ras, the head of the national hi-tech crime unit at the Dutch police, said: “By taking down the world’s largest illegal DDoS seller in a worldwide joint law-enforcement operation based on NCA intelligence, we have made an unprecedented impact on DDoS cybercrime. Not only were the administrators of this illegal service arrested, but also users will now face prosecution and civil liability for caused damage.

“This is a warning to all wannabe DDoS-ers: do not DDoS because, through close law-enforcement collaboration, we will identify you, bring you to court and facilitate that you will be held liable by the victims for the huge damage you cause.”

Europol’s European Cybercrime Centre (EC3) and the Joint Cybercrime Action Taskforce (J-Cat) supported the investigation by assisting the exchange of information between all partners. A command-and-coordination post was set up at Europol’s headquarters in The Hague, in the Netherlands, on the action day.

Guardian

You Might Also Read: 

DDoS Attack? There Is An App For That:

DDoS Protection: 14 Unique Ways to Protect Your Organisation:
 

 

« Cambridge Analytica Planned To Issue Digital Currency
Cybersecurity Advice For SMEs »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Tines

Tines

The Tines security automation platform helps security teams automate manual tasks, making them more effective and efficient.

TSUNAMI

TSUNAMI

The TSUNAMi center focuses on software and system security and how trustworthy software can be built from COTS software components.

Intertrust Technologies

Intertrust Technologies

Intertrust Technologies is a software company specializing in trusted computing products and services.

Tata Consultancy Services (TCS)

Tata Consultancy Services (TCS)

Tata Consultancy Services is a global leader in IT services, consulting & business solutions including cyber security.

Salt Security

Salt Security

Salt Security protects the APIs that are the core of every SaaS, web, mobile, microservices and IoT application.

ISA Global Cybersecurity Alliance (ISAGCA)

ISA Global Cybersecurity Alliance (ISAGCA)

ISAGCA is a collaborative forum to advance OT cybersecurity awareness, education, readiness, and knowledge sharing.

Soffid

Soffid

Soffid provides full Single-Sign-On experience and full Identity and Access Management features by policy-based centralised orchestration of user identities.

Fastcomcorp

Fastcomcorp

Fastcomcorp offers a world-class proactive cyber security defense and risk management consulting. Including Darkweb monitoring and posture assessments.

Exterro

Exterro

Exterro is a leading provider of e-discovery and information governance software specifically designed for in-house legal, privacy and IT teams at Global 2000 and Am Law 200 organizations.

HiScout

HiScout

HiScout is your integrated management system for IT governance, risk & compliance.

Prescient Solutions

Prescient Solutions

Prescient Solutions is a managed services provider, using a cloud-based model to provide IT solutions to small, mid-sized, global organizations and government entities.

endpointX

endpointX

endpointX is a preventative cyber security company. We help companies minimize their risk of breach by improving cyber hygiene.

Cybercentry

Cybercentry

Cybercentry is a specialist information security, data protection and cyber security consultancy.

Knostic

Knostic

Knostic is an early stage startup developing a risk management and governance platform designed for enterprise large language models (LLM).

Eclypses

Eclypses

Eclypses has a disrupting cyber technology, offering organizations an advanced data security solution called MicroToken Exchange (MTE).

Softanics

Softanics

Softanics’ ArmDot protects .NET apps with advanced obfuscation, control flow protection, and virtualization, securing code against reverse engineering without requiring agents or environment changes.

DataTrails

DataTrails

DataTrails enables organizations to prove and verify the provenance and authenticity of any data they use in their business operations.