UK Runs Fake DDoS-for-Hire Sites

Read Time:1 Minute, 1 Second

Brian Krebs is reporting that the UK’s National Crime Agency is setting up fake DDoS-for-hire sites as part of a sting operation:

The NCA says all of its fake so-called “booter” or “stresser” sites - which have so far been accessed by several thousand people—have been created to look like they offer the tools and services that enable cyber criminals to execute these attacks.

“However, after users register, rather than being given access to cyber crime tools, their data is collated by investigators,” reads an NCA advisory on the program. “Users based in the UK will be contacted by the National Crime Agency or police and warned about engaging in cyber crime. Information relating to those based overseas is being passed to international law enforcement.”

The NCA declined to say how many phony booter sites it had set up, or for how long they have been running. The NCA says hiring or launching attacks designed to knock websites or users offline is punishable in the UK under the Computer Misuse Act 1990.

“Going forward, people who wish to use these services can’t be sure who is actually behind them, so why take the risk?” the NCA announcement continues.

Infostealers Harvest Over 30,000 Australian Banking Credentials

Applying Security Engineering to Prompt Injection Security

Ransomware attacks on critical infrastructure surge, reports FBI

21 million employee screenshots leaked in bossware breach blunder

Zero-Day Exploitation Figure Surges 19% in Two Years

Europol Creates “Violence-as-a-Service” Taskforce

Windscribe Acquitted on Charges of Not Collecting Users’ Data

Uyghur Diaspora Group Targeted with Remote Surveillance Malware

Half of Mobile Devices Run Outdated Operating Systems