{"id":8657,"date":"2017-08-09T10:17:09","date_gmt":"2017-08-09T18:17:09","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2017\/08\/09\/news-2430\/"},"modified":"2017-08-09T10:17:09","modified_gmt":"2017-08-09T18:17:09","slug":"news-2430","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2017\/08\/09\/news-2430\/","title":{"rendered":"Alleged vDOS Operators Arrested, Charged"},"content":{"rendered":"

Credit to Author: BrianKrebs| Date: Wed, 09 Aug 2017 15:43:24 +0000<\/strong><\/p>\n

Two young Israeli men alleged by this author to have co-founded vDOS<\/strong> — until recently the largest and most profitable cyber attack-for-hire service online — were arrested and formally indicted this week in Israel on conspiracy and hacking charges.<\/p>\n

On Sept. 8, 2016, KrebsOnSecurity\u00a0published a story<\/a>\u00a0about the hacking of vDOS, a service that attracted tens of thousands of paying customers and facilitated more than two million distributed denial-of-service (DDoS) attacks over the four year period it was in business.<\/p>\n

That story named two then 18-year-old Israelis \u2014\u00a0Yarden “applej4ck” Bidani<\/strong>\u00a0and\u00a0Itay “p1st” Huri<\/strong>\u00a0\u2014 as the likely owners and operators of vDOS. Within hours of that story’s publication the two\u00a0were detained by Israeli police<\/a>, placed on house arrest for 10 days, and forbidden from using the Internet for a month.<\/p>\n

\"vDOS<\/p>\n

vDOS as it existed on Sept. 8, 2016.<\/p>\n<\/div>\n

On Tuesday, Israeli prosecutors announced they had formally arrested and charged<\/a> two 19-year-olds with conspiring to commit a felony, prohibited activities, tampering with or disrupting a computer, and storing or disseminating false information. A statement<\/a> from a spokesman for the Israeli state attorney’s office said prosecutors couldn’t name the accused because their alleged crimes were committed while they were minors.<\/p>\n

But a number of details match perfectly with previous reporting on Bidani and Huri.\u00a0As noted in the original Sept. 2016 expose’ on vDOS’s alleged founders, Israeli prosecutors say the two men made more than $600,000 in two of the four years the service was in operation. vDOS was shuttered for good not longer after Bidani and Huri’s initial detention in Sept. 2016.<\/p>\n

“The defendants were constantly improving the attack code and finding different network security weaknesses that would enable them to offer increased attack services that could overcome existing defenses and create real damage to servers and services worldwide,” Israeli prosecutors alleged of the accused and their enterprise.<\/span><\/p>\n

“Subscribers were able to select an ‘attack’ package from the various packages offered, with the packages classified by the duration of each attack in seconds, the number of simultaneous attacks and the magnitude of the attack in Gigabits per second, and their prices ranged from $ 19.99 to $ 499.99,” the allegation continues.<\/p>\n

\"19-year-old<\/p>\n

19-year-old Yarden Bidani.<\/p>\n<\/div>\n

Lawyers for Bidani and Huri could not be immediately reached for comment. But both have said their clients were merely operating a defensive \u201cstresser\u201d service sold to companies that wished to test whether their sites could withstand large cyberattacks.<\/p>\n

The owners of these stresser services\u00a0have sought to hide behind wordy \u201cterms of service\u201d agreements to which all customers must agree, arguing that these agreements\u00a0absolve them of any sort of liability<\/a>\u00a0for how their customers use the service.<\/p>\n

Law enforcement officials both in the United States and abroad say stresser services enable illegal activity, and they\u2019ve recently begun arresting both owners and users of these services.<\/p>\n

In December 2016, federal investigators in the U.S. and Europe\u00a0arrested nearly three-dozen people<\/a>\u00a0suspected of patronizing stresser services (also known as \u201cbooter<\/a>\u201d services).\u00a0That crackdown was billed as part of an effort by authorities to weaken demand for these services, and to impress upon customers that hiring someone to launch cyberattacks on your behalf can land you in jail.<\/p>\n

In October 2016, the U.S. Justice Department\u00a0charged two 19-year-old men<\/a>\u00a0alleged to have operated a stresser service affiliated with the hacking group known as the\u00a0Lizard Squad<\/a>.<\/p>\n

KrebsOnSecurity paid a heavy price for breaking the story on vDOS\u2019s hacking and the subsequent arrest of its alleged proprietors. Less than two weeks after those stories were published in September 2016, this site came under\u00a0one of the largest DDoS attacks<\/a>\u00a0the Internet has ever witnessed.<\/p>\n

That series of attacks ultimately knocked this site offline for nearly four days. According to\u00a0follow-up reporting published in January 2017<\/a>, the attacks were paid for\u00a0by a cybercriminal who was upset and\/or inconvenienced by my expos\u00e9 on vDOS.<\/p>\n

At the height of vDOS\u2019s profitability in mid-2015, the DDoS-for-hire service\u00a0was earning its then-17-year-old proprietors more than $42,000 a month<\/em>\u00a0in PayPal and Bitcoin payments from thousands of subscribers. That\u2019s according to an analysis<\/a> of the leaked vDOS database performed by researchers at\u00a0New York University<\/strong>.<\/p>\n

\"The<\/p>\n

The vDOS home page.<\/p>\n<\/div>\n

https:\/\/krebsonsecurity.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

<\/p>\n

Credit to Author: BrianKrebs| Date: Wed, 09 Aug 2017 15:43:24 +0000<\/strong><\/p>\n

Two young Israeli men alleged by this author to have co-founded vDOS — until recently the largest and most profitable cyber attack-for-hire service online — were arrested and formally indicted this week in Israel on conspiracy and hacking charges.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10643,10642],"tags":[10706,12550,11751,12551,10644,13490,12552,10747,11755],"class_list":["post-8657","post","type-post","status-publish","format-standard","hentry","category-independent","category-krebs","tag-applej4ck","tag-booter","tag-itay-huri","tag-new-york-university","tag-other","tag-p1st","tag-stresser","tag-vdos","tag-yarden-bidani"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/8657","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=8657"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/8657\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=8657"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=8657"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=8657"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}