DDoS Attacks Archive

David Joseph Rezendes, aka Joseph David Rezendes, aka Joe Rezendes, age 27, currently of California, was indicted by a federal grand jury on

August 21, 2012 on charges related to a denial of service attack he allegedly implemented to retaliate against the Larimer County government,

United States Attorney John Walsh and FBI Denver Special Agent in Charge James Yacone announced. He was arrested on August 23, 2012 in

Sonora, Texas following a traffic stop. Today Rezendes will make his initial appearance in the Northern District of Texas in Abilene. The

government is seeking to have him detained and brought back to Colorado by the U.S. Marshals.

According to the indictment and other court records, beginning on Wednesday, September 22, 2010, a debilitating denial of service attack was

launched against Larimer County government’s computer network. A denial of service attack makes a computer resource, such as a network or

processor, unavailable to its intended users. A common denial of service attack involves a computer or computer network saturating a targeted

victim computer system or network, overwhelming that system or network with traffic or communications requests. The attack lasted until

September 24, 2010. The denial of service attack affected Larimer County employees’ ability to access their email and the Internet, including

state computer systems. The Larimer County Sheriff’s Department and the FBI investigated the attack. As part of their investigation, law

enforcement executed a court authorized search warrant of Rezendes’ residence. Computers and computer components were seized during the

search. FBI case agents and Larimer County Sheriff’s Department computer forensic experts performed an analysis examining the data on the

computers, uncovering evidence that the defendant was in fact responsible for the denial of service attack. The indictment alleges that Rezendes

intentionally damaged a protected computer, possessed unauthorized access devices (credit card information), possessed an identification

document-making implement, produced a false identification document, and committed aggravated identity theft. The indictment includes an

asset forfeiture allegation, which states that upon conviction of the violations stated in the indictment, including possessing unauthorized access

devices, possessing an identification document-making implement, or providing false identification document, the defendant shall forfeit to the

United States any and all of the defendant’s right, title and interest in all property constituting and derived from any proceeds obtained directly

and indirectly as a result of such offense, or property used to commit the offense, to include computers and computer components.

“Thanks to the excellent cooperative investigative work of the Larimer County Sheriff’s Office and the FBI, a computer hacker who allegedly shut

down Larimer County’s computer system for days has been arrested and will be brought to justice,” said U.S. Attorney John Walsh.

“The FBI strives to collaborate with our local law enforcement partners in a variety of cyber investigations through outreach and our task force

environment,” said FBI Denver Special Agent in Charge James Yacone. “Due to the FBI’s computer intrusion investigations program, the

capabilities of all partners are enhanced leveraging everyone’s resources to effectively and efficiently investigate cyber criminals willing to affect

our communities’ public safety.” “The computer attack in this case had a significant impact on Larimer County both operationally and

financially,” said Larimer County Sheriff Justin Smith. “We appreciate the FBI and the U.S. Attorney’s Office for assisting us in protecting the

taxpayers in Larimer County. Cyber-crimes of this nature underscore the importance of cooperation between local and federal officials and the

need for their expertise and assistance.”

If convicted, Rezendes faces not more than 10 years imprisonment and up to a $250,000 fine for one count of intentionally damaging a

protected computer and one count of possession of unauthorized access device. He also faces not more than 15 years imprisonment and up to a

$250,000 fine for one count of possession of document-making implement and authentication feature and one count of production of a false

identification document. He also face not more than 2 years imprisonment consecutive to any other sentence and up to a $250,000 fine for aggravated identity theft. This case was investigated by the Larimer County Sheriff’s Office and the Federal Bureau of Investigation.

The defendant is being prosecuted by Assistant United States Attorney Ryan Bergsieker.

The charges contained in the indictment are allegations, and the defendant is presumed innocent unless and until proven guilty.

Source: http://lawfuel.com/releases/–former-fort-collins-resident-indicted-for-denial-of-service-attack-on-larimer-county-government-32950/

Hacker group Anonymous targeted United Kingdom government websites today in a show of solidarity with Wikileaks founder Julian Assange, who is holed up at the Ecuardorian embassy in London, hoping to flee the U.K. for fear of being extradited to Sweden and then the United States.

The hacker collective, famous for using distributed denial of service attacks to make a political point, allegedly attacked the U.K. Justice Department website, along with the British Prime Minister’s website “Number 10.” Other reports indicate the group has also attacked the Department of Work and Pensions. Anonymous used the hash tag “#OpFreeAssange,” referencing the founder of Wikileaks who is supposed to be under house arrest in the U.K. for sex-crime allegations in Sweden.

Earlier today, one Anonymous bullhorn on Twitter, @AnonIRC said, “The website of the UK Ministry of Justice is down: http://www.justice.gov.uk/  #OpFreeAssange”

Another, @YourAnonNews, tweeted, “The second victim seems to be offline –> http://www.dwp.gov.uk/  #OpFreeAssange #Anonymous. Gov. of UK Expect Us!”

After being arrested and let out on bail, Assange escaped to the Ecuadorian embassy before authorities could extradite him to Sweden. The Latin American country granted Assange political asylum last week, saying his human rights were in danger. Officials in Ecuador spoke with Sweden but were not able to get assurances that Assange would not be extradited from there to the United States, where he faces bigger charges for the leak of many U.S. diplomatic cables in 2010.

As of now, the U.K. Justice department website is still down, though Number 10 and the Department of Work and Pensions websites are up.

This morning Assange gave a speech from a balcony at the Ecuadorian embassy. He urged the U.S. to end its “witch hunt” against Wikileaks. He said that the U.S. is at a juncture: “Will it return to and reaffirm the revolutionary values it was founded on or will it lurch off the precipice, dragging us all into a dangerous and oppressive world in which journalists fall silent under the fear of prosecution and citizens must whisper in the dark?”

Source: http://venturebeat.com/2012/08/20/anonymous-julian-assange/

The cyber wars are heating up, with the popular Russian government funded RT News becoming the latest victim to fall foul of a massive distributed denial of service (DDoS) attack that knocked the site out of action for around three hours earlier today.

RT News, whose pro-Russian government stance has seen them publish a number of stories in support of WikiLeaks founder Julian Assange, first revealed that its server was experiencing technical difficulties on Facebook, shortly before tweeting that its hosting provider had confirmed that a DDoS attack was the reason for the outage.

‘Antileaks’, the group that had earlier claimed responsibility for a similar attack on WikiLeaks, later claimed responsibility for taking down RT, although as of yet there is no proof that this group is behind the attacks. What is notable is that the attack came just hours before a guilty verdict was delivered against members of the punk band Pussy Riot, who have been highly critical of Russian leader Vladimir Putin.

Antileaks tweeted that it was responsible for the DDoS attack just 20 minutes after RT had confirmed it, attaching a hastag in support of the Pussy Riot members. Shortly afterwards, WikiLeaks weighed into the war of words on Twitter, condemning the attack and suggesting that it was due to RT’s support of Assange rather than anything to do with the punk band. RT had previously hosted Assange’s personal chat show, in which one of his guests was none other than Ecudador’s President Rafael Correa.

RT hasn’t said anything about how they managed to overcome the attack, simply posting on Facebook that their English-language site was “back online after DDoS attack but we’re still experiencing some tech difficulties.”

For fast DDoS protection against your website click here.

Source: http://siliconangle.com/blog/2012/08/17/rt-news-hit-by-ddos-attack-taken-offline-for-three-hours-this-morning/

 

A distributed denial-of-service attack aimed at AT&T’s DNS (Domain Name System) servers has disrupted data traffic for some of the company’s customers.

The multi-hour attack began Wednesday morning West Coast time and at the time of this writing, eight hours later, does not appear to have been mitigated.

“Due to a distributed denial of service attack attempting to flood our Domain Name System servers in two locations, some AT&T business customers are experiencing intermittent disruptions in service,” an AT&T spokesman told IDG News Service by email. “Restoration efforts are underway and we apologize for any inconvenience to our customers.”

The attack appears to have affected enterprise customers using AT&T’s managed services DNS product.

“Our highest level of technical support personnel have been engaged and are working to mitigate the issue,” AT&T said in a message on a service status page.

But it added there is “no estimated time” for restoring the service.

DNS is responsible for converting human-friendly domain names into the numeric IP (Internet protocol) addresses that computers use to route data. When it fails, computers are unable to route data to its intended destination, even though the destination server remains online and accessible.

A distributed denial-of-service (DDoS) attack attempts to flood a server or system with so many packets of data that it becomes difficult or impossible to reach for legitimate traffic. It doesn’t necessarily stop the server from working, but the overload of data results in the system being all but unusable.

Service is returned to normal when the attack stops or when engineers find a way to absorb or deflect the nuisance traffic.

“We got our first report of problems at 6:31 a.m. Pacific time,” said Daniel Blackmon, director of software development, at Worldwide Environmental Products. The company tests vehicle emissions and has remote units deployed that report back to central servers.

“The problems mean none of the equipment we have in the field can contact our servers, and there is a limit to the amount of information they can hold offline.”

For fast DDoS protection for your e-commerce website click here.

Source: http://www.pcworld.com/businesscenter/article/260940/atandt_hit_by_ddos_attack_suffers_dns_outage.html

CHENNAI: Hacktivist group Anonymous brought down Congress party’s website on Tuesday in what it claimed to be a fight against corruption. For the first time, it rallied its followers on social networking site Twitter and asked them to participate in distributed denial of service (DDoS) attacks that rendered the homepage of All India Congress Committee website (www.aicc.org.in) unavailable for most part of Tuesday.

The group’s tweets from the twitter handle @opindia_revenge led to another page which highlighted that the target of OpRiseIndia was corrupt corporations, political parties and media. “To help us simply click on the button ‘Go to Attack Page’ (everything is set for you), and click ‘Start Attack’,” it said. The site had a disclaimer that informed people that taking part in a DDoS attack is illegal and another link provided steps to protect oneself from detection and avoid revealing the location.

“We are fighting against corruption which goes across political parties,” said a member of the group in an internet relay chat. The Congress is their first target as it is in power now, the member said. The India-arm of Anonymous has done a series of virtual sit-ins or DDoS attacks on websites of Reliance Communications, Mahanagar Telephone Nigam Limited, Internet Service Providers Association of India and All-India Trinamool Congress as part of its protest against internet censorship.

The latest attack, members said, was an effort to create awareness about corruption among people. “We have seen many scams which have come out in the open, but nobody knows what is really happening. Public is kept at dark. We don’t know which political parties are behind it,” said another member.

As for asking people to participate in the attacks, a member said the group was looking to create awareness about corruption on the internet. “We have enough people to attack these sites. We are tweeting to build more awareness,” said a member.

The group said its operation has nothing to do with Anna Hazare’s movement or any other organisation that is fighting against corruption. “This is a separate movement from Anonymous,” said a member, adding that they are not against any political party. “All political parties indulging in corruption will be our targets,” said a member.

When contacted, Vishvjit Singh, chairman of AICC’s computer department, said: “Attacks can keep coming in, hopefully we’ll be able to handle them.”

For fast DDoS protection against your website click here.

Source: http://articles.timesofindia.indiatimes.com/2012-08-01/chennai/32980448_1_political-parties-corruption-hacktivist-group-anonymous