Catalin Cimpanu for Bleeping Computer: Some Memcached DDoS Attackers Are Asking for a Ransom Demand in Monero. Basically, more on the Memcached story but with a little background on earlier DDoS for ransom attacks.
Cimpanu says that “according to Daniel Smith, a Radware security researcher who spoke with Bleeping Computer, paying the Monero ransom won’t help … because attackers have used the same Monero address for multiple DDoS attacks against different targets.”
Link added to Specific Ransomware Families and Types.
Here are the links again for the Brian Krebs (et al) story I flagged yesterday:
- Brian Krebs: Powerful New DDoS Method Adds Extortion
“Attackers have seized on a relatively new method for executing distributed denial-of-service (DDoS) attacks of unprecedented disruptive power … Now evidence suggests this novel attack method is fueling digital shakedowns in which victims are asked to pay a ransom to call off crippling cyberattacks.” Cites:
- Akamai: MEMCACHED-FUELED 1.3 TBPS ATTACKS
- Experts from Cybereason and other sources. According to Krebs, Cybereason have seen Memcached attacks where the payload is a demand for 50 XMR (Monero).