viralamo

Menu
  • Technology
  • Science
  • Money
  • Culturs
  • Trending
  • Video

Subscribe To Our Website To Receive The Last Stories

Join Us Now For Free
Home
Technology
Fancy Bear imposters are on a hacking extortion spree
Technology

Fancy Bear imposters are on a hacking extortion spree

21/10/2020

Travelex didn’t pay the ransom this time and instead weathered a DDoS attack the hackers launched as a sort of warning shot and then a second barrage. “Whoever’s behind this probably thought that Travelex must be a soft target based on what happened at the beginning of the year,” says Greg Otto, a researcher at Intel471. “But why would you hit a company that has probably gone through the effort to shore up their security? I understand the logic, but also I just think there are holes in that logic.” Travelex did not return a request from WIRED for comment about the August extortion attempt.

Extortion DDoS attacks have never been especially profitable for scammers, because they don’t have the visceral urgency of something like ransomware, when the target is already hobbled and may be desperate to restore access. And though this has always been a weakness of the strategy, the threats are potentially even less potent now that robust DDoS defense services have become widespread and relatively inexpensive.

“Generally speaking, DDoS as an extortion method isn’t as profitable as other types of digital extortion,” says Robert McArdle, director of forward-looking threat research at Trend Micro. “It’s a threat to do something as opposed to the threat that you’ve already done it. It’s like saying, ‘I might burn your house down next week.’ It’s a lot different when the house is on fire in front of you.”

Given the spotty effectiveness of extortion DDoS, attackers are invoking the notorious state-backed hacking groups in an attempt to add urgency and stakes. “They’re fear-mongers,” says Otto. And the attacks likely work at least occasionally, given that attackers keep returning to the technique. For example, Radware noted that in addition to impersonating Fancy Bear and Lazarus Group, attackers have also been going by the name “Armada Collective,” a moniker that extortion DDoS actors have invoked numerous times in recent years. It’s unclear whether the actors behind this incarnation of Armada Collective have any connection to past generations.

Though most organizations with resources for digital defense can protect themselves effectively against DDoS attacks, researchers say it’s still important to take these threats seriously and actually invest in strong protections. The FBI reinforced this message in a bulletin at the beginning of September about actors pretending to be Fancy Bear. It reported that at the beginning of August, thousands of institutions around the world began receiving extortion notes.

“Most institutions that reached the six-day mark did not report any additional activity or the activity was successfully mitigated,” the FBI wrote. “However, several prominent institutions did report follow-on activity that impacted operations.”

While the attacks may not be as crippling for most targets as ransomware can be, they still pose a nagging threat to organizations that don’t have adequate DDoS defenses in place. And with so many other types of threats to navigate, it’s easy to imagine that the scare tactics could work often enough to make it all worth attackers’ while.

This story originally appeared on wired.com.

Source link

Share
Tweet
Pinterest
Linkedin
Stumble
Google+
Email
Prev Article
Next Article

Related Articles

MIT announces Bluetooth breakthrough in coronavirus-tracing app for Android and iOS
MIT and makers of the app Private Kit: Safe Paths …

MIT announces Bluetooth breakthrough in coronavirus-tracing app for Android and iOS

DNS cache poisoning, the Internet attack from 2008, is back from the dead
In 2008, researcher Dan Kaminsky revealed one of the more …

DNS cache poisoning, the Internet attack from 2008, is back from the dead

Leave a Reply Cancel reply

Find us on Facebook

Related Posts

  • Iguazio raises $24 million for AI development and management tools
    Iguazio raises $24 million for AI development …
    27/01/2020
  • Beat Saber is now an Oculus studio after Facebook acquisition
    Covidmaps lets you find grocery stores and …
    14/04/2020
  • AT&T says TV losses have peaked after latest loss of 1.3 million customers
    Struggling AT&T plans “tens of billions” in …
    04/03/2020
  • The Last of Us creative director Neil Druckmann is now co-president of Naughty Dog
    The Last of Us creative director Neil …
    05/12/2020
  • Roblox raises $520 million at $29.5 billion valuation, will go public through direct listing
    Roblox raises $520 million at $29.5 billion …
    07/01/2021

Popular Posts

  • SpaceX plans Starlink broadband for cars, boats, and planes
    SpaceX plans Starlink broadband for cars, boats, …
    08/03/2021 0
  • Top 10 Cults With Massive Followings – …
    07/02/2021 0
  • Top 10 Messed Up Things People Have …
    08/02/2021 0
  • The connected battlespace, part two: The fault in our (joint) stars
    The connected battlespace, part two: The fault …
    08/02/2021 0
  • Top 10 Miraculous Recoveries – Listverse
    08/02/2021 0

viralamo

Pages

  • Contact Us
  • Privacy Policy
Copyright © 2021 viralamo
Theme by MyThemeShop.com

Ad Blocker Detected

Our website is made possible by displaying online advertisements to our visitors. Please consider supporting us by disabling your ad blocker.

Refresh