DDOS Attacking

Glacius

Glacius

Glacius

Associate
Joined
6 Dec 2013
Posts
500
Hey All,

I am basically posting this on behalf of a small gaming community and group of players but basically our dedicated server, gaming servers, website, IRC, Teamspeak has been under constant DDOS attacks for the last 4 months and not only our servers but others who are related to the game and even the people who made the game are having there site and services attacked, numerous measures and amounts of money have been put into trying to stop this guy and have done nothing, we have his IP/ISP and location (roughly).

He has null routed are dedicated server and doing it to various servers related to the game, is there anywhere at all we can report these kind of attacks and have something done, the community and game is at breaking point as as soon as a server has any players its attacked, he even has been on IRC and threatening people and trying to extort money to stop the attacks and acting like a smartass.

We have tried various server providers offering different types of security but this guy as managed to crash them all, we are getting UDP flooded at over 50GB's a second and thousands of connections .

Just need some advice as we really don't know what route to take now and if we can take this further legally.
 
Last edited:
Sadly this guy seems to be hiring multiple bot nets not and hitting us with stupid amounts of UDP data, Thanks for the replies above as well, we have tried to talk to his own ISP and also the people who host our servers and only reply we get from both is "As this is not effecting a business system/server we are not able to take this any further" bare in mind this are all servers and providers in the USA which makes things more aqward.

In terms of his IP address/location this was all grabbed from IRC where there are he can't hide behind VPN etc.

Just getting really tiresome now... Have gone down the route of reporting to police etc but really don't seem that fussed.
 
Thanks for the reply KIA, we already have a dedicated box with OVH, and as good as there mitigation is the type of attacks this guy is using against us specifically is getting through there system.

This guy has been doing this to tiny communities for some time now.
 
This is part of the problem aka the bandwidth this guy is using to attack us with we would need to spend a fortune hosting and firewall wise to try and mitigate it all and I know a lot of people in the community would help but its a lot to ask and no 100% guarantee he can't somehow find another way to crash the dedicated server which brings everything we host down.

As for paying him off as he wants we have no guarantee again that he will stop and not ask for more a few days later etc so it seems we are screwed if we do screwed if we don't at the moment.

We actually have 2 dedicated server and I am not that knowledgeable when it comes to this kind of thing but is it possible to setup a proxy or VPN tunnel from one server to the other and then try to some how filter out the thousands of connections he is sending our way aka different to real world connections??
 
We don't know the person who's doing it personally no, just he does come onto IRC and talk (crap) about what he is doing and generally talks crap to people that's as much as we know sadly.
 
The thing is that we seem to find a smaller server provider that is willing to help us with creating firewall rules and making changes but as soon as the attacker goes full scale attack mode which he did couple of night ago the smaller provider's bandwidth couldn't cope with the influx of UDP data (60GB) and then null routed our server taking it permanently offline with the provider for 4 hours as that amount of data was effecting other customers at the data center.

We then try a larger company who can withstand this kind of attack but 2 bad things 1 it is costing more and more to have a server with silly amount of bandwidth despite us not using anywhere near what we are paying for just to keep this guy from attacking and also being a bigger company most of the time they seem more inclined to to help as much and let us setup our own custom firewall rules.

The annoying thing is this guy will just keep upping and upping the bandwidth he is using to attack the community with as booters are stupidly cheap :( which is what he is using.

We have gone down the official legal route now so guess will hope and fingers crossed something can be down.

and yea koolpc its not much fun at the moment as every game server that is up for this game is getting targeted and taken offline at the moment, there are people within the community who have put a lot of time, effort, and money in to try to get this fixed but at the moment its a never ending battle.
 
He can be traced very easily via his ISP or by the authorities but in there eyes game servers and dedicated servers being taken offline and attacked isn't a huge thing to them sadly and they thus far don't seem to bothered, only thing I guess we can use to make them pay more attention is that he attacks are now effecting business's hence the server being null routed as was effecting other servers, and the fact he is threatening people and trying to extort money from people to stop the attacks.
 
That does indeed depend how this is looked upon because he has been attacking and taking down servers based in USA, France, Germany, and the UK, so you would think it would be serious enough to at least look at.

Hopefully we hear something soon or find some way of stopping this. (Hitman is sounding tempting at this point)
 
Very tempting......

Annoying thing is he been doing this for years and getting away with it all a lot of small indie games and communities and seems to get off on it.
 
Thanks for the replies guys, we are trying to go down that kind of route at the moment to see if it works aka the VPN/Tunnel, also we are already with OVH as stated before and we are having issues there as well.

Archeum, when you mean pass it on aka the details where do you mean? Sorry if abit slow here
 
You must log in or register to reply here.
Back
Top Bottom