OcUK DDoS attack - £10,000 reward

[mangobreeder]

I was about to buy some hardware today from OCUK but the web site was down (and still is). Hope this gets resolved soon.

Kinda disappointed as I was hoping to get a graphics card for tomorrow delivery - this is the only day I can be at home to recieve it

why dont you call them they do take order over the phone.

yes they do have dodgy northern accents, but you should be able to understand them.

 

[wesley]

anyway i thought routers can prevent DDOS? one of the security features

 

[willhub]

Competitor hint. And a big one as for once, I knew who the hint was!

Eh?

I don't mention competitor names.

 

[gumbald]

anyway i thought routers can prevent DDOS? one of the security features

There's ways round most things...

 

[CliffyBiro]

Pretty hard to investigate without more information, and if it is a competitor they probably paid someone with a botnet.
These things are normally controlled by IRC, if it were my site I would scan the zombie computers for vulnerabilities, see if I couldn't get the virus and run it in a sandbox / decompile the binary to see where it connects too.

Hope you catch the offenders!

If I read up on this right, does it infect other PC's?

If so, would there be symptoms?

Maybe could find it that way.

 

[ConTRo13R]

Speak for yourself, there's nothing on my machine.

Only get the update to protect from Trojans once they have been detected, if its a brand new virus only just out then there'll no updates for it untill it is found/recognized

And before you ask, yes i update and scan regularly

 

[Fothsn]

Someone hinted at a competitor (post removed) on whos forum is a thread with people asking if ocuk was down. Theres also threads on o2, adslguide/thinkbroadband and a few other forums where people are asking why they can't get to the site.

Oh!


The main shop is still down? Guess they are still targeting this?

 

[Gaygle]

Hell, it might be worth creating a Facebook account dediated to finding the tit.

I doubt this would be much help due to the fact that the kind of person that is able to do something like this probably wouldn't be caught out by their facebook account.

What i want to know is how would this person have distrubuted a virus(?) to hundreds/thousands of computers?

 

[Solari]

what about having people log in to view the forums? should cut the attacks down a bit even for just the forums

Doesn't matter - they either do a shedload of http requests which still work or a SYN flood or other attack to the webserver port, overloading the webserver app and/or the OS's TCP/IP stack.

 

[Dogoid]

anyway i thought routers can prevent DDOS? one of the security features

how could a router differentiate between a customer and an attacker?

 

[AtlanticP]

If nothing else, the fact that Spie has offered such a large 'reward' just goes to show the severity of this situation and also the determination to find the culprit too. God help him when they do. Though again as Spie has said, they have a suspicion of who it maybe and through reading the forum of late I think most of us do too.

Hope they/he is tracked down and pays Bill'inda a visit in the local lockup..

 

[asim18]

Instigating these kind of attacks is a serious criminal offence and whilst we have strong suspicions who is behind them we need more evidence.

Would it be legal to post who the suspect is?

We cant really gather any evidence for you if we have nowhere to start.

 

[pingwing]

Theres a long thread about this on their forums heh... funny didn't realise how many people use OCuk til this happened - posts springing up at loads of forums I frequent.

OTHER FORUMS!!!

 

[Wiggins]

Blogs at the ready.

 

[K.C. Leblanc]

Don't be a berk. You do realise that naming and shaming anyone on OcUK's forum can leave them open to all kinds of reverberation if you were to imply that someone innocent was involved.

Not to mention cause trouble if this ends up in court.

If this case was actually in court at the moment posting hearsay and nonsence could be viewed as contempt of court.

EDIT: Good luck getting this sorted Spie.

 

[Durzel]

Any half decent DDoS will be both virtually impossible to trace to its source and mitigate against (speaking as someone who works for an ISP and has had to deal with them too).

The reward is an interesting hook but I guess it depends on the motives of the person(s) involved.

 

[Trifid]

Would it be legal to post who the suspect is?

What if the suspect is innocent though? Spie is more after people who have access to some hacking forums where they might have gloated about attacking OcUK.

 

[BooshFan91]

jesus, what beastards, hope they get nailed

 

[Spie]

Would it be legal to post who the suspect is?

We cant really gather any evidence for you if we have nowhere to start.

No. A suspect is a suspect. I'm not going to name anyone. There are people out there who know who is behind this. They are the people who need to come forward.

 

[Red Porsche]

Have you checked if any ocuk members were involved in the attack? They could maybe se what infected their computer or give any help regarding the situation.