Today's Hard|Forum Post
Today's Hard|Forum Post

Monday March 05, 2018

World's Largest DDOS Motives Come Clear

The world's largest DDOS against Github (now measured at 1.7TB) has now been found to be an extortion attempt to be paid in Monero cryptocurrency. Thankfully, the attack vector can be fairly easily secured to stop this from happening.

News Image

The extortion note, which occurs in a line of Python code delivered by the compromised Memcached servers, demands payment of 50 XMR (the symbol for the Monero cryptocurrency). This would have been approximately $15,000.

"It is a pretty clever trick to embed the ransom demand inside the DOS payload," Nick Bilogorskiy, cybersecurity strategist at Juniper Networks, told SecurityWeek. "It is also fitting with the times that attackers are asking for Monero rather than Bitcoin because Monero disguises the origin, destination and amount of each transaction, making it more suitable for ransoms."