The National Crime Agency, working with law enforcement partners from 14 countries, has taken action against a number of cyber criminals website users linked to four million attacks across the globe.
This latest action is part of Operation Power Off, which pursues those individuals and services responsible for committing or facilitating DDoS (Distributed Denial of Service) attacks.
Webstresser.org was the most popular DDoS-for-hire service on the market, with 136,000 international users of the service, until it was shut down in April 2018 by the Dutch police with assistance from Germany and the United States.
DDoS is a form of cyber-attack in which a target website is so overwhelmed by requests for access that it may crash.
DDoS-for-hire services, such as Webstresser.org, allow criminals to carry out these attacks more easily, by providing access to DDoS botnets (networks of malware-infected computers).
The impact of such attacks can be crippling for an organisation, with complete disruption of service and substantial impact on confidentiality or integrity of personal data.
Since November 2018, a number of Webstresser.org users in the UK have found themselves the subject of law enforcement activity. Officers from the NCA’s National Cyber Crime Unit, with support from Regional Organised Crime Units (ROCUs) and Police Scotland, have executed eight warrants and seized more than 60 personal computers, tablets and mobile phones. A number of users also received ‘cease and desist’ notices.
A further 400 users of the service are now being targeted by the NCA and partners.
Jim Stokley, Deputy Director of the NCA’s National Cyber Crime Unit, said:
“Cyber-crime is not constricted by borders. The coordinated international response to this threat shows how law enforcement works around the globe to combat criminally orchestrated disruption impacting the public sector , commence and the public
“The action taken shows that although users think that they can hide behind usernames and crypto currency, these do not provide anonymity. We have already identified further suspects linked to the site, and we will continue to take action.
“Our message is clear. This activity should serve as a warning to those considering launching DDoS attacks. The NCA and our law enforcement partners will identify you, find you and hold you liable for the damage you cause.”