Large DDoS, small extortion

Barry Shein bzs at world.std.com
Fri May 23 18:09:18 UTC 2014


On May 24, 2014 at 00:38 rdobbins at arbor.net (Roland Dobbins) wrote:
 > Never, under any circumstances, pay.  Not even if you've persuaded
 > the Men from U.N.C.L.E. to help you, and they suggest you pay
 > because they think they can trace the money, do not pay.

Ok, you're recommending $VICTIM ignores or resists the advice of law
enforcement authorities, right?

What is this based on other than your subsequent "common sense"
reasoning? (directly below)

>Why not?
>
>Because, irrespective of what happens with this one attacker, you
>will be swarmed by countless others.  Attackers brag when they're
>paid; they'll exaggerate how much they received, and then you have a
>much bigger problem.

By "irrespective of what happens" do you include your earlier
suggestion that the attacker might be traced and arrested?

Tracing the money in extortion schemes is a common tactic. Obviously
the likelihood of success has to be evaluated. But a lot of criminals
are dumb or perhaps put better naive. DDos'ing is one thing,
successfully laundering money is a different skill set.

I just don't know and would suggest reliance on case studies and
experienced professionals.

-- 
        -Barry Shein

The World              | bzs at TheWorld.com           | http://www.TheWorld.com
Purveyors to the Trade | Voice: 800-THE-WRLD        | Dial-Up: US, PR, Canada
Software Tool & Die    | Public Access Internet     | SINCE 1989     *oo*


More information about the NANOG mailing list