Feds bust alleged botmaster who attacked antiscam site
California man allegedly launched DDoS attacks from McDonald's, Best Buy
Computerworld - A 21-year-old man has been arrested and charged with launching a distributed denial-of-service (DDoS) attack against CastleCops, an online forum and Web site that specializes in rooting out Internet scams.
Gregory King of Fairfield, Calif., was arrested last Thursday and arraigned Monday on four federal counts of attacking servers that hosted CastleCops and KillaNet Technology Ltd., a Canadian Web and graphics design community. If convicted, King faces up to 10 years in prison and a $250,000 fine.
Last February, CastleCops, which is run by volunteers, was knocked off-line by a DDoS attack King instigated, prosecutors said in the indictment filed in a Sacramento federal court. King used a botnet -- a collection of previously compromised computers -- to attack CastleCops and launch numerous other sustained assaults against KillaNet beginning in July 2004.
King, who went by the online nicknames "Silenz," "sZ" and "Gregk707," reportedly amassed a botnet of about 7,000 infected machines. He used a variety of Gmail and Yahoo e-mail addresses, and even posted a photo of himself to his Yahoo profile. Also on the profile, King listed his latest news as "I learned a little bit of VB .net [Visual Basic .Net] in school, but I still suck at it."
"All too often, victims of DDoS attacks are left feeling let down and with a sense that the system fails," said Robin Laudanski in a message posted to CastleCops' front page. "Today, the system didn't fail." Laudanski and her husband Paul run CastleCops.
When FBI agents went to arrest King at his home last week, he fled out the back door with his laptop, which he tossed in bushes in the backyard. Agents recovered the laptop. According to arraignment papers, King launched the DDoS attacks from locations that included his parents' home, the local public library, a McDonald's restaurant and even a Best Buy Co. store.
King was released Monday after his mother posted a $25,000 bond. A trial date has not been set.
CastleCops has been an ongoing target for cybercriminals. Last month, for example, attackers used hacked PayPal accounts to send bogus donations to the site, making it appear that CastleCops was behind the thefts. CastleCops is working with both PayPal Inc. and the FBI to put a stop to the donations, according to Brian Krebs, the technology reporter for The Washington Post.
Starting in late August, CastleCops weathered another weeks-long DDoS attack.
Read more about Cybercrime and Hacking in Computerworld's Cybercrime and Hacking Topic Center.
- Silicon Valley's 19 Coolest Places to Work
- Is Windows 8 Development Worth the Trouble?
- 8 Books Every IT Leader Should Read This Year
- 10 Hot Hadoop Startups to Watch
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- Infographic: Converged Infrastructure Benefits This Infographic quantifies the savings organizations are realizing from increased deployment speed, higher availability, and lower annual costs.
- CIOs Deliver Productivity Breakthroughs with Intelligent Digital Signage Retailers have long recognized the influence that digital signage provides over a shopper's point-of-purchase decision making process.
- Going Paperless? Here's What You Need to Think About As makers of some of the world's most popular PDF solutions, we often consult with businesses & governmental agencies that have the goal...
- The Big Data Opportunity for HR and Finance If CEOs, CFOs, CIOs, and CHROs want to drive their businesses forward, they will need to quickly recognize the enormous value of big...
- Top 4 Digital Signage Fails Join RMG Networks for a look at four of the most common reasons digital signage fails in corporate businesses. Learn about strategies to...
- Building Tomorrow's Infrastructure Listen to this podcast to discover how Crider Foods worked with PC Connection to update their IT infrastructure, while maintaining compliance and control. All Cybercrime and Hacking White Papers | Webcasts