Update: Credit card firm hit by DDoS attack
The attack was still under way this afternoon
September 22, 2004 12:00 PM ETComputerworld -
Credit card processing firm Authorize.Net has been the target of an "intermittent" and "large scale" distributed denial-of-service attack since last Wednesday that has resulted in "periodic disruptions" of service for some customers.
Bellevue, Wash.-based Authorize.Net is owned by Burlington, Mass.-based Lightbridge Inc. and provides payment processing services for more than 91,000 small to medium-size e-commerce firms.
David Schwartz the company's marketing director, said Authorize.Net has been the subject of a massive DDoS attack that targeted the company's payment gateway service and resulted in periods of "brief disruptions" for customer.
The company received an extortion note a few days before the attacks began asking for a "substantial amount of money," Schwartz said. He did not elaborate on how the money was to have been delivered or whether the note came from someone inside the U.S.
"It was something that was sent to our general mailbox," Schwartz said. Law enforcement authorities, including the FBI, are now investigating, he said.
This is not the first time Authorize.Net has been the subject of such attacks, Schwartz said. "We have been attacked in the past, but not on this scale and with such tenacity," he said.
The attack has resulted in an extremely high number of calls to the company's customer support center, the company said in a statement on its Web site.
The attack is the latest example of a growing trend, said Tom Corn, a vice president at Mazu Network Inc., a Cambridge, Mass.-based vendor of DoS-mitigation technologies.
"We are seeing a big escalation of attacks involving extortion" targeted at e-commerce companies, Corn said. Such attacks have typically tended to increase during busy periods such as the upcoming holiday season or around major events such as the Super Bowl, he said.
Cybercrime/Hacking
Additional Resources



Learn the important issues you must consider before starting your next mobility initiative. Get your mobility white paper from IDC now, compliments of Sybase.
White Papers & Webcasts
The State of PCI DSS Compliance at Organizations Today
Download this resource today!
Managing Secure File Transfer to Save Time, Money and IT Resources
Learn how companies are using innovative technology to overcome these challenges and improve user productivity by offloading e-mail attachments and replacing FTP with...
Can Heuristic Technology Help Your Company Fight Viruses?
What is Heuristic Technology and how can it help safeguard your business against viruses? Learn more.
Security Convergence Equals Network Security Cost Savings
Listen to IBM Internet Security Systems' take on network security convergence.
Why Email Must Operate 24/7 and How to Make This Happen
Learn how to avoid an email outage by implementing a hosted email continuity solution.
Lower the Cost and Complexity of a Mobile Workforce through Automation
Download This Resource Now!
Eradicate Spam & Gain 100% Asurance of Clean Mailboxes
Get this paper now!
Managing Mobility: Improve Data Security, Compliance and Manageability
Download This Resource Now!
Mastering eDiscovery: The IT Manager's Guide to Preservation, Protection & Production
Get this paper now!
Disaster Recovery 2008: Reduced Costs and Improved Performance
How long can your Enterprise afford to be without your data? With an accelerated disaster recovery program, you never have to answer this...
