The FBI has issued an advisory to businesses over a recent string of DDoS extortion attempts. The perpetrators are claiming to be affiliated with Anonymous or Lizard Squad, and their demands threaten sustained attacks unless a Bitcoin payment is made.
Between April and May of 2017, the FBI says at least six companies received emails claiming to be from “Anonymous” or “Lizard Squad” making threats of DDoS attacks within 24-hours unless the company paid a ransom demand in Bitcoin.
“The email stated the demanded amount of Bitcoin would increase each day the amount went unpaid. No victims to date have reported DDoS activity as a penalty for non-payment,” the FBI alert goes on to explain.
This week, the FBI says they’ve investigated hundreds of these cases, including several in Indiana – home to several major companies, the Indy 500, and this reporter.
Review of this article
Nature of the threatWhen this kind of demands comes, first to do is to analyze it. Obviously measure the risk for your company and accordingly respond to.
Keep a watchdog for similar threats and check if the risk is really high.
Never, never pay.
Keep logs of the interaction between the hacker and you (emails, network disruption).
If the threat is realIf you estimate that the risk is high and it occurs, ask professionals.
They will help you to increase your protection as it's shown in this review. It is an absolute necessity to keep your environment always operational, technically and not technically. Insurances will cover up, prosecution can be intended.
Before the threat and after, be sure to have a correct backup strategy to recover easily any data that could have been corrupted.
Create your secure network