Damien Black Senior Journalist Updated on: 10 August 2022

cyber-group offers ddos attacks for $80 an hour – but only against russia and belarus

Image by Shutterstock

A forum specializing in cyberattacks against Russia and Belarus has appeared on the scene – and while it charges for the service it also appears to be strongly partisan in nature, according to infosecurity firm Digital Shadows.

DUMPS is a Russian-language platform that advertises distributed denial of service (DDoS) attacks starting at $80 per hour – the main difference between it and other similar forums being that it strictly targets only entities in the two pariah countries.

“All topics within the forum must be aimed towards activity directed against Russia and/or Belarus,” said the Photon research wing of Digital Shadows. “Much of the activity centers towards sharing data leaks, advertising DDoS attack services, forged and stolen identity documents, and anonymous and bulletproof hosting services.”

The data-leaks section of the forum appears to be the largest, with others covering carding, initial access brokering, and spamming found to be empty at the time of Photon’s investigation.

“Users shared data stolen from Russia-based government and private institutions,” said Photon. “This includes several well-known and important Russian government institutions and utilities providers.”

Partisanship at a price

Rather than carrying out DDoS attacks on a free and voluntary basis – as, for example, Ukrainian cybersecurity firm disBalancer has been doing since Russia invaded on February 24 – DUMPS offers to do so “quickly, qualitatively, and effectively” for a fee.

It is not clear whether this is purely to cover the costs associated with conducting such cyberattacks or if it is at all motivated by profit, although Digital Shadows believes it is the former and that DUMPS is a legitimate partisan group.

Photon found that the price was correlated to the power of the DDoS attack on offer, with a lower-level “layer four” assault lasting one day priced at $500 and a more potent “layer seven” attack over the same period of time going for $600. Shorter-burst attacks charged by the hour are also available.

Despite these seemingly mercenary motives, DUMPS does appear to be quite stridently partisan in its outlook, even going so far as to post personal insults against Russian president-cum-dictator Vladimir Putin while simultaneously inviting his forces to do their worst against it.

“This is the only forum we’re aware of that is taking such a stance, which puts DUMPS in a unique position whilst also painting a target on its own back,” said Photon. “If the forum develops into a well-known and successful project, it will likely become a target of counter-activity from Russia-supporting cybercriminals.”

It added: “The brazen nature of the forum is perhaps best emphasized by the administrator posting their location, which points to a residential apartment in Kyiv. The roof of the building contains an insult towards Vladimir Putin: ‘путин хуйло’ [Putin is a d**k]. We’ve no idea if this location is actually the admin’s home – however, it emphasizes the spirit of defiance and resistance in which the forum is built.”

Similarly, administrators refer to Russia as “Rashka” – viewed in the country as a slur because it taps the English pronunciation of the word while adding a diminutive suffix “to convey extra venom.”

Winning hearts and minds

Despite its vigorous anti-Russian stance, DUMPS appears confident it can win over some of its citizens to the cause, particularly those who may have fallen foul of the law in Russia – the forum also features data on citizens convicted of possessing illegal weapons, “from local wanted lists and criminal records, suspects or persons of interests […] and information related to buying tickets for transportation out of Russia.”

Photon understands the Russian-language basis of DUMPS to be a pragmatic move to further this aim, in that it will not lose Ukrainian supporters – because most citizens of the beleaguered nation speak Russian well or fluently – while allowing the forum to attract Russians who may be willing to take up cyber-arms against their own country.

That said, since its inception in May the forum is not thought to have attracted more than a hundred partisans – although Photon added that this number could well grow if it gathers notoriety.

Russian retaliation expected

“Raising the membership will of course increase the forum’s profile, which in turn could represent a risk,” said Photon, pointing out that rival cybercriminal forums have previously resorted to attacking each other online. “The forum is currently open for any individual to join, which could represent an operational security risk. Some users have expressed concerns over this and requested an invite-only system.”

Indeed, DUMPS already appears to be on Russia’s radar, with access to the forum blocked in that country, but Photon believes it could nevertheless play an important part in the ongoing cyberwar as both a symbol of resistance and a hub for hacktivists and patriotic threat actors, “making a demonstrable difference on the cyber battlefield.”

It added: “It is also realistically possible that the success of DUMPS may inspire other services looking to play a part in the ongoing conflict.”

TECH NEWS RELATED

Australia demands Optus pay for new customer ID documents

An Optus phone sign hangs above its store in Sydney, Australia, Thursday, Oct. 7, 2021. Australia’s federal and state governments on Wednesday, Sept. 28, 2022, called for Optus to pay for replacing identification documents including passports and driver’s licenses to avoid identity fraud after 9.8 million of the telecommunications ...

View more: Australia demands Optus pay for new customer ID documents

Cyberattacks a top concern across all business sizes, economic uncertainty a close second, new survey shows

Credit: Pixabay/CC0 Public Domain Cyberattacks are now so common that the majority of businesses responding to a new survey not only viewed them as their top concern but a majority saw a future attack on their organization as inevitable. An annual survey of businesses by insurance giant Travelers Cos., ...

View more: Cyberattacks a top concern across all business sizes, economic uncertainty a close second, new survey shows

Australian board directors urged to boost cybersecurity skills

Credit: Pixabay/CC0 Public Domain A University of Queensland study has identified a need to prioritize cybersecurity training for board directors, to better protect Australian organizations from cyber-attacks. Dr. Ivano Bongiovanni from the UQ Business School said his research found board directors were not always sure about their duties and ...

View more: Australian board directors urged to boost cybersecurity skills

Australian police probe purported hacker's ransom demand

A customer waits for service at a Optus phone store in Sydney, Australia, Thursday, Oct. 7, 2021. The Australian government said on Monday, Sept. 26, 2022, it was considering tougher cybersecurity rules for telecommunications companies after Optus, the nation’s second-largest wireless carrier, reported personal data of 9.8 million customers ...

View more: Australian police probe purported hacker's ransom demand

New report offers blueprint for regulation of facial recognition technology

Credit: Pixabay/CC0 Public Domain A new report from the University of Technology Sydney (UTS) Human Technology Institute outlines a model law for facial recognition technology to protect against harmful use of this technology, but also foster innovation for public benefit. Australian law was not drafted with widespread use of ...

View more: New report offers blueprint for regulation of facial recognition technology

Hackers leak French hospital patient data in ransom fight

Hackers who crippled a French hospital and stole a trove of data last month have released personal records of patients online, officials have confirmed. The cyberattackers demanded a multimillion dollar ransom from the Corbeil-Essonnes hospital near Paris a month ago, but the institution refused to pay. The hospital said the ...

View more: Hackers leak French hospital patient data in ransom fight

Python affected by 15-year-old bug that keeps on giving

In brief: The Python programming language is being impacted by security issue programmers have know about for a while. Trellix researchers recently rediscovered a bug, highlighting the risk for hundreds of thousands of software projects and creating patches for tens of thousands of them. Being one of the most ...

View more: Python affected by 15-year-old bug that keeps on giving

Quantum encryption to boost European autonomy

Credit: European Space Agency Cyberattacks and geopolitics threaten today’s increasingly digital world, leading to the disruption of essential supplies such as power and water. ESA, the European Commission and space companies in Europe are teaming up to work towards a highly secure, satellite-enabled connectivity system for the EU—based on ...

View more: Quantum encryption to boost European autonomy

Cyberattack steals passenger data from Portuguese airline

'Bad buzz': Gaming industry reels from 'Grand Theft Auto' hack

LA Unified cyberattackers demand ransom

Deepfake audio has a tell: Researchers use fluid dynamics to spot artificial imposter voices

Hackers accessed data on some American Airlines customers

'Grand Theft Auto' maker says game code stolen

Hackers are spreading malware through YouTube channels promoting game cheats

Color image encryption using an improved version of stream cipher and chaos

Hacker claims to breach Uber, security researcher says

Three questions about quantum computing and secure communications

EU wants to toughen cybersecurity rules for smart devices

FIFA 23 and other EA titles will come with controversial "kernel-mode" anti-cheat software

OTHER TECH NEWS

Top Car News Car News