[BreachExchange] DOJ Seizes 3 Web Domains Used to Sell Stolen Data and DDoS Services

Matthew Wheeler mwheeler at flashpoint-intel.com
Thu Jun 2 08:31:14 EDT 2022


https://thehackernews.com/2022/06/doj-seizes-3-web-domains-used-to-sell.html

The U.S. Department of Justice (DoJ) on Wednesday announced the seizure of
three domains used by cybercriminals to trade stolen personal information
and facilitate distributed denial-of-service (DDoS) attacks for hire.

This includes weleakinfo[.]to, ipstress[.]in, and ovh-booter[.]com, the
former of which allowed its users to traffic hacked personal data and
offered a searchable database containing illegally amassed information
obtained from over 10,000 data breaches.

The database consisted of seven billion indexed records featuring names,
email addresses, usernames, phone numbers, and passwords for online
accounts that could be accessed through different subscription tiers.

The shutdown of weleakinfo[.]to comes more than two years after a related
internet domain named weleakinfo[.]com was confiscated in January 2020,
with law enforcement officials arresting 21 individuals in connection to
the operation later that year. Last May, one of its operators was sentenced
to two years in prison.

The other two domains — ipstress[.]in and ovh-booter[.]com — offered to
conduct DDoS services for their clients. DDoS attacks are carried out by
flooding a targeted web resource with junk traffic with the goal of
rendering it inaccessible to legitimate users of the service.

The "comprehensive law enforcement action" involved the Federal Bureau of
Investigation (FBI), the U.S. Attorney's Office for the District of
Columbia, and the DoJ's Computer Crime and Intellectual Property Section in
coordination with authorities from Belgium and the Netherlands.

"These seizures are prime examples of the ongoing actions the FBI and our
international partners are undertaking to disrupt malicious cyber
activity," said FBI Special Agent in Charge, Wayne A. Jacobs, said.

"Disrupting malicious DDoS operations and dismantling websites that
facilitate the theft and sale of stolen personal information is a priority
for the FBI."
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.riskbasedsecurity.com/pipermail/breachexchange/attachments/20220602/e1437899/attachment.html>


More information about the BreachExchange mailing list