Hackers Held Swiss Encrypted Email Provider RansomAdded: Wednesday, November 18th, 2015
Category: Recent Headlines Involving File Sharing > Current Events
Tags:ET, p2p, Torrent, Piracy, Peer To Peer, Network, Hackers, Internet, BitTorrent, Google, utorrent, bitcomet, extratorrent, www.extratorrent.cc, 2015
A Switzerland-based encrypted email provider named ProtonMail was forced offline after the cyberattackers held its broadband connection for ransom via DDoS attack.
ProtonMail has admitted being attacked by two separate groups, with the second attackers exhibiting capabilities inherent to state sponsored actors. In addition, the company also pointed out that the second attackers were not afraid of causing massive collateral damage in order to get at ProtonMail. Despite the small amount of ransom (only 15 Bitcoin), the attacks didn’t stop when it was paid.
The company is headquartered at the European Organization for Nuclear Research and is popular in the United States since its appearance on popular series Mr Robot. The company’s co-founder said they were collecting the evidence and would be cooperating with the Swiss federal cybercrime unit, with the source of the second attack not being determined yet.
According to experts, there were few groups capable of carrying out such an attack, as it was likely the biggest and most sophisticated DDoS attack to ever occur in the country. Although the type of attack was common, the mail service explained that it was “unprecedented in size and scope”. In the meantime, the hackers allegedly responsible for the first, smaller attack are Armada Collective, the group that has come to the attention of local authorities for extorting “high-value targets” in the recent past.
According to the Swiss governmental computer emergency response team, the group usually demands a ransom in Bitcoin and then carries out a brief DDoS attack. Then, if the target fails to pay in a rapid manner, a longer attack follows. In the case of ProtonMail, the company “grudgingly agreed” to pay the ransom after pressure to mitigate damage to the other customers of its ISP and data center, and it held its promise. However, the DDoS attacks continued even after the money was paid. At the same time, ProtonMail emphasized that it hadn’t been breached, just disabled. The company explained that the access was limited, but its core end-to-end encryption was not affected, so all user data was safe.
The email provider said that the attack of this kind was unlike anything seen in Switzerland, because the attackers took down an Internet service provider and entire datacenter just to take it down.
Wednesday, November 18th, 2015
|Now they need to find the right targets and take em down.||
Most Popular Stories