Hacking suspect arrested for 'biggest cyberattack in history'

Hacking suspect arrested for 'biggest cyberattack in history'

Summary: Remember Spamhaus? The attack was apparently conducted not from a bedroom, but an antenna-equipped mobile van.

SHARE:
TOPICS: Security, Malware, EU
9

A Dutch national suspected as the mastermind behind the largest DDoS attack ever recorded has been arrested in Spain.

cybercrime spamhaus dns biggest internet attack history hacker arrested

The Associated Press reports that 35 year-old Sven Kamphuis, identified by The New York Times, was arrested Thursday in a city 22 miles north of Barcelona.

Originally from the Dutch city of Alkmaar, the hacking suspect operated from a mobile bunker — a van "equipped with various antennas to scan frequencies" and able to break into networks anywhere in the country. An Interior Ministry statement said that Kamphuis was able to use his "mobile computing office" to coordinate cyberattacks and speak with media before being arrested by Spanish police on the basis of a European arrest warrant issued by the Dutch. German, Dutch, British and U.S. forces all took part in the investigation.

Kamphuis runs Internet service provider CB3ROB and web hosting firm CyberBunker, which has hosted websites including the Pirate Bay and WikiLeaks in the past. The Interior Ministry's statement says that the accused called himself a spokesperson and diplomat belonging to the "Telecommunications and Foreign Affairs Ministry of the Republic of Cyberbunker." 

The alleged hacker is accused of launching an attack against anti-spam watchdog group Spamhaus. A 300Gbps distributed denial-of-service sent the non-profit into disarray, taking down the agency's website and forcing Spamhaus to turn to Cloudflare for assistance. According to the cloud services provider, the majority of the attack was traffic sent using a technique called DNS (domain name system) reflection. Usually, DNS resolves wait for a user request, but if the source address is forged, then requests may be "bounced" off different servers, amplifying the amount of traffic a domain name has to cope with and exploiting vulnerabilities in the Internet's DNS infrastructure. Most cyberattacks tend to peak at 100 billion bits a second, which is a third of what Spamhaus and Cloudflare had to cope with.

The attack on DNS infrastructure resulted in lower speeds for Internet users worldwide.

The attack against Spamhaus — which is known for blocking fake good advertising and preventing it from reaching our email addresses — was one in a list of major DDoS campaigns thought to be masterminded by the Dutch national.

Kamphuis has denied any role in the attack, calling himself simply a "spokesperson" for one of the loose groups established to take down Spamhaus. However, according to the NYT, the alleged hacker used his Facebook page to proactively look for supporters to attack the agency, saying "Yo anons, we could use a little help in shutting down illegal slander and blackmail censorship project ‘spamhaus.org,’ which thinks it can dictate its views on what should and should not be on the Internet."

The hacking suspect is likely to be extradited from Spain to attend court in the Netherlands.

Topics: Security, Malware, EU

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

9 comments
Log in or register to join the discussion
  • ONE permanent solution. . . NC!

    .
    . . . Neckline Castration.
    .
    fm-usa
  • Punish him severely

    As the attack as on a huge scale, so should his punishment be.
    Many were affected and inconvenienced by this.
    He should be jailed for 10 years, fined $100K and also caned 12 times.
    Only then will this be a deterrent to others from even considering doing this.
    Don't waste everybody' time by giving him a tab on his buttock as a punishment.
    We have enough of this BS !
    peanut88
  • Buy him a house.

    He's getting punished because their systems are crap. In reality, he should be charged with the crime of "Embarrassing Idiots." Every system he broke into should pay a heavy fine for being an accomplice through stupidity. Then buy him a house so he doesn't need to live in a van
    trm1945
    • Agreed

      I'll be the last person to say taking the law into your own hands is the best way. Though if you pay attention to recent history over the past 10 years, doesn't seem to be much of a choice in situations like this.

      "ONE permanent solution. . . NC!", "Many were affected and inconvenienced by this.", you can tell either one of you two, know very little if not beyond nothing about the subject. This person you seem to hate without justified reason, is standing and fighting for the intrinsic freedoms of the internet. "We have enough of this BS!", could you explain or do you always defecate out of your mouth?

      Wake up people or the internet will be about as free as our so called free economy.
      Armando Cornaglia
    • I'm sure he will have a roof over his head

      ....in a Dutch prison. If guilty, then that is where he belongs. If someone walks through a residential district trying every lock with a set of lock picks, is the idiot who had an insufficient lock on his door an accomplice? Or is he a victim? In either case, the one who broke into the house and stole things is still a friggin thief and should be punished accordingly.
      Jaybus
  • wth?

    is "fake good advertising"

    and buy the guy who wants to stop a service that reduces crap in my inbox a house... ?

    please explain your logic.
    dosmastr@...
    • Hmm...

      Fake good advertising. The advertising of fraudulent goods. "Rolox" watches, for example.
      Hallowed are the Ori
      • Unclear, though

        I got it after a few minutes, but it is rather unclear. It kind of sounds as though the author is calling the advertising good and fake at the same time, which is weird...
        Ndiaz.fuentes
  • Like babies we drink bitter medicine if its mixed with something sweet.

    Judas knows full well what he has done but he is parading and asking: "Master, Is it I?"
    Jeremiah still shouts down the corridors of time: "The heart is deceitful and desperately wicked; who can know it?"
    roythomas@...