Don’t Pay Ransom To DDoS Extortionists

Cybercriminals claiming to be the Armada Group, are threatening small businesses around the world with DDoS attacks if they don’t play them a ransom in bitcoin. Craig Young, Cybersecurity Researcher at Tripwire commented below.

Craig Young, Cybersecurity Researcher at Tripwire:

CraigYoung“In my opinion, businesses are best to never pay DDoS extortionists and instead are better served saving that money for DDoS mitigation services from reputable firms.  In recent years, criminals have successfully seized the opportunity to scare businesses into paying under the threat of large scale denial of service attacks.  Much of the time the threats are coming from individuals or small groups with no actual capability or intention of carrying out the DDoS.  Meanwhile a large market has developed around producing products and services that can very effectively thwart most DDoS attacks.  Since a DDoS involves flooding a target with junk messages until the communication lines are so full of junk that there is no room left for the legitimate messages.  The solution often is to acquire really big communication lines and position servers all around the world, making it less likely that an adversary could overwhelm them.”