Europol: Law enforcement shuts down 27 DDoS booters ahead of annual Christmas attacks

A Cloud Reality Check for Federal Agencies

December 11,2024

By:James Langley

Law enforcement agencies worldwide have disrupted a holiday tradition for cybercriminals: launching Distributed Denial-of-Service (DDoS) attacks to take websites offline. As part of an ongoing international crackdown known as PowerOFF, authorities have seized 27 of the most popular platforms used to carry out these attacks.

Known as ‘booter’ and ‘stresser’ websites, these platforms enabled cybercriminals and hacktivists to flood targets with illegal traffic, rendering websites and other web-based services inaccessible.

This multifaceted operation, coordinated by Europol and involving 15 countries, targeted all levels of those engaged in this crime. Three administrators behind these illicit platforms were arrested, and several actions were taken against numerous users of these services.

The festive season has long been a peak period for hackers to carry out some of their most disruptive DDoS attacks, causing severe financial loss, reputational damage and operational chaos for their victims. The motivations for launching such attacks vary, from economic sabotage and financial gain to ideological reasons, as demonstrated by hacktivist collectives such as Killnet or Anonymous Sudan.

With countries on opposite sides of the globe involved, Europol – home to the world’s largest network of liaison officers from EU Member States – played a pivotal role in coordinating the international effort.

Europol’s European Cybercrime Centre (EC3) facilitated operational meetings and organised intensive one-week technical sprints to develop investigative leads in preparation for the final phase of the operation.

In addition, Europol provided analytical support, crypto-tracing expertise, and forensic assistance to the investigation, while facilitating the exchange of information through the Joint Cybercrime Action Taskforce (J-CAT), which operates from its headquarters.

An ad a day to keep cybercrime at bay

In response to this growing threat, Operation PowerOFF not only focuses on dismantling the infrastructure supporting these attacks but also takes proactive steps to prevent further incidents. The InterCOP network played an important role in enabling countries to join the PowerOFF operation.

Building on past efforts, law enforcement is launching an online ad campaign aimed at deterring individuals from engaging in such activities. The campaign highlights the consequences of DDoS attacks and will target potential offenders where they are most active: online.

The campaign will use the following channels:

Google search ads: targeted deterrence messages shown to young people searching for DDoS-for-hire tools on Google.
YouTube ads: preventative messages aimed at young people watching YouTube tutorials on DDoS-for-hire tools.

In addition to these digital interventions, other methods such as knock-and-talks, more than 250 warning letters, and over 2,000 emails will be used to reach users of illegal services.

Operation PowerOFF demonstrates an ongoing coordinated effort by law enforcement to tackle this threat comprehensively, from dismantling illegal platforms to preventing future attacks through education and deterrence. Operation PowerOFF continues.

The following authorities are taking part in this year’s edition of PowerOFF:

Australia: Australian Federal Police (AFP)
Brazil: Federal Police (Polícia Federal)
Canada: Royal Canadian Mounted Police (RCMP)
Finland: National Police (Poliisi)
France: National Police (Police Nationale – OFAC), JUNALCO (Juridiction Nationale de Lutte contre la Criminalité Organisée)
Germany: Federal Criminal Police Office (Bundeskriminalamt), Hessian State Criminal Office (Hessisches Landeskriminalamt), Prosecutor General’s Office Frankfurt am Main – Cyber Crime Center (Generalstaatsanwaltschaft Frankfurt am Main – ZIT)
Japan: National Police Agency (NPA)
Latvia: State Police (Valsts policija)
The Netherlands: National Police (Politie)
Poland: Central Cybercrime Bureau (Centralne Biuro Zwalczania Cyberprzestępczości)
Portugal: Judiciary Police (Polícia Judiciária), Public Security Police (Polícia de Segurança Pública)
Sweden: Swedish Police Authority (Polisen – SC3), Regional Cybercrime Centre Region West (RC3)
Romania: Romanian Police (Poliția Română)
United Kingdom: National Crime Agency (NCA)
USA: U.S. Department of Justice (US DOJ), Federal Bureau of Investigation (FBI), Homeland Security Investigations (HSI), Defense Criminal Investigative Service (DCIS)

Australia: Australian Federal Police (AFP)
Brazil: Federal Police (Polícia Federal)
Canada: Royal Canadian Mounted Police (RCMP)
Finland: National Police (Poliisi)
France: National Police (Police Nationale – OFAC), JUNALCO (Juridiction Nationale de Lutte contre la Criminalité Organisée)
Germany: Federal Criminal Police Office (Bundeskriminalamt), Hessian State Criminal Office (Hessisches Landeskriminalamt), Prosecutor General’s Office Frankfurt am Main – Cyber Crime Center (Generalstaatsanwaltschaft Frankfurt am Main – ZIT)
Japan: National Police Agency (NPA)
Latvia: State Police (Valsts policija)
The Netherlands: National Police (Politie)
Poland: Central Cybercrime Bureau (Centralne Biuro Zwalczania Cyberprzestępczości)
Portugal: Judiciary Police (Polícia Judiciária), Public Security Police (Polícia de Segurança Pública)
Sweden: Swedish Police Authority (Polisen – SC3), Regional Cybercrime Centre Region West (RC3)
Romania: Romanian Police (Poliția Română)
United Kingdom: National Crime Agency (NCA)
USA: U.S. Department of Justice (US DOJ), Federal Bureau of Investigation (FBI), Homeland Security Investigations (HSI), Defense Criminal Investigative Service (DCIS)

DSA EXHIBITION AND
CONFERENCE SDN BHD

Subscribe To Our Newsletter

DSA EXHIBITION AND CONFERENCE SDN BHD

Subscribe To Our Newsletter

DSA EXHIBITION AND
CONFERENCE SDN BHD