
Discussion related to Boreas DDoS Attack
#1
Posted 15 July 2009 - 08:13 AM
I've moved this thread outside of the Client Only area so that those of you who have not previously registered on the forum as clients can discuss this.
█ Scalable shared hosting plans in the cloud! Check them out!
█ Highly Available Cloud Shared, Reseller, and VPS
█ http://www.mddhosting.com/
#2
Posted 15 July 2009 - 08:37 AM
Discuss the issue reported in http://forums.mddhos...p?showtopic=120 in this thread.
I've moved this thread outside of the Client Only area so that those of you who have not previously registered on the forum as clients can discuss this.
You got pissed off competition or something, Mike?

I hope you're able to press charges or something. In any case I havn't noticed much of a slowdown. But thanks for the timely heads up!
Robin
#3
Posted 15 July 2009 - 08:43 AM
I'm on Boreas and I've noticed no issue. In fact, it's still faster than the host I moved from, which is pretty sad.
The most amazing part is Mike still is addressing little issues of mine with lightning speed. I feel bad.
#4
Posted 15 July 2009 - 08:47 AM
█ Scalable shared hosting plans in the cloud! Check them out!
█ Highly Available Cloud Shared, Reseller, and VPS
█ http://www.mddhosting.com/
#5
Posted 15 July 2009 - 08:57 AM
Sorry I kept you up late.
#6
Posted 15 July 2009 - 08:59 AM
You didn't - I have a reputation of "never sleeping" because I'm generally available almost all hours of the day and night. I do sleep and others handle tickets but while I am awake I always try to do as many tickets as I can as I absolutely love what I do and I love the interaction with our clientsDid you sleep at all last night? Geez, man...
Sorry I kept you up late.

At any rate, let's try to keep this on-topic concerning the attack.
█ Scalable shared hosting plans in the cloud! Check them out!
█ Highly Available Cloud Shared, Reseller, and VPS
█ http://www.mddhosting.com/
#7
Posted 15 July 2009 - 11:09 AM

Awsome ship you run here mike, glad to be aboard

#8
Posted 15 July 2009 - 11:09 AM
You didn't - I have a reputation of "never sleeping" because I'm generally available almost all hours of the day and night. I do sleep and others handle tickets but while I am awake I always try to do as many tickets as I can as I absolutely love what I do and I love the interaction with our clients
At any rate, let's try to keep this on-topic concerning the attack.
Just wanted to give a good luck and best wishes.
Its freaking pathetic that people feel the need to do this.
Its good to hear soft layer is helping you out.
#9
Posted 15 July 2009 - 11:21 AM
So far so good.Just wanted to give a good luck and best wishes.
I agree - the individual tried to extort around $7,000 from A Small Orange. I have contacted several other providers and they have received threats from the individual behind this attack just as ASO did and we have as well. We're working with the FBI to add what we can to the case file that ASO started with them.Its freaking pathetic that people feel the need to do this.
SoftLayer is amazing and this is just one of the many reasons that we are very proud to say that we have SoftLayer powering our hardware and network.Its good to hear soft layer is helping you out.
█ Scalable shared hosting plans in the cloud! Check them out!
█ Highly Available Cloud Shared, Reseller, and VPS
█ http://www.mddhosting.com/
#10
Posted 15 July 2009 - 11:29 AM
If the feds catch this guy you're going to let us know as soon as you know right? After that let the Wrath of the Webhosters rain down on his ****** and post the pictures here

#11
Posted 15 July 2009 - 11:34 AM
I can't really post any details but the chances of the FBI ever getting their hands on this individual I would say is slim. I guess we can all just hope that they make a trip to the United States and forget that they're flagged by the FBI for cyber-crime.Hey Mike!
If the feds catch this guy you're going to let us know as soon as you know right? After that let the Wrath of the Webhosters rain down on his ****** and post the pictures here.
█ Scalable shared hosting plans in the cloud! Check them out!
█ Highly Available Cloud Shared, Reseller, and VPS
█ http://www.mddhosting.com/
#12
Posted 15 July 2009 - 11:39 AM
Boy, nice timing. The day after I switch over! Haha.
I'm on Boreas and I've noticed no issue. In fact, it's still faster than the host I moved from, which is pretty sad.
The most amazing part is Mike still is addressing little issues of mine with lightning speed. I feel bad.
Ah, I have to totally second that. I switched over late last night. My DNS propagated about 3 this morning (Arizona time). And, my switchover was anything but easy for MDD. So far, I'm totally impressed. I had no slowup either. And, I came from a place that was down and up for days because of a DDOS attack. If this is what happens here at MDD, during an attack, I think I have found a home!!
Big Thank You to Mike and Christine for a relatively smooth changeover.
Rare & Pediatric Cancer Support & Information
#13
Posted 15 July 2009 - 11:45 AM
We are very good at transferring accounts - even those that do not come from other cPanel servers. It did take a bit more time and effort to move your account than I had originally anticipated but we have yet in the last year and a half to have a transfer request we were not able to complete!Ah, I have to totally second that. I switched over late last night. My DNS propagated about 3 this morning (Arizona time). And, my switchover was anything but easy for MDD. So far, I'm totally impressed. I had no slowup either.
The ability to mitigate a DDoS really has a lot to do with the infrastructure of the data center that a host is located in. This attack was quickly detected and mitigated by the TippingPoint and Cisco Guard hardware in the SoftLayer datacenter that our servers call home. While I cannot guarantee that in every case of an attack that we will be able to mitigate it this quickly and effectively I can guarantee that we will always do our absolute best to keep our servers and services online.And, I came from a place that was down and up for days because of a DDOS attack. If this is what happens here at MDD, during an attack, I think I have found a home!!
No problem at all, it was a pleasure to work with you during the transferBig Thank You to Mike and Christine for a relatively smooth changeover.

█ Scalable shared hosting plans in the cloud! Check them out!
█ Highly Available Cloud Shared, Reseller, and VPS
█ http://www.mddhosting.com/
#14
Posted 15 July 2009 - 12:01 PM
I'm wondering if this guy tried to extort money from MDDHosting...? Maybe Mike isn't allowed to say though.
The good news is how shielded and oblivious my forums users were. This guy is trying to DDOS my new webhost while at the same time my users are praising how much faster things are.

#15
Posted 15 July 2009 - 12:23 PM
One can only hope that he makes a visit to the United States - having a case file with the FBI will get you flagged in a hurry.Yeah the FBI doesn't have jurisdiction outside of the USA I don't think. I could be wrong. But I think that's one of the reasons most of such crime is committed in these other "safe haven" countries.
It's not something that really should be discussed in a public forum.I'm wondering if this guy tried to extort money from MDDHosting...? Maybe Mike isn't allowed to say though.
Yeah, there was roughly 5~10 minutes of downtime while Cisco Guard was learning the attack and working towards blocking it but after 10 minutes service was fully restored and within 20 you couldn't tell anything was happening at all. It's all very fast and very seamless.The good news is how shielded and oblivious my forums users were. This guy is trying to DDOS my new webhost while at the same time my users are praising how much faster things are.
█ Scalable shared hosting plans in the cloud! Check them out!
█ Highly Available Cloud Shared, Reseller, and VPS
█ http://www.mddhosting.com/
#16
Posted 15 July 2009 - 01:05 PM

Rare & Pediatric Cancer Support & Information
#17
Posted 16 July 2009 - 02:27 AM
Yeah the FBI doesn't have jurisdiction outside of the USA I don't think. I could be wrong. But I think that's one of the reasons most of such crime is committed in these other "safe haven" countries.
Although the culprit behind a DDoS attack could be in another country (and most probably are..), the main reason they are difficult to catch is because the DDoS requests generally are coming from innocent user's computers which have been hacked/manipulated by worms/trojan/virus and are slamming the servers with requests without their knowledge of it. The culprit can be sitting behind several layers of proxies to hide themselves, and to issue a command to their "botnet" and no one will be able to find them. It's insane. It could be my next door neighbor and no one would know it.
Although catching the criminal behind it is difficult, it's great that MDDHosting was able to defend themselves so quickly.

#18
Posted 16 July 2009 - 08:16 AM
I am sure there are other hosts out there that have been or are going to be targeted by this criminal and I know that ASO, VL, and ourselves have all contacted our local FBI offices concerning this criminal.
What would be good at the least is if the FBI were to get the contact information for the compromised computers from our logs of the attack and then to contact those individuals and inform them that their systems were compromised and needed scanned/fixed.
█ Scalable shared hosting plans in the cloud! Check them out!
█ Highly Available Cloud Shared, Reseller, and VPS
█ http://www.mddhosting.com/
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users