Follow Us on WhatsApp | Telegram | Google News

Lizard Squad’s DDoS Website Gets Hacked, Database Leaked

Table of Contents
Yesterday, we have reported that a member affiliate to the Lizard Squad hackers group had been arrested by the crime unit authorities at the border of UK. Lizard Squad was a group behind the  massive Distributed denial-of-service (DDoS) attack that took Sony PlayStation Network and Microsoft Xbox Live server offline for a day on the last Christmas day.

Since then, the hackers set up a DDoS service, called Lizard Stresser, that can be rented by anyone to bring down any online target they choose. Thousands of websites have been impacted by attacks carried out through the service.

On the list of the attacked site, one was of Security blogger Brian Krebs. After the attack, Krebs started digging and investigating over the attack. Krebs mention that the Lizard Squad DDos tool called Lizard Stresser relied on a vast network of compromised home routers

Krebs reports that an unknown individual had managed to hacked the Lizard Stresser's website and gain access to the website database with the customers and the transactions they made to rent the service.  

It seems that Lizard Squad did not bother to apply any sort of protection for the database containing client data, and username and password information was stored in plain text.

How Much hackers Earned from the Service
As the database of the site was not protected and all the credential information was stored in a plain text. Hacker have dumped all the database of the site. According to Krebs, who received a copy of the database, the website stressing tool had more than 14,000 registered users and a few hundred of them paid to use it.

It was calculated that hackers have earned more than $11,000 worth of bitcoins, since after the service launched. 

Along with the Krebs blog, other websites that includes 4Chan, Torrents Freak, ExtraTorrent, Infinite Chain  were also attacked by Lizard Stresser. 
Read Also
Post a Comment