Security researchers from the company GData have found a do it yourself botnet kit and Anonymous provides free ddos tools. The hackers or cyber warriors of today are script kiddies and persons that just like to fool around.
They simple find a website that provides the download ALDI bot link and click on download aldi ddos tool.
The wide choice of tools to start your own cyberwar is dangerously high.
The tools that get provided on the internet are simple “click and kill” tools, the user has a user friendly graphical interface and they can get the tools for free or for less than 20 dollar. The tools can be found at underground communities.
LOIC
The amount of people that use these kinds of tools is insane. If we take a look at the LOIC tool by Anonymous:” More than 30,000 downloads of the tool were reported to have occurred between 8 and 10 December 2010.”
LOIC was utilized by Project Chanology, an offshoot of the Anonymous group, to attack Scientology websites, then by Anonymous itself to successfully attack the Recording Industry Association of America's website in October 2010, and again during Operation Payback in December 2010 to attack the websites of companies and organizations that opposed WikiLeaks. LOIC was utilized by many attackers, despite the fact that a network firewall could easily filter out network traffic it generates, thus rendering it only partly effective.
#REFREF
And the amount of searches for the #RefRef ddos tool by Anonymous on the Cyberwarzone article is already over 7000 clicks. That means that there is a serious interest in such type of tools.
The new tool, called #RefRef, is set to be released in September, according to an Anon promoting it on IRC this afternoon. Developed with JavaScript, the tool is said to use the target site’s own processing power against itself. In the end, the server succumbs to resource exhaustion due to #RefRef’s usage. An attack vector that has existed for some time, resource exhaustion is often skipped over by attackers who favor the brute force of a DDoS attack sourced from bots or tools such as LOIC.
ALDI BOT
The so-called “Aldi Bot” first appeared in late August and has been sold for the initial price of €10! Parts of the bot’s code oddly look like ZeuS code
The malware author, the name used makes us suspect it is a male author, announces his bot creation in the underground and explains that he likes coding and is not keen on making a lot of money. That would be the reason for the low price, he says. Accepted payment methods: paysafecard (with receipt) and Ukash. “I cannot guarantee that the stub you get is always FUD”, he says. This means that there is no guarantee for buyers that the program code remains undetected by AV products. And he is quite right – AV products are able to detect the bot.
