DDoSer 'n3ptun0' arrested

[ev0lution]

Yes, although this is mainly to do with SA-MP, it's still real-life news.

Quoted from Woet on the SA-MP forums:

The DDoSer, virus writer and extortionist known as 'n3ptun0' has been arrested by the Police and is currently in jail awaiting trial.
He is responsible for DDoSing popular SA-MP servers such as GamerX and the Partyserver, demanding money from them in return for him to stop sending attacks.
Additionally, he also attacked the SA-MP website, SA-MP forums, serverFFS website and the SA-MP IRC network from time to time.

elhacker.net and several other parties have been active in tracing him down and collecting evidence, finally leading to this arrest.

The Civil Guard attributed to a minor computer attack more than 75,000 computers



The youngest, a computerized self-taught, he managed to evade security protocols considered insurmountable

After controlling more than 75,000 computers spread around the Internet world, launched a massive attack over twelve million hits, a prestigious site for computer security



The Civil Guard, as part of Operation CANDELARIA, "developed in Catalonia, have been attributed to a minor residing in Tenerife, as the alleged perpetrator of a crime of damage to computer systems, having" infected "thousands of computers located in different countries, with the aim of dominating and launching massive attacks on certain websites, including personal challenge to demonstrate the vulnerability of those other websites.

The investigations were initiated following a complaint by the Administrator of the website www.elhacker.nethttp://http://http:// in which he stated that his page had been canceled for several days following a massive increase of visitors, well above normal, and certainly caused by this intention, which is known as DDoS (Distributed Denial of Service).

The contents of this page, and the vast majority of people who work in it, programmers and system administrators are intended to help develop their knowledge and experience on network security in several areas, both private business.

From the investigations made, it appeared that a person using the network in the nick "n3ptun0" had developed a "virus" taking advantage of security flaws in the UDP protocol (one of the channels of information in the network), for infect PCs

Thus, real mastery of Internet hosts and initiate, when he decided, mass visits to selected pages.

Furthermore Site Administrator which filed the complaint, the Civil Guard was able to observe the attacks being carried out by the same procedure to other pages, mainly devoted to forums and game servers, called San Andreas ..

Infection of computers (Zombies):

The child hung a video on youtube with attractive phrases to capture the attention of the Internet, so getting the user and automatically download content was infected.

This virus had spread to the peculiarity through programs like Messenger so widespread, Fotolog, etc..

Once infected with the virus, the minor went to dominate the PC at will with the intention to make visits at the same time, the pages I wanted to attack, crashing the servers of the same.

One example was the www.elhacker.nethttp://http://http:// page, which suffered in minutes over twelve million hits simultaneously, when the regular average hovered about a hundred thousand.

Through this operation had succeeded in controlling more than 75,000 computers

The alleged perpetrator of these attacks, a child under 16 years who lacked any academic training in this specialty has been developing their knowledge through 13 years, entirely self-taught individual and ..

The child was transferred to the Juvenile Prosecutor of Santa Cruz de Tenerife.

For more information, please contact the Office Peripheral Communication (OPC) of the Civil Guard in Barcelona, telephone 93 476 60 81 and 93 476 60 91.

Official news:
http://www.guardiacivil.org/prensa/notas/win_noticia.jsp?idnoticia=2724

Translated to English:
http://translate.google.com/translate?js=y&prev=_t&hl=en&ie=UTF-8&u=http%3A%2F%2Fwww.guardiacivil.org%2Fprensa%2Fnotas%2Fwin_noticia.jsp%3Fidnoticia%3D2724&sl=es&tl=en

More news:
http://www.elmundo.es/elmundo/2009/11/26/navegante/1259238023.html
http://www.europapress.es/islas-canarias/noticia-menor-detenido-tenerife-presunto-autor-ataque-informatico-20091126162644.html
http://www.publico.es/agencias/efe/273108/imputado/hacker/anos/infectado/ordenadores
http://www.abc.es/20091126/nacional-islas-baleares/menor-tenerife-imputado-ataque-200911261636.html
http://www.elpais.com/articulo/sociedad/hacker/anos/ataca/75000/ordenadores/elpepusoc/20091126elpepusoc_10/Tes
http://www.20minutos.es/noticia/575229/0/ataque/informatico/ordenadores/
http://www.elperiodico.com/default.asp?idpublicacio_PK=46&idioma=CAS&idnoticia_PK=665299&idseccio_PK=1012

Pwnt.

 

[[FF]TeddyBear]

Nice read, I heard of the dude, but didn't know he was "actively" doing his shit.

 

[Andre]

Owned. That's what happens when things get out of your control.

75000? The guy had 100000 bots alone from South America. He sent me an image over MSN once showing his web control panel. Also he used the same exploit to spread his virus as the Conficker did. He told me that his friend is some sort of a code developer who had made part of the Conficker virus (which eventually got out of his hands) and n3ptun0 used that code also.

I think Woet actually banned someone from #sa-mp today who responded to someone's "did n3ptun0 really get arrested" with a "no". I think it was LobbyZ who said "no" and got banned.

Also n3ptun0 once showed me his SA-MP 0.2x startup packet loader and his source (VB6) for bots on 0.2x server. He was requesting $20 per month from servers for exchange of not DDoSing them.

But seriously props to Woet and this elhacker crew and people for getting this dude locked up. Good job, less bullshit and crime on the net. And less for the SA-MP faggots to cry about. Oh and yeah SFSFv2 was attacked by one South American botnet a little before. They blocked the IPs though.

 

[Mave]

A botnet that big...

Hmm he's not going to get off easily.

Good thing they caught the bastard.

 

[ThePro]

i can't belive they did it :O

barcelona's a great city, great law


all spanish rappers are from there btw

 

[CreonSiper]

Great, one less idiot on the internet.

 

[Andre]

n3ptun0 ütleb:
*hi
andre@andre9977.com (E-mail Address Not Verified) ütleb:
*hi n3ptun0!
n3ptun0 ütleb:
*you see the notice i arrested
andre@andre9977.com (E-mail Address Not Verified) ütleb:
*sure do.
n3ptun0 ütleb:
*haha
*samp losers
*im not arrested
*and now
*i have a good job
*in compnay security system
andre@andre9977.com (E-mail Address Not Verified) ütleb:
*so being arrested was a lie?
n3ptun0 ütleb:
*company*
andre@andre9977.com (E-mail Address Not Verified) ütleb:
*but the story was covered in many places.
n3ptun0 ütleb:
*yes
andre@andre9977.com (E-mail Address Not Verified) ütleb:
*who made that up?
*http://www.elmundo.es/elmundo/2009/11/26/navegante/1259238023.html
http://www.europapress.es/islas-canarias/noticia-menor-detenido-tenerife-presunto-autor-ataque-informatico-20091126162644.html
http://www.publico.es/agencias/efe/273108/imputado/hacker/anos/infectado/ordenadores
http://www.abc.es/20091126/nacional-islas-baleares/menor-tenerife-imputado-ataque-200911261636.html
http://www.elpais.com/articulo/sociedad/hacker/anos/ataca/75000/ordenadores/elpepusoc/20091126elpepusoc_10/Tes
http://www.20minutos.es/noticia/575229/0/ataque/informatico/ordenadores/
http://www.elperiodico.com/default.asp?idpublicacio_PK=46&idioma=CAS&idnoticia_PK=665299&idseccio_PK=1012
n3ptun0 ütleb:
*what?
andre@andre9977.com (E-mail Address Not Verified) ütleb:
*isn't that too much to make up?
n3ptun0 ütleb:
*this page are popular websites of spain
*of news
andre@andre9977.com (E-mail Address Not Verified) ütleb:
*yes
*but they cover the story of "you" being arrested
n3ptun0 ütleb:
*yes
*its false
*xD
andre@andre9977.com (E-mail Address Not Verified) ütleb:
*seriously?
n3ptun0 ütleb:
*YEAH
*im not arrested
andre@andre9977.com (E-mail Address Not Verified) ütleb:
*but you were?
n3ptun0 ütleb:
*im in my house
andre@andre9977.com (E-mail Address Not Verified) ütleb:
*I get it.
*but did you get arrested and then released?
n3ptun0 ütleb:
*no, never
andre@andre9977.com (E-mail Address Not Verified) ütleb:
*ok

 

[Mave]

It's hard to believe that this all was a lie O: