British teen suspected in massive Spamhaus DDoS attack

Police secretly arrested a London-based teen last April in connection with the huge DDoS attack on anti-spam organization Spamhaus, it has been confirmed.

The unnamed 16-year-old youth was picked up during "Operation Rashlike" after police connected his Internet activity to certain forums, according to The Evening Standard, the first outlet to be told about the story.

During the arrest, "the suspect was found with his computer systems open and logged on to various virtual systems and forums. The subject has a significant amount of money flowing through his bank account. Financial investigators are in the process of restraining monies," the briefing notes on the Operation said.

The same document agreed with assessments at the time that the March 19 DDoS attack on Spamhaus had been the "largest DDoS attack ever seen" which caused worldwide impact including on the servers of the U.K.'s main Internet hub, the London Internet Exchange.

Britain's National Crime Agency, which officially launched this month, confirmed that the arrest had taken place in April and that investigations "were ongoing." The unnamed teen was bailed to appear in court late this year.

Only one other suspect is so far known to have been arrested for the Spamhaus attack, 35-year-old Dutch national Sven Olaf Kamphuis, also arrested in April. Spanish police still believe he was the ringleader for the attack.

Although the exact effect of the DNS reflection attack the two are accused of being involved in is still not clear, at around 300 Gbps there is no doubt it was large by DDoS standards. Equally, it is in the interest of police and prosecutors to characterize the offenses as being as severe as possible when the evidence supporting this is mixed.

The police disclosure of the April arrest comes only days before the new NCA is formally launched on October 7. Created as an attempt to integrate the investigation of certain kinds of complex crime, the new organization replaces Serious Organised Crime Agency (SOCA), itself formed as recently as 2006.

Subscribe to the Security Watch Newsletter

Comments