In the early 2000s, a curious teenager called “Mafiaboy” cracked the internet. He executed a massive Distributed Denial of Service Attack (DDoS) attack that took down Yahoo!, eBay, CNN, Amazon, and Dell. Here is what the project Revolta was all about, and what companies can learn from it, to stay safe.
Project Rivolta
On February 7, 2000, Michael Calce (Mafiaboy) launched the project Rivolta, meaning “rebellion” in Italian. He first targeted Yahoo! and then brought down eBay, CNN, and Amazon over the next week.
The attack inundated servers with a vast volume of requests, drowning these servers with more traffic than they could handle. This made it impossible for them to respond to legitimate user requests, effectively taking them offline.
As per a paper published on Research Gate, The Case of ‘Mafiaboy’ and the Rhetorical Limits of Hacktivism,” Calce wasn’t a programmer. He obtained an automated “rootkit” written by somebody else and then set it to work “anonymously.”
He executed a DDOS attack with a borrowed script. In this case, a DoS program authored by Sinkhole. Although early press reports fingered a creation by “mixter” called Tribal Flood Network.
He planted several DOS agents on “zombies,” which are hijacked computer systems connected to the Internet. He then remote-controlled the operation with his automated software. He then used the zombies to attack selected websites with data packets. These events marked the Internet’s first big wave of DDoS attacks.
The attack caused an estimated USD 1 billion in damages, turning Mafiaboy into one of the most wanted overnight.
Motivation
As per his documentary, “Rivolta: Inside the Mind of Canada’s Most Notorious Hacker, “the first time he accessed the Internet was probably the most exciting point of his life.”
At age 6, he got his first computer. Between 6 and 9, he read programming books, construction books, hardware, and software. He liked reverse engineering things.
Over the first few weeks of using the computer, he went from knowing nothing to using DOS commands. Calce spent days reading manuals to gain knowledge and put it into practice.
A few years later, he got his first free trial of AOL. A few days later, the 9-year-old managed to hack AOL’s systems to stay online past the 30-day trial period—pretty remarkable for his age, right? Years later, what motivated him to execute such an attack? A blend of curiosity and a desire to prove his technical abilities.
Also Read: Efficiencies and Factors to Consider When Selecting DDoS Attack Solutions
Realizing that he can drive people to do what he wants was the start of the rabbit hole.
Inside Mafiaboy’s Mind
Mafiaboy says, “It’s hard to tack on security as an afterthought if all the basics and the underlying structure of it is not sound. It’s like trying to build a house, but your foundation is not good. Hackers will always be at an advantage.”
At the core of his actions, he denotes a complex interplay of curiosity and his highly analytical and strategic mindset, which enabled him to execute complex hacking operations.
“There was something intoxicating about the idea of dictating everything the computer did, down to the smallest of functions,” says Mafiaboy.
He believes that there are many ways to make money by manipulating tech, which is the goal and end game for attackers. The reality is that nobody needs to be a target. The moment they access the Internet, hackers are granted an IP address, which is alone worth something.
“I like to personally correlate hacking with a drug. Just that moment when you breach a network, and you have administrator access, it was intoxicating. All the PC does is empower you. Empower you for good or bad; it’s up to you to make that decision,” he adds.
Repercussions
The impact of the MafiaBoy attack led governments and law enforcement agencies to rethink their approach to cybercrime. In Canada, where Calce lived, the incident prompted legislative action. It resulted in the enactment of the Canadian Cybercrime Act in 2001.
Meanwhile, in the UK, the Computer Misuse Act (CMA) of 1990 became a crucial legal tool in combating cyber trespass and sabotage. The CMA was conceived before the MafiaBoy attack, in an era when the internet was still in its infancy.
The Act outlined three main offenses:
-
Unauthorized Access to Computer Material
This provision criminalizes unauthorized access to systems. Access can be gained by bypassing security measures or exploiting vulnerabilities. It covers a broad spectrum of activities, from hacking to infiltrating corporate networks.
-
Unauthorized Access with Intent to Commit or Facilitate Further Offenses
This provision criminalizes individuals who gain unauthorized access to commit additional crimes, such as data theft, fraud, or sabotage. It recognizes the innate danger posed by hackers who exploit their access for malicious intents.
Also Read: Strategies to minimize multi-vector DDoS attacks
-
Unauthorized Modification of Computer Material
This offense pertains to the deliberate alteration or manipulation of data without permission. It contains acts of cyber vandalism, where hackers vandalize websites or corrupt digital records.
Aftermath
The US FBI and the Royal Canadian Mounted Police (RCMP) first noticed Calce when he said he claimed to have brought down Dell’s website. This attack had not been publicized then. That is when he became the chief suspect.
Agents began searching the Internet for clues and managed to track him down by connecting the attacks from the incident at Outlawnet in Seattle. RCMP told the press that the wiretap evidence they possessed of Mafiaboy’s intent to commit fraud was overwhelming.
Yet, during the pre-sentencing hearing, the legal defense strategy addressed the issue of intent. They claimed that Calce was testing the security of the websites in question.
The defense argued that his motive was “public service” rather than malicious damage. Later, he pleaded guilty, stating he was a “white hat” hacker and was conducting “experiments” to help improve the security systems of the websites in question.
His hacks aimed to expose security gaps and contribute to finding solutions to these issues. He intended to use this experience to pursue a career as a computer security analyst.
Nonetheless, Calce later pleaded guilty to over 50 charges.
Key Takeaways
From the curious case of Mafiaboy, here are some key takeaways.
- Cyber security is Fundamental
The attacks highlighted the importance of robust cyber security measures. The ease with which a hacker could bring down major websites underscored the need for better security protocols.
- Education is the Key
Calce’s motivations were driven by curiosity and a desire to understand and manipulate technology. This shows the need for better education and guidance for young, capable individuals to use their skills ethically. Encouraging positive outlets for their talents can divert potential negative actions.
- False Assertions
Mafiaboy’s assertion of being a “white hat” hacker wanting to expose security gaps to improve systems brings attention to ethical hacking and its value in strengthening cyber security.
- Psychological Aspect
The case also sheds light on the psychological motivations behind hacking. Understanding these motivations helps develop better strategies and helps engage budding hackers positively.
Preventive Measures Over Reactive Ones
Mafiaboy’s critique of the importance of building security from the ground up emphasizes a proactive approach to cyber security. Investing in solid foundations and continuous improvements can prevent gaps rather than dealing with the consequences of a breach.
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
