Preventing and restricting access to a public computer network
What is it?
Preventing and restricting access to a public computer network (DDoS attack - Distributed Denial of Service) is an extremely complex criminal activity with significant consequences, which is criminalized in our criminal legislation through the criminal offense of Extortion in connection with the criminal offense of Preventing and restricting access to a public computer network.
The criminal offense is committed by creating a network of infected computers (Botnet) in advance, controlled from a single location and directed at the victim. This results in overloading and disabling the operation of the attacked computer or server, demanding ransom, usually in the form of a specified amount of money.
Similar to Ransomware, extortion is often demanded through a cryptocurrency, most commonly Bitcoin.
A characteristic of this criminal offense is that individuals possessing certain technical knowledge use specialized software to create networks of infected computers, numbering several tens of thousands of computers, which are later sold or leased to perpetrators of criminal activities for attacks.
The network of infected computers is often created from a large number of poorly protected computers using unlicensed security programs or devices such as routers, surveillance cameras, and similar devices connected to the internet.
Typically, owners or users of computers that are part of the Botnet are unaware that their computers are being used to commit a criminal offense, as the average computer user is unable to notice any changes in its operation.
In the Republic of Srpska, the most common victims of this criminal offense are companies, certain media, and other legal entities that require computer equipment for their daily business operations, making them more susceptible to extortion.
The motive for committing this criminal offense is exclusively unlawful financial gain, while in the case of media or other specific legal entities, the motive may also involve disrupting operations without direct material benefit.
How to Protect Yourself?
Do not open email messages from unknown senders.
Do not open email messages with unknown attachments.
Use original and licensed software.
Use and regularly update antivirus programs.
Use USB drives cautiously.
Engage professional individuals for the maintenance of information systems.
Report all suspicious activities on the information infrastructure to CERT (Computer Emergency Response Team) or the Government of the Republic of Srpska's Computer Incident Response Team.
Regularly create backups of data on separate memory capacities.
What if it Happens?
Report to the Ministry of Internal Affairs of the Republic of Srpska as soon as possible.
Engage professional individuals to establish secondary telecommunication systems.