DDoS Ransom: An Offer You Can Refuse

Cloudflare has reported on several DDoS ransom groups, including copycats claiming to be Armada Collective and Lizard Squad. It advises against paying the ransom as it perpetuates their activities and encourages other would-be attackers. A new group targeting financial institutions sends a small demonstration attack before sending the ransom email. The main difference between this group and previous ones is that they actually send a small demonstration attack before sending the ransom email to demonstrate their capability. However, if the ransom amount is not paid before the deadline expires, the group does not launch a second attack. Cloudflare recommends having a DDoS protection plan in place ahead of time and implementing it before a security event occurs.