A hacker group is threatening VPN providers with DDOS attacks

brian krebs project shield ddosattack
BlackVPN, a provider of virtual private network (VPN) software, has refused to pay a ransom demand from hacker group Armada Collective, which threatened to unleash a DDOS attack on the company if it didn’t pay up.

According to a blog post, BlackVPN received an email threat from the group demanding it pay 10.08 bitcoins (about $4,600) by Monday or “yours [sic] service going down” and the ransom demand will go up in price every day of non-payment. “Bitcoin is anonymous, nobody will ever know you cooperated,” said the email.


Armada Collective is allegedly the group of hackers that targeted encrypted email service Protonmail last year and successfully nabbed nearly $6,000 from the Swiss company after pummeling its servers with traffic.

It’s unclear if the people threatening BlackVPN are the same group or just copycats. As with Anonymous, it’s almost impossible to verify when someone claims to be speaking on behalf of the group. A report in December even pointed out how these hacker groups are regularly imitated.

BlackVPN said it received the threat last Monday, April 18, and has been preparing for the alleged DDOS onslaught that was promised today.

The VPN provider acknowledged that on Saturday, April 16, disruptions to its network were caused by a small DDOS attack that it was not prepared for. No intrusions were detected, it added. The company has said that since then, it has been preparing to withstand a possible attack, and it told customers that they are safe.

“The threat is only against BlackVPN’s systems and attacking our service will not compromise or threaten our customers’ privacy or security,” it wrote. “The worst case scenario is that our VPN service and support systems are unavailable during the attack.”

The blog post added that it was aware of two other VPN providers that have received similar threats, but did not name them.

“We hope that our transparency will encourage other VPN services to speak up if they have also received a blackmail threat — now and in the future,” said the company.

Last week, the VPN service Cloak received a very similar email, also demanding around 10 bitcoins. That company also denied the extortion attempt and it does not appear to have suffered any major downtime since then.

But the hacker group has had some success allegedly. SCRYPTmail, another encrypted email provider, received a ransom of 10.12 bitcoin this past weekend when faced with the same threats from Armada Collective and paid a tiny fraction of it, just a couple of cents.

It’s not clear if Armada Collective is the same group that is behind the threats to Cloak, SCRYPTmail, and other VPNs. If so, the cyber criminals may be sending out multiple threats to VPN providers just to see if anyone will bite. According to BlackVPN, the group would only be effective in attacking one service at a time.

Product Review

Samsung’s Galaxy Book 2 is a Surface Pro alternative with one big advantage

The 2-in-1 form factor is clearly a big deciding factor for anyone looking to buy a new device, which is why Samsung is again getting in the action this year with the new Galaxy Book 2.

Your PlayStation 4 game library isn't complete without these games

Looking for the best PS4 games out there? Out of the massive crop of titles available, we selected the best you should buy. No matter what your genre of choice may be, there's something here for you.

Number not recognized? Here's why you're receiving calls from 'Scam Likely'

While it may seem like a bold marketing move to tag your calls "Scam Likely," these alerts are actually your carrier's way of helping you identify scams. Here, we'll walk you through what exactly these markers mean and how you can turn them…
Home Theater

Cutting the cord? Let us help you find the best service for live TV streaming

There's a long list of live TV streaming services available to help you cut the cord and replace your traditional TV subscription. Each is different in important ways, and this guide will help you find the best one for you.
Movies & TV

'Prime'-time TV: Here are the best shows on Amazon Prime right now

There's more to Amazon Prime than free two-day shipping, including access to a number of phenomenal shows at no extra cost. To make the sifting easier, here are our favorite shows currently streaming on Amazon Prime.

Consider an extended warranty plan if you buy a Surface Pro 6

Though Microsoft offers a standard one-year warranty on the Surface Pro 6, consumers may want to purchase an extended warranty plan if they intend on keeping their tablet longer due to the device's low repairability score.

'World's best gaming processor'? We put Intel's new i9 through the ringer

Intel has launched the first Core i9 for the average gamer. Despite some controversies around its release, it’s the fastest gaming processor we’ve yet tested.

Samsung Chromebook Plus V2 vs. Google Pixelbook

Samsung's Chromebook Plus V2 attempts to answer the question: can you spend around half as much as on the premium Google Pixelbook and be happy that you saved some serious cash?

Protecting your PDF with a password isn't difficult. Just follow these steps

If you need to learn how to password protect a PDF, you have come to the right place. This guide will walk you through the process of protecting your documents step by step, whether you're running a MacOS or Windows machine.

Google Chrome 70 is finally getting a picture-in-picture mode

Picture-in-picture mode is finally coming to Google Chrome 70 on Mac, Linux, and Windows. The feature not only applies to YouTube but also any other website where developers have chosen to implement it.

Intel's 9th-gen chips could power your next rig. Here's what you need to know

The Intel Core i9-9900K processor was the star of the show for consumers, but a powerful 28-core Xeon processor also led announcements. Here's everything you need to know about the latest Intel chipsets.

Core i9s and Threadrippers are all powerful, but should you go AMD or Intel?

The battle for the top prosumer CPUs in the world is on. In this head to head, we pit the Core i9 versus the Threadripper to see which is the best when it comes to maximizing multi-core performance on a single chip.

Despite serious security flaws, D-Link will (again) not patch some routers

D-Link revealed that it won't patch six router models despite warnings raised by a security researcher. The manufacturer, for the second time in a span of about a year, cited end-of-life policies for its decision to not act.

Apple’s latest feature ensures MacOS apps are safer than ever

MacOS is mythically known for being more immune to viruses than Windows, but that doesn't mean there isn't room to make it safer. Apple is using an app notarization feature to protect users from downloading malicious apps.