VimProducts DDoS-for-hire-service on the Dark Web

DDoS-for-hire-Services such as this are a major contributing factor to the increase of DDoS attacks worldwide. Although this particular service may not have the number of bots and therefore the size of attacks as some of the larger DDoS incidents seen over the past year, this type of service can still cause significant disruption to businesses online.

VimProducts currently has 2 different Onion websites on the Dark Web which are basically the control panel for the DDoS tool. The first webpage is titled as VimProducts DDoS Service (IOT/Unprotected).

The website is simply made up of 3 pages, the control panel, FAQ and a Purchase page. The control panel shows how simple it is for someone to use. There are two options, an attack option, and a tools option, which is for checking if sites have DDoS protection, identifying the real IP etc.

In the attack option, a user simply needs a web domain of the intended target and the key that they will have already purchased from VimProducts.

Once the user has entered these 2 pieces of information, they then select either a 10 minute attack or a 1 day attack. A 10 minute attack will most likely be used by customers to test both the level of protection on a target but also to test the services provided by VimProducts, before opting to use a 1 day attack.

The control panel page also shows the current statistics regarding the DDoS service. At the time of writing on 18th July 2017, the site is showing that there were 5 attacks currently running and appears to indicate that only 8 attacks can run concurrently. It also indicates that there are currently 2,802 bots online.