Did I get DDoS'd? Thinking about reporting to authorities but not sure if it was.

[lucagrabacr]

Hey guys, so earlier someone on Steam basically said to me via chat "would you like 100% packet loss?" (because my display name on Steam has "40% packet loss" in it since I'm laggy from time to time).Which I jokingly replied "No :P" then he said, "It can be arranged"

 

Seconds later, I got disconnected from Steam and was unable to connect to most websites. Domestic websites and Google still worked, however, and I was still able to connect to Steam through my mobile Steam app (which is connected to the same router my PC is connected to), even though I can't connect to the internet in general on my phone.

 

I talked again with the person on Steam through my mobile Steam app which somehow still worked, and he implied that he was the one who did it (said he got 650gbps or even 1tbps connection if he enables his other server). He also said, "It has been arranged" which I read on my mobile steam app.

 

Also, that person asked me if I was from Asia a few days ago, and I told him that I am.

 

Based on those information, was it a DDoS attack? Or was it just a mere coincidence that my internet connection got messed up seconds after he said that? Is there a way to monitor this kind of thing to see if it was? Don't really want to file a report to the authorities without being 100% sure that it was an attack. Thanks in advance guys.

[Bwithnewcast]

DoS

A DoS Attack is a Denial of Service attack.

This means that one computer and one internet connection is used to flood a server with packets (TCP / UDP). The point of such a denial of service attack is to overload the targeted server’s bandwidth and other resources. This will make the server inaccessible to others, thereby blocking the website or whatever else is hosted there.

DDoS

A DDoS Attack is a Distributed Denial of Service Attack.

In most respects it is similar to a DoS attack but the results are much, much different. Instead of one computer and one internet connection the DDoS attack utilises many computers and many connections. The computers behind such an attack are often distributed around the whole world and will be part of what is known as a botnet. The main difference between a DDoS attack vs a DoS attack, therefore, is that the target server will be overload by hundreds or even thousands of requests in the case of the former as opposed to just one attacker in the case of the latter.

Therefore it is much, much harder for a server to withstand a DDoS attack as opposed to the simpler DoS incursion.

 

3 minutes ago, lucagrabacr said:

(said he got 650gbps or even 1tbps connection if he enables his other server).

http://thehackernews.com/2016/09/ddos-attack-iot.html

 

He is a bragger, and how the flying fuck did he get your ip then! Did you open any links he sent or a file?

[tlink]

he's bullshitting. 1tbs to ddos random people on the internet and he owns it, and talks about it on an easily verifiable platform with chat logs? this screams script kiddie looking for attention. if you want to be sure call your ISP and ask if they see a lot of data going to your IP, that is a clear indication of DDOS.

[lucagrabacr]

3 minutes ago, Bwithnewcast said:

He is a bragger, and how the flying fuck did he get your ip then! Did you open any links he sent or a file?

I'm not sure. I suspected he got it from my non-https forum and I asked him if it was, he said it was none of that and it was "black magic". It might have also been one of the game servers I played on.

 

1 minute ago, tlink said:

he's bullshitting. 1tbs to ddos random people on the internet and he owns it, and talks about it on an easily verifiable platform with chat logs? this screams script kiddie looking for attention. if you want to be sure call your ISP and ask if they see a lot of data going to your IP, that is a clear indication of DDOS.

Ah, alright I'll call my ISP asap and asked them about it. Thanks for the suggestion tlink, didn't think about that.

[Technomancer__]

he most probably is an internet troll that wants attention

he is just a script kiddie

 

ignore him and block him from steam so when he sees youre not giving him attention he will stop

[Technomancer__]

also download glasswire and see incoming ips and block him

[tlink]

3 minutes ago, lucagrabacr said:

I'm not sure. I suspected he got it from my non-https forum and I asked him if it was, he said it was none of that and it was "black magic". It might have also been one of the game servers I played on.

if they owned / have access to a server you connected to and possibly identified yourself on (user account, name, email etc) then thats how he could've gotten your ip. this means any website link they might've send you, any server you have connected to that they suggested.

[lucagrabacr]

47 minutes ago, Ethocreeper said:

also download glasswire and see incoming ips and block him

Downloading it now. Edit: Called my ISP about it and they said everything's normal, told them that it happened about two hours ago, they checked and they said everything's normal. Not sure if it really was just a coincidence or my ISP couldn't detect it. Anyway, I have glasswire running now  so I guess I can see if something like that does happen in the future, thanks again for the help guys.

[.spider.]

2 hours ago, Ethocreeper said:

also download glasswire and see incoming ips and block him

Do you believe his PC is directly connected to the Internet?

The router won't forward a single connections to his PC. He would need to monitor his router's wan interface.

[Technomancer__]

1 minute ago, .spider. said:

Do you believe his PC is directly connected to the Internet?

The router won't forward a single connections to his PC. He would need to monitor his router's wan interface.

he can see his ip from the chat or something and block it from the router

[.spider.]

5 minutes ago, Ethocreeper said:

he can see his ip from the chat or something and block it from the router

No he can't do anything with a software firewall on a client behind a router.

[Jarsky]

If it was a smurf attack (which is what hes bragging when he talks about how much bandwidth he has available which im guessing is a botnet for hire) - then your ISP will see a huge spike in data. Its probably just a troll . He would have needed to get your IP from connecting to you P2P in some way. If you had a voice chat with him over Steam then i believe that is P2P - but if it was just via text, thats all over Steam servers, so he cannot get it that way. Same with most game servers - keep voice off in game and you'll be fine. This is why we use discord for any team based games.

[Falconevo]

If you used VOIP on the steam chat, he would of retrieved your IP.

Then you can utilise anything to perform a DoS or DDoS against a single IP.  Send enough traffic to the IP and it will make your connection useless.  As for the claims of massive GB/s of bandwidth I very much doubt it, just sounds like a kid using free tools to 'DDoS a skid'

[tt2468]

4 hours ago, Falconevo said:

If you used VOIP on the steam chat, he would of retrieved your IP.

Then you can utilise anything to perform a DoS or DDoS against a single IP.  Send enough traffic to the IP and it will make your connection useless.  As for the claims of massive GB/s of bandwidth I very much doubt it, just sounds like a kid using free tools to 'DDoS a skid'

I think they they fixed that insecurity.

[Doc Holliday]

It could be a mere coincidence. 

[Mornincupofhate]

Don't listen to anyone else in this thread. He's using exploited iot devices to hit you offline, or DNS servers. Even if you did report him, the authorities wouldn't give a shit. Keep in mind most cops don't even know what twitter is; good luck explaining ddos to them.

 

Change your IP address through your provider. You will need to call them up and ask for a new ip (you probably will need a new modem to get a new ip.)

 

next, buy a privateinternetaccess subscription and use it 24/7 even when you're gaming.

 

how did he get your IP address in the first place? You either: clicked a link he sent you; joined his game server; accepted a voice call from him on steam; or he found a dump with your ip in it.

 

Can you block the attack on your end? Fuck no, that's not how the internet works. You'll still go offline regardless of how expensive your router or firewall is.

 

After you get a new ip and get on a vpn, go on steam and make fun of him for being powerless and a skid. Also make fun of the fact that he pays for a ragebooter subscription and can't hit over 200mbps. Then ask him for a dstat of his "power" with your name on the graph.

 

you're welcome.