Feeds

Wurm turns! DDoSed online game universe offers €10,000 bounty for the hacker's head

Swedish games duo ask players to go hunting for spoilsport

SANS - Survey on application security programs

Wurm Online, a popular massively multiplayer online role-playing game (MMORPG), has been taken offline in a troublesome distributed denial of service (DDoS) attack shortly after updating its software.

Now the founders have put up a €10,000 ($13,743) reward for the conviction of those responsible.

"Shortly after today's update we were the target of a DDOS attack and our hosting provider had to pull us off the grid for now," Wurm's co-creator Rolf Janssonon said on Wednesday.

"We will be back as soon as possible but things are out of our hands since their other customers are affected. As we wrote in a previous news post we are planning on changing hosting anyways which should improve things for the future. We can offer 10 000 Euro for any tips or evidence leading to a conviction of the person responsible for this attack."

The game, built by Swedish developers Code Club AB, is still down after being hit by the attack, but the company said that Wurm's servers were backed up to a point just before the first floods of data swamped their connections, so players won’t lose their gaming progress when service is eventually restored.

Wurm has attracted a devoted following who put up with its fairly basic graphics because it's one of the purest MMORPGs out there. Players are dropped into a landscape with no skills and everything in the game has to be made and learned one step at a time, with the landscape being totally terraformable.

Janssonon created the Wurm universe with Minecraft creator Markus "Notch" Persson, and it bears many similarities with its more popular cousin. Players can rearchitect large sections of the gaming environment and group together in villages and townships for protection and profit, but that's all on hold until the game's servers can be transferred to a hardier provider.

The Wurm team said on Wednesday that that process is going to take at least another day, although premium users will be refunded time lost, and the company reaffirmed that its backups are secure. In the meantime users in the game's forums have been baying for the blood of those who launched the attack.

"You sir, are an arse," wrote one user – presumably of British extraction – on the Wurm "Dear DDOS Attacker" thread. "I cannot speak to your motive or to what you hoped to achieve. I can only speak from my own experience and this reeks of a teens tanty when his toys are taken away… That does not change the fact that you are an arse."

It's unusual to see bounties being offered for those who take down sites, and there are some in the industry who feel that they are ineffective. But Brit security watcher Graham Cluley said there was no harm in trying.

"I guess if they rarely work there's nothing to lose in sites (particularly those with fervent followings like an online game) offering them," he told El Reg. "The cost of ongoing DDoS attacks is likely to outweigh the money they may have to pay out if anyone is ever convicted." ®

Combat fraud and increase customer satisfaction

More from The Register

next story
WTF happened to Pac-Man?
In his thirties and still afraid of ghosts
Reg man builds smart home rig, gains SUPREME CONTROL of DOMAIN – Pics
LightwaveRF and Arduino: Bright ideas for dim DIYers
Leaked pics show EMBIGGENED iPhone 6 screen
Fat-fingered fanbois rejoice over Chinternet snaps
Microsoft signs Motorola to Android patent pact – no, not THAT Motorola
The part that Google never got will play ball with Redmond
Apple patent LOCKS drivers out of their OWN PHONES
I'm sorry Dave, I'm afraid I can't let you text that
Happy 25th birthday, Game Boy!
Monochrome handset ushered in modern mobile gaming era
Slip your finger in this ring and unlock your backdoor, phone, etc
Take a look at this new NFC jewellery – why, what were you thinking of?
Rounded corners? Pah! Amazon's '3D phone has eye-tracking tech'
Now THAT'S what we call a proper new feature
Zucker punched: Google gobbles Facebook-wooed Titan Aerospace
Up, up and away in my beautiful balloon flying broadband-bot
prev story

Whitepapers

Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.