They weren't DoS'ing the spammers. They were automating the complaint process so that if the companies advertised in the spam refused to honor remove requests (they were given 2 weeks after first spamming blue frog members), each member who got 1 spam would submit 1 complaint to the advertized website. This generally would NOT affect the site's performance, but would involve work for those companies to separate the complaints from normal customer contacts.

So? That's the normal cost of doing business in every other sphere of commerce. If you are pissing off your customers, you have to deal with their complaints. If you get a lot of complaints, that's not an "attack", it's a sign that maybe you shouldn't be wasting the time and resources of quite so many people who aren't interested.

Are you seriously saying I don't have the right to submit 1 complaint for 1 spam? It's not only legal (and no spammer obeying the LAW would ever get one of these!), it's my right as a consumer.

Blue Security's business model would have worked just fine if they hadn't been up against organized crime (not the greatest spot to be in...); the overwhelming criminal response to their success was endangering their client's businesses and quite possibly their lives.

Personally, I'm hoping a replacement project with government funding and full support from the FBI, Interpol, etc. can succeed where Blue Security's meagre resources could not.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11392/33837#33837