web analytics

Event Masters Ltd, Soar-on-Line and Praetorian Legal – Mrs Denise Sheasby and Mr Gary Smith have been identified as being mixed up in illegal Dos and DDos Attack against a law firm, a Timeshare Consumer Forum and a Consumer Association.

 

Links addresses are marked in Blue Check for yourself

 

 

The website tesslimited.co.uk is owned by ‘Tess Paralegal Service Limited’ [TESS], is hosted by Freeola and since the 2nd of June, the website has had the benefit of WP Cerber Security a Cerber Security & Anti-Spam download which defends WordPress websites against hacker attacks, spam, and malware.

The purpose of the download was – in May 2019 the TESS website became slow and corrupted and in part non-accessible and for reasons unknown. Due to these issues, TESS contacted an expert, arranged an inspection of the website and when inspected, they installed the malware repellent.

When uploaded to the website management system, it detected – the website was under a Distributed Denial of Service [DDOS] attack, as the website was being flooded with Spam and was causing website management problems.

The term DDoS (distributed attack) is a type of DoS (a single system attack). When a DDoS occurs, multiple compromised systems target alone recipient (in this case TESS). DDoS attacks can be mounted by a hidden hacker who distributes the attack to hundreds of thousands of innocent people whose computers are infected with trojans.

This is a crime as, in a DDoS attack, the incoming traffic floods the victim (TESS) with traffic whilst the criminal hide behind a cloaking device. This effectively makes it impossible to stop the attack or identify the true attacker. Moreover, it is also very difficult to distinguish legitimate user traffic from attack traffic when spread across so many points of origin.

A Denial of Service (DoS) attack is different from a DDoS attack as the DoS typically uses one computer and one Internet connection to flood a targeted system or resource. The DDoS attack uses multiple computers and Internet connections to flood the targeted resource. DDoS attacks are often global attacks, distributed via botnets.

Computer Misuse Act 1990 (CMA)

In the U.K, law has been passed that makes it a criminal offence to launch denial-of-service attacks, which are contained amongst the provisions of the Police and Justice Bill 2006. In a clause, the Act makes it an offence to impair the operation of any computer system.

Other clauses prohibit preventing or hindering access to a program or data held on a computer or impairing the operation of any program or data held on a computer.

The maximum penalty for such cyber crimes has also been increased from 5 years to 10 years.

Because the DDOS attack is a violent programme, it stops frequently, requires rebooting to re-establish the attack. When performing the rebooting, the attacker must perform a sequence of tasks explained by the attack program. That attack programme, in this case, was a High Orbit Ion Cannon System which is generally operated by experts. If you get the sequence wrong, you could inadvertently expose your own I.P address to a target website if monitoring systems are in place. At 2.29 pm on the 5th of December, the attacker made the fatal mistake of mismanaging the sequencing and did expose their I.P address and this exposure was picked up by TESS’s WP Cerber Security systems.

The logs recorded that the hacker was operating from IP address: 176.35.192.203 and further recorded the DDoS attack change to a DoS attack at 2.29 pm on the 5th of December and ended the same date at 2.33 pm (4 minutes) after which the DDoS attack recommenced.

The 4-minute DoS attack consisted of 1,120 attacks (Event master attack 1) or 4.66 per second and the decloaked I.P. 176.35.192.203 identified the unlawful attacker as being office.eventmasters.co.uk.

When exposed they were trying to hack into the TESS website PHP codes and if achieved, they would then cause mischief in the management system. When the attacker realised their mistake, they reconfigured the DoS attack back to DDoS thus, recloaking themselves. They were praying TESS had not installed a surveillance system, however, we had and inspected it the next day the 6th of December.

Eventmasters Limited own the web address office.eventmasters.co.uk and are known by their Company number 03318973. Eventmasters Limited they are linked to Soar Enterprises Online Limited by way of common directorship Mrs Denise Sheasby. She is an internet expert and provides in Search Engine Optimisation [SEO] and internet marketing for clients. One of her main clients is Praetorian Legal and Mercantile Claims.

Blond lady smiling

If this is not enough, Mrs Denise Sheasby was caught out and exposed as the person who assisted Mr Gary Smith Praetorian Legal and Mercantile Claims in the application for the domain name trustedtimeshare.org which lied to members of the public and claimed to be an independent timeshare review site.

What has further been revealed is, the cyber-attack on TESS is also be conducted against timesharetalk.co.uk a consumer forum operated by the Timeshare Association.

Events Masters made the same mistake and like TESS, it too has recording systems detailing visitor logs. In this attack, the timeshare talk website has received 5,1665,787 attacks.

The Timeshare Talk website is templated on 2.1 simple machines has been monitored by Heart internet who have also recorded the 5.7 million logs on the 11,400 pages generated.

The same DDoS attack stopped, and the DoS attack commenced on the 5th of December 05, 2019, at 15 hrs:08 min:35 Sec. The total time the attack took place was 38 min 9 seconds. Noteworthy is, the attack on the TESS website started on the same day and between 2.29 pm and ended and 2.33 pm and like the TESS website, the DDoS attack stopped in the period of the DoS attack.

The logs recorded (Event master attack 2) and like TESS’s records, Event Masters were trying to get access PHP’s coding within the timeshare talk website.

The PHP  codes trying to be accessed are detailed below

Index.php

This is a file within the skeleton of the website. It contains templates and a mixture of website codes that deliver the features of the website and can modify the codes.

Template.php

This file contains the sub-themes functions required to manipulate default mark-up. It is one of the most useful files when creating or modifying themes. With this file you can do three things: Modify any theme hooks variables or add your own variables, using pre-processor process functions.

Subs.php

These files contain everything the website uses in simple machines.

Therefore, Event Masters and Mrs Denise Sheasby was interfering with contractual relations between TESS and Heart Internet Limited and were trying to deprive TESS the contracted service they paid for.

Unlawful interference with economic interests

In the above premises, the co-conspirators have unlawfully interfered with the Timeshare Talk Forum and tesslimited.co.uk by causing a DDoS and DoS attack which is regarded as malicious activities

Assisting in a conspiracy to injure

The purpose of the Agreement between TESS and Heart was for Heart Internet to provide a service. This was interfered with by the conspiracy which existed to cause damage to a lawful agreement. That damage was intended and to cause make inoperable or otherwise inaccessible the websites.

Perpetrating an unlawful means conspiracy

Both Mr Smith from Praetorian legal and Eventmasters intended to cause injury, conspired with each other, combined together and to cause damage by unlawful means.

 

Thank you for reading this TESS Law News article, to see more please visit our News section.


Posted on: 12th December 2019