Computer security experts assert that people who employ a tool to conduct DDoS attacks can be traced without efforts. Not long ago a range of attacks in support of WikiLeaks disrupted the work of many websites.

Numerous people have downloaded a tool called «Low Orbit Ion Cannon" and it bombarded the site with traffic to make it unavailable. This tool was provided by Anonymous, a group of online hackers that made attacks on the companies who did not support WikiLeaks after it published U.S. diplomatic cables at the end of November.

Though specialists from Holland, from the University of Twente in Enschede, Holland, state that it may be not hard for ISPs to recognize the use of the tool, as it doesn’t hide the users’ identity.

Low Orbit Ion Cannon comes in various versions: it can be downloaded or controlled remotely through Internet Relay Chat where it is configured manually. Another one is a website on JavaScript.

Using the client application, web resource, which is targeted, is able to see the Internet Protocol address of the attacking computer, as the experts say. This address can have connection with ISP offering the service, which is able to find out later the address of the subscriber. The same is possible when Web-based tool is used.

When attackers try to conceal the IP address is faked but Low Orbit Ion Cannon doesn’t have this feature. It is possible to coordinate DDoS attack with botnet, a computer network, which was compromised when the owner doesn’t know it. As a rule the computers may have the infection and participate in attack.

People expressed their disagreement with participation in the attack but they may not be aware that IP can be traced being not so tech-savvy. This is just about the same when they do it and write their home address.

Operators should keep data for half a year in the EU, so the fact that attack is over, by no means denotes that you can’t be found later.

2 teenagers were arrested in the Netherlands. They took part in the DDoS attacks.