Dashboard Articles Playground Discussions More
Follow

Biggest DDoS attack ever?

Gninja
11 years ago

0

Hi, guys this is just a copy & paste but an interesting read:

Anti-spam group Spamhaus was hit by a wave of cyber attacks last month after trying to block internet traffic from CyberBunker, an organisation which provides websites for firms offering what it describes as anything except child porn and terrorism.

CyberBunker, which is based in a Cold War bunker in the Dutch countryside, has been accused of involvement in distributed denial-of-service (DDoS) attacks, where a site is overwhelmed with service requests often from hijacked computers to the point that it cannot deal with legitimate traffic.

Web performance company CloudFlare, which was called in to deal with the Spamhaus attack, has described it as the DDoS that almost broke the internet and says it may have made internet services sluggish, particularly in Europe.

A CloudFlare release on the attack reads: Over the last few days as these attacks have increased, weve seen congestion () primarily in Europe where most of the attacks were concentrated, that would have affected hundreds of millions of people even as they surfed sites unrelated to Spamhaus or CloudFlare.

Method of attack

And, while the extent of its fallout has been disputed, the method of attack could cause huge damage in the future.

Professor Alan Woodward, a visiting professor at Surrey University who has previously worked for the government, disagrees with claims that the onslaught managed to slow down the internet, but says it highlights a new method of DDoS which could result in chaos unless people wake up to the threat.

In the past, whats happened in a classic DDoS attack was lots of PCs sending simple requests to a web server until its too much to deal with its essentially an electronic sit-in, he says.

But this attack used a different technique, involving Domain Name System (DNS) severs which translate domain names into IP addresses essentially the phone book of the internet.

When we make a request to the DNS, it sends back up to 100 times what you sent it. The Spamhaus attack involved making requests to the DNS with a spoof user name.

The attack did cause some disruption, but it only used 30,000 DNS servers but there are 25m that could be subverted this way.

DDoS attacks have dealt blows to major banks including American Express in the past, but the new method could result in much bigger attacks.

Time to pay attention

Woodward wrote a BBC post on March 27, 2012 exactly one year before the internet-busting Spamhaus attack warning about the new attack method, and says people now need to pay attention.

He says: I got hate mail from people saying You dont know what youre talking about, but they need to pay attention to this now.

You can solve the problem by reconfiguring the servers, but the issue is nobody wants to be responsible for it. The government cant do anything, because they dont run the infrastructure.

A large-scale attack could deal a huge blow to businesses and services across the world. In one estimate made two years ago, cyber security specialist BAE Systems Detica said UK firms could lose 27bn from cybercrime and cyber espionage every year.

In an article about the recent attack, a Spamhaus representative writes: Core internet infrastructure may be overwhelmed by the amount of traffic involved in an attack.

When that happens, all traffic that passes through that part of the internet is impacted.

Grave threats

But Woodward warns there are much graver threats than those to business and internet services.

He says: The threat isnt just to UK PLC the threat to the national infrastructure is what concerns me most.

There are all these stories about countries planning to build nuclear weapons. But why would you bomb a country into submission, when you can just turn the lights off [using a cyber attack]?

The threat is quite widespread you even have videos on Youtube advertising DDoS attacks.

Harry Sverdlove, chief technology officer for global cyber security firm Bit9, says the Spamhaus case could lead to more advanced attacks of its kind.

He says: We are witnessing the largest DDoS attack in history. Today its that one company, but now that information is out there for everybody.

People with other motives are now going to be able to do that.

And cyber attacks are not likely to stop. While hacker groups such as Anonymous seem determined to keep going after their targets, disputes such as the one between Spamhaus and CyberBunker could keep flaring up leading to more friction and attacks.

And with CyberBunkers general manager Jordan Robson criticising Spamhaus for making childish claims about his organisations activities, this spat looks unlikely to die down. The results for business could be disastrous

WEBSITE LINK :) DDoS Attack.

 
![Image](/files/media/images/articles/0/0/up_bac59c3405ec8a1a28d6347c0b6ed62c.jpg)
2replies
3voices
191views
? [djsimon21]
11 years ago

0

Thanks for that very nice read for a Monday :)

 

When solving problems, dig at the roots instead of just hacking at the leaves.

DaGr8Kornolio
11 years ago

0

Make me remember this one….

October 21, 2002

On October 21, 2002 an attack lasting for approximately one hour was targeted at all 13 DNS root name servers.[1]

This was the second significant failure of the root nameservers. The first caused the failure of seven machines in April 1997 due to a technical problem.[2]

February 6, 2007

On February 6, 2007 an attack began at 10 AM UTC and lasted twenty-four hours. At least two of the root servers (G-ROOT and L-ROOT) reportedly “suffered badly” while two others (F-ROOT and M-ROOT) “experienced heavy traffic”. The latter two servers largely contained the damage by distributing requests to other root server instances with anycast addressing. ICANN published a formal analysis shortly after the event.[3]

Due to a lack of detail, speculation about the incident proliferated in the press until details were released.[4]

On February 8, 2007 it was announced by Network World that “if the United States found itself under a major cyberattack aimed at undermining the nation’s critical information infrastructure, the Department of Defense is prepared, based on the authority of the President, to launch an actual bombing of an attack source or a cyber counterattack.”[5]

Threats
Operation Global Blackout 2012

On February 12, 2012, a statement was posted on Pastebin cited to be from Anonymous, threatening an attack on the root servers on March 31, 2012.[6]

“To protest SOPA, Wallstreet, our irresponsible leaders and the beloved bankers who are starving the world for their own selfish needs out of sheer sadistic fun, On March 31, anonymous will shut the Internet down,” reads the statement. “Remember, this is a protest, we are not trying to kill' the Internet, we are only temporarily shutting it down where it hurts the mostIt may only last one hour, maybe more, maybe even a few days. No matter what, it will be global. It will be known.”

 

Just because I am paranoid doesnt mean theyre not after me…

![Image](/users/images/100/1:1/57b50e96d99557.11210619.png)
You must be logged in to reply to this discussion. Login
1 of 3

This site only uses cookies that are essential for the functionality of this website. Cookies are not used for tracking or marketing purposes.

By using our site, you acknowledge that you have read and understand our Privacy Policy, and Terms of Service.

Dismiss