China I could believe, but North Korea? I'd be surprised if they had the capability to do this.
http://www.msnbc.msn.com/id/31789294/ns/technology_and_science-security/
Quote
North Korea blamed for 'massive' cyber attacks
Officials eye link after assault took down U.S., S. Korean government sites
msnbc.com staff and news service reports
updated 1 hour, 37 minutes ago
SEOUL, South Korea - South Korean intelligence officials believe North Korea or pro-Pyongyang forces committed cyber attacks that paralyzed major South Korean and U.S. government Web sites, aides to two lawmakers said Wednesday.
The sites of 11 South Korean organizations, including the presidential Blue House and the Defense Ministry, went down or had access problems since late Tuesday, according to the state-run Korea Information Security Agency. Agency spokeswoman Ahn Jeong-eun said 11 U.S. sites suffered similar problems. She said the agency is investigating the case with police and prosecutors.
In the United States, the Treasury Department, Secret Service, Federal Trade Commission and Transportation Department Web sites were all down at varying points over the July 4 holiday weekend and into this week, according to American officials inside and outside the government.
Denial of service attack
Others familiar with the U.S. outage, which is called a denial of service attack, said that the fact that the government Web sites were still being affected three days after it began signaled an unusually lengthy and sophisticated attack. The officials spoke to The Associated Press on condition of anonymity because they were not authorized to speak on the matter.
"It certainly seems to be a well-organized attack," an anonymous government official told The Washington Post. "There are a lot of computers involved. What we don't know is who is orchestrating it."
The Korea Information Security Agency also attributed the attacks to denial of service.
Yang Moo-jin, a professor at Seoul's University of North Korean Studies, said he doubts whether the impoverished North has the capability to knock down the Web sites.
But Hong Hyun-ik, an analyst at the Sejong Institute think tank, said the attack could have been done by either North Korea or China, saying he "heard North Korea has been working hard to hack into" South Korean networks.
Denial of service attacks against Web sites are not uncommon, and are usually caused when sites are deluged with Internet traffic so as to effectively take them off-line. Mounting such an attack can be relatively easy using widely available hacking programs, and they can be made far more serious if hackers infect and use thousands of computers tied together into "botnets."
For instance, last summer, in the weeks leading up to the war between Russia and Georgia, Georgian government and corporate Web sites began to see "denial of service" attacks. The Kremlin denied involvement, but a group of independent Western computer experts traced domain names and Web site registration data to conclude that the Russian security and military intelligence agencies were involved.
N. Korean sympathizers behind attacks?
On Wednesday, the National Intelligence Service told a group of South Korean lawmakers it believes that North Korea or North Korean sympathizers "were behind" the attacks, according to an aide to one of lawmakers who was briefed on the information.
An aide to another lawmaker who was briefed also said the NIS suspects North Korea or its followers were responsible.
The aides spoke to The AP on condition of anonymity and refused to allow the names of the lawmakers they work for to be published, citing the classified nature of the information.
Both aides told The AP that the information was delivered in writing to lawmakers who serve on the National Assembly's intelligence committee.
The National Intelligence Service — South Korea's main spy agency — declined to confirm the information.
'Massive outage'
Ben Rushlo, director of Internet technologies at Keynote Systems, called it a "massive outage" and said problems with the Transportation Department site began Saturday and continued until Monday, while the FTC site was down Sunday and Monday.
Keynote Systems is a mobile and Web site monitoring company based in San Mateo, Calif. The company publishes data detailing outages on Web sites, including 40 government sites it watches.
According to Rushlo, the Transportation Web site was "100 percent down" for two days, so that no Internet users could get through to it. The FTC site, meanwhile, started to come back online late Sunday, but even on Tuesday Internet users still were unable to get to the site 70 percent of the time.
"This is very strange. You don't see this," he said. "Having something 100 percent down for a 24-hour-plus period is a pretty significant event."
He added that, "The fact that it lasted for so long and that it was so significant in its ability to bring the site down says something about the site's ability to fend off (an attack) or about the severity of the attack."
South Korea's Yonhap news agency said military intelligence officers were looking at the possibility that the attack may have been committed by North Korean hackers and pro-North Korea forces in South Korea. South Korea's Defense Ministry said it could not confirm the report.
According to The Washington Post, Joe Stewart, the director of malware research at Atlanta based SecureWorks, said the attack software contained few clues about its origins, although a line of text deep in within the malware carried the cryptic message "get/china/dns."
Earlier Wednesday, South Korea's NIS said in a statement that 12,000 computers in South Korea and 8,000 computers overseas had been infected and used for the cyber attack.
The agency said it believed the attack was "thoroughly" prepared and committed by hackers "at the level of a certain organization or state." It said it was cooperating with the American investigators to examine the case.
South Korean media reported in May that North Korea was running a cyber warfare unit that tries to hack into U.S. and South Korean military networks to gather confidential information and disrupt service.
An initial investigation in South Korea found that many personal computers were infected with a virus program ordering them to visit major official Web sites in South Korea and the United States at the same time, Korean information agency official Shin Hwa-su said. There has been no immediate reports of similar cyber attack in other Asian countries.
Yonhap said that prosecutors have found some of the cyber attacks on the South Korean sites were accessed from overseas. Yonhap, citing an unnamed prosecution official, said the cyber attack used a method common to Chinese hackers.
Prosecutors were not immediately available for comment.
Shin, the Information Security Agency official, said the initial probe had not yet uncovered evidence about where the cyber outages originated. Police also said they had not discovered where the outages originated. Police officer Jeong Seok-hwa said that could take several days.
Some of the South Korean sites remained unstable or inaccessible Wednesday. The site of the presidential Blue House could be accessed, but those for the Defense Ministry, the ruling Grand National Party and the National Assembly could not.
Ahn said there were no immediate reports of financial damage or leaking of confidential national information. The alleged attacks appeared aimed only at paralyzing Web sites, she said.
South Korea's Defense Ministry and Blue House said that there has been no leak of any documents.
Difficult to document
Documenting cyber attacks against government sites is difficult, and depends heavily on how agencies characterize an incident and how successful or damaging it is.
Government officials routinely say their computers are probed millions of times a day, with many of those being scans that don't trigger any problems. In a June report, the congressional Government Accountability Office said federal agencies reported more than 16,000 threats or incidents last year, roughly three times the amount in 2007. Most of those involved unauthorized access to the system, violations of computer use policies or investigations into potentially harmful incidents.
The Homeland Security Department, meanwhile, says there were 5,499 known breaches of U.S. government computers in 2008, up from 3,928 the previous year, and just 2,172 in 2006.
The Associated Press and msnbc.com staff contributed to this story
Beat you to it.
The paranoid, self contained slave labor state, ruled by leaders with a Furher bunker mentality, strikes again! <_<
Quote from: Razgovory on July 08, 2009, 09:41:03 AM
Beat you to it.
You can hardly blame me for not seeing it tucked away there.
I predict no punitive actions will be taken lest they resume missile tests.
Why are there no highlights in the opening post?
How do I know what to read?
Quote from: Siege on July 08, 2009, 10:26:45 AM
Why are there no highlights in the opening post?
How do I know what to read?
Read the article, you ignorant slob.
Quote from: Siege on July 08, 2009, 10:26:45 AM
Why are there no highlights in the opening post?
How do I know what to read?
:lol:
Just read the headline then post some bullshit.
If Battle.net goes down North Korea is finished.
Quote from: Admiral Yi on July 08, 2009, 10:31:33 AM
Quote from: Siege on July 08, 2009, 10:26:45 AM
Why are there no highlights in the opening post?
How do I know what to read?
:lol:
Just read the headline then post some bullshit.
I don't want to fall in the Tim/MB cathegory.
Quote from: Siege on July 08, 2009, 02:08:34 PM
Quote from: Admiral Yi on July 08, 2009, 10:31:33 AM
Quote from: Siege on July 08, 2009, 10:26:45 AM
Why are there no highlights in the opening post?
How do I know what to read?
:lol:
Just read the headline then post some bullshit.
I don't want to fall in the Typical Languish User category.
Fixed that for you.
How the hell could the Norks have orchestrated a DDoS attack with old 386s? ;)
Quote from: Admiral Yi on July 08, 2009, 10:31:33 AM
Quote from: Siege on July 08, 2009, 10:26:45 AM
Why are there no highlights in the opening post?
How do I know what to read?
:lol:
Just read the headline then post some bullshit.
:D
Quote from: DontSayBanana on July 08, 2009, 04:06:23 PM
How the hell could the Norks have orchestrated a DDoS attack with old 386s? ;)
Probably easier than a new Windows box.
Quote from: DontSayBanana on July 08, 2009, 04:06:23 PM
How the hell could the Norks have orchestrated a DDoS attack with old 386s? ;)
I thought they were still using Commodore 64s...
Quote from: Vince on July 08, 2009, 06:51:39 PM
Quote from: DontSayBanana on July 08, 2009, 04:06:23 PM
How the hell could the Norks have orchestrated a DDoS attack with old 386s? ;)
I thought they were still using Commodore 64s...
Negative. North Korea has just developed punch-card technology. US internet security is so poor that the Punch Card of Doom is the ultimate weapon.
I got a lot more "Get a bigger cock" spam lately. I blame the Commie bastards. :huh:
Maybe word of your inferior size got out and friends are trying to help you.
Quote from: Josephus on July 08, 2009, 07:03:34 PM
I got a lot more "Get a bigger cock" spam lately. I blame the Commie bastards. :huh:
:huh:
There are people who sympathize with North Korea?
Me not understand.
Quote from: Habsburg on July 08, 2009, 08:29:34 PM
:huh:
There are people who sympathize with North Korea?
Me not understand.
Hatred of America runs strong.
Lots of people root for the put upon underdog. THe Koreans would be unified if it werne't for the United States' primitive attempts at nation building.
Quote from: Habsburg on July 08, 2009, 08:29:34 PM
:huh:
There are people who sympathize with North Korea?
Me not understand.
Quote from: Darth Wagtaros on July 08, 2009, 08:32:44 PM
Lots of people root for the put upon underdog. THe Koreans would be unified if it werne't for the United States' primitive attempts at nation building.Quote from: Habsburg on July 08, 2009, 08:29:34 PM
:huh:
There are people who sympathize with North Korea?
Me not understand.
Primitive? South Korea's a well functioning democracy with a 1st world economy. :contract:
Quote from: jimmy olsen on July 08, 2009, 08:34:48 PM
Quote from: Darth Wagtaros on July 08, 2009, 08:32:44 PM
Lots of people root for the put upon underdog. THe Koreans would be unified if it werne't for the United States' primitive attempts at nation building.Quote from: Habsburg on July 08, 2009, 08:29:34 PM
:huh:
There are people who sympathize with North Korea?
Me not understand.
Primitive? South Korea's a well functioning democracy with a 1st world economy. :contract:
Despite the best efforts of US imperialism. If whatsisface, that Swede who got stabbed in Indonesia was here, he'd explain it better.
Quote from: Darth Wagtaros on July 08, 2009, 08:42:59 PM
Despite the best efforts of US imperialism. If whatsisface, that Swede who got stabbed in Indonesia was here, he'd explain it better.
You mean btrollson? Yeah, he's walking proof that the pro-US Hansies of the world aren't the only successful spin doctors.
Quote from: DontSayBanana on July 08, 2009, 08:47:09 PM
Quote from: Darth Wagtaros on July 08, 2009, 08:42:59 PM
Despite the best efforts of US imperialism. If whatsisface, that Swede who got stabbed in Indonesia was here, he'd explain it better.
You mean btrollson? Yeah, he's walking proof that the pro-US Hansies of the world aren't the only successful spin doctors.
Unless he's dead.
Quote from: Neil on July 08, 2009, 08:32:19 PM
Quote from: Habsburg on July 08, 2009, 08:29:34 PM
:huh:
There are people who sympathize with North Korea?
Me not understand.
Hatred of America runs strong.
My inner carebear weaps. :weep:
I'd have to agree with Tim here. Rather WTF for N.Korea to be pulling this sort of thing. To get a core of government computer hackers you need a population of computer/internet geeks to draw from. N.Korea certainly doesn't have this... That they could train some of their standard spooks to be hackers is very odd.
Quote from: Darth Wagtaros on July 08, 2009, 08:42:59 PM
Despite the best efforts of US imperialism. If whatsisface, that Swede who got stabbed in Indonesia was here, he'd explain it better.
No no that was DUE to the best efforts of US Imperialism. USA! USA! USA!
They don't seem to be letting up.
QuoteCyber attacks on S. Korea set to enter new phase
SEOUL, July 10 (Yonhap) -- South Korea came under cyber attacks for a third consecutive day between Thursday evening and early Friday morning and the unprecedented hacking incident is set to enter a new phase as tens of thousands of virus-contaminated personal computers appear automatically programmed to destroy their own stored data starting Friday, government and industry officials warned.
The Korea Communications Commission (KCC) said it has been notified by computer vaccine company Ahn Lab that the so-called "distributed denial-of-service" (DDoS) virus, which is responsible for initiating the ongoing cyberspace war in South Korea, was set to destroy at least 20,000 contaminated PCs across the nation.
DDoS attacks refer to a situation in which a multitude of infected computers attack a single target, thereby causing denial of service for legitimate users of the compromised site.
In a related development, government agencies and private network security firms said they have identified and closed four overseas-based intermediate hosts suspected of participating in the latest wave of DDoS attacks on key South Korean Web sites this week.
The agencies and private firms also said they would continue to track down the virus contamination route amid suspicions that North Korea may be behind the recent wave of Web site outages.
On Thursday evening, at least seven Web sites operated by government and media organizations, including Kookmin Bank, the Ministry of Public Administration and Security's electronic government site, the mass-circulation Chosun Ilbo and leading portal Naver, reported access delays or failures starting around 6 p.m.
Several Seoul-based portal sites also reported that their mail services underwent temporary access disruptions, apparently due to the DDoS attack.
Kookmin Bank, a leading state-funded lender, said it was forced to shut down its Internet banking site for about 30 minutes until 6:30 p.m. after the site came under the DDoS attack from unidentified hackers.
"A third round of cyber attacks was begun Thursday evening, but the nation averted the crisis without much confusion thanks to sufficient advance preparations," said an official at the state-run Korea Information Security Agency. "The government will continue to work to minimize damage from the latest cyber attack through closer cooperation with relevant institutions and companies."
The KCC also briskly moved to contain damage to key government Web sites and asked the nation's key Internet service providers to restrict Internet access by personal computers contaminated by viruses.
Kim Hong-sun, chief executive of Ahn Lab, said it was difficult for now to forecast how long the cyber attack will persist.
"There is no clear information on the pattern and timing of further cyber attacks. It is difficult to precisely predict the outlook," said Kim.
Beginning Tuesday, the DDoS attacks overwhelmed major Web sites in South Korea and the United States, virtually taking them off-line. Unidentified hackers began their initial attacks at 6 p.m. Tuesday, blocking Internet users from accessing 26 Web sites, including the official site of South Korea's presidential office, Cheong Wa Dae, and 14 government and private Web sites in the U.S. The unidentified hackers staged their second cyber attack on Wednesday evening.
Are we sure this is North Korea? It could be the beginnings of Skynet. :ph34r:
This probably cost very little to set up. Cyber security being what it is even a mid level terrorist group could likely do some serious damage with a modest investment in equipment and talent.