Feeds

Everything you wanted to know about DDoS attacks

But Steve Gibson hadn't got around to finding out

  • alert
  • submit to reddit

5 things you didn’t know about cloud backup

Independent security expert Steve Gibson has posted his much-awaited analysis of the DDoS attacks launched against his grc.com site and it makes fascinating reading.

Steve was hit with two heavy denial-of-service attacks at the start of the month which made his site inaccessible to everyone. This is the start point in an extensive hunt and investigation for who had attacked him, why, how and was it possible to prevent it happening again.

Reading somewhat like a thriller or Raymond Chandler novel, Steve found that a 13-year-old boy calling himself Wicked and two others had been incensed with reports that Mr Gibson has called them script-kiddies on his site. As it happened, he didn't, but this was enough provocation for the DoS attack.

Despite Wicked's claims, Steve discovered that he had simply made small changes to an IRC bot - aka Zombie - which was present on a large number of innocent people's PCs. The program effectively gives a hacker complete control over someone's PC and works through IRC. Once the program is there, a hacker can update the program as and when they wish. Then, if the person is online, the PC can be used to fire hundreds of packets at chosen IP addresses - a denial-of-service attack.

Steve managed to get hold of a copy of the Zombie, which he used to infiltrate an IRC chat area where a number of hackers were discussing use of the Zombies and were writing different versions for one another. While there he has a fascinating conversation with a senior hacker that calls himself Boss.

On the way, Steve lambastes ISPs for paying little attention to their security and also ignoring his attempts to offer to put it right. He is also saddened by the current state of legal powers regarding such Internet attacks - FBI officers explaining that nothing can be done unless $5,000 worth of damage is caused and even then priority is given to criminals. Plus, since Wicked is only 13, he is exempt from prosecution.

He also gives a dire warning about Windows XP which we will cover very shortly in another story. In short it is a fantastic piece of investigative journalism and we strongly recommend a read. The piece ends with Steve promising to knock out a new piece of software that will ascertain how much effort ISPs are putting into protecting their customers PCs, in the hope of forcing them to pull up their socks.

The full text in on grc.com here. The article has already sparked a big discussion, going on as we speak. ®

Related Story

Leading security expert on the end of DDoS attacks

The essential guide to IT transformation

More from The Register

next story
One HUNDRED FAMOUS LADIES exposed NUDE online
Celebrity women victimised as Apple iCloud accounts reportedly popped
Rubbish WPS config sees WiFi router keys popped in seconds
Another day, another way in to your home router
Goog says patch⁵⁰ your Chrome
64-bit browser loads cat vids FIFTEEN PERCENT faster!
NZ Justice Minister scalped as hacker leaks emails
Grab your popcorn: Subterfuge and slur disrupts election run up
HP: NORKS' cyber spying efforts actually a credible cyberthreat
'Sophisticated' spies, DIY tech and a TROLL ARMY – report
NIST to sysadmins: clean up your SSH mess
Too many keys, too badly managed
Scratched PC-dispatch patch patched, hatched in batch rematch
Windows security update fixed after triggering blue screens (and screams) of death
Attack flogged through shiny-clicky social media buttons
66,000 users popped by malicious Flash fudging add-on
New Snowden leak: How NSA shared 850-billion-plus metadata records
'Federated search' spaffed info all over Five Eyes chums
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Endpoint data privacy in the cloud is easier than you think
Innovations in encryption and storage resolve issues of data privacy and key requirements for companies to look for in a solution.
Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?