Feeds

Articles about Attack Traffic

Network Cables Index Image

BIGGEST DDoS ATTACK IN HISTORY hammers Spamhaus

Anti-spam organisation Spamhaus has recovered from possibly the largest ‪DDoS‬ attack in history. A massive 300Gbps was thrown against Spamhaus' website but the anti-spam organisation was able to recover from the attack and get its core services back up and running. CloudFlare, the content delivery firm hired by Spamhaus last …
John Leyden, 27 Mar 2013
Popvote DDoS

'Most sophisticated DDoS' ever strikes Hong Kong democracy poll

One of the largest and most sophisticated distributed denial of service (DDOS) attacks has hit a controversial online democracy poll canvassing opinion on future Hong Kong elections. Over the weekend some 680,000 people cast votes in the unofficial poll that offered residents of special administrative region to highlight their …
Darren Pauli, 23 Jun 2014
The Register breaking news

Banks on the business end of DDoS attack surge - report

Financial firms were in the crosshairs of cyber-attackers during the first three months of 2012, while a threefold increase in DDoS attacks was recorded. DDoS mitigation biz Prolexic reports that the growth in the number of attacks against its clients in banking and insurance was accompanied by a 3,000 per cent increase in …
John Leyden, 12 Apr 2012
Collapsed house

MUM's WordPress recipe blog USED AS ZOMBIE in DDoS attacks

Tens of thousands of vulnerable WordPress sites have been co-opted into a server-based botnet being used to run DDoS attacks. More than 160,000 legitimate WordPress sites were abused to run a large HTTP-based (layer 7) distributed flood attack against a target, which called in cloud security firm Sucuri for help. Security …
John Leyden, 12 Mar 2014
Hacker baseball cap

Old JBoss vuln in the wild, needs patching

JBoss sysadmins need to get busy hardening their systems, with a rising number of attacks against the system, according to Imperva. The attacks are based on an exploit that was published back in October by Andrea Micalizzi. The exploit code gave remote attackers arbitrary code execution access to HP's PCM Plus and Application …
The Register breaking news

'Directory traversal' attack becomes premier hack tool

A lesser-known attack called directory traversal is the single most commonly used technique in real-world web application attacks. Directory traversal cropped up in 37 per cent of attacks, almost the same as cross-site scripting (36 per cent), and a fair bit ahead of SQL injection (23 per cent). Remote file inclusion figured …
John Leyden, 27 Jul 2011
Spam

SPAM supposedly spotted leaving the fridge

It's still silly season, it seems. Tell the world that a bunch of small business broadband routers have been compromised and recruited into botnets, and the world yawns. Add in a television or a multi-media centre, and there's a faint flicker of interest – perhaps a raised eyebrow, but not much more. Add in the word “ …

Taiwan bids to bolster security with free malware database

Taiwan’s National Centre for High-Performance Computing (NCHC) has launched what it claims to be the world’s first free malware database designed to help businesses, academics and researchers better identify and defend against criminally-coded attacks. The centre, one of the 11 which comprise Taiwan’s National Applied Research …
Phil Muncaster, 02 Sep 2013

Indonesia becomes MOST DANGEROUS place on the internet

Indonesia has had the dubious honour of supplanting China as the number one source of attack traffic globally in the second quarter, according to the latest stats from content delivery and security firm Akamai. The vendor’s State of the Internet report for Q2 found Indonesia accounted for 38 per cent of the world’s attack …
Phil Muncaster, 17 Oct 2013
channel

Old Windows exploits dominate hack attack traffic

China and US are the leading sources of hacking attacks, which are overwhelmingly targeted against Windows systems. According to a new study by content distribution firm Akamai the two countries accounted for 30 per cent of attack traffic during the first quarter of 2008. Around 17 per cent of denial of service and exploit …
John Leyden, 30 May 2008
Carna botnet

US remains global sluggard in broadband speed rankings

Akamai's latest State or the Internet report shows that the US is making little headway in becoming a top-ranked broadband nation, and is being outpaced by Asia and Europe based on traffic analysis from the first quarter of the year. The US ranked ninth in average measured connection speed which, while a 27 per cent increase, …
Iain Thomson, 24 Jul 2013
The Register breaking news

CISPA row: Slurped citizen data is ENORMO HACK TARGET - infosec boss

The ability to identify common patterns in real-world attacks makes crowd-sourcing threat intelligence extremely useful, according to a study from security tools firm Imperva. The report arrives just as a privacy row rages over the new Cyber Intelligence Sharing and Protection Act (CISPA) law in the US. But the head of the …
John Leyden, 23 Apr 2013
The Register breaking news

Auction for failed games developer hit by DDoS attack

Realtime Worlds' liquidation auction was blitzed off the web on Friday, following an attack on the website of auctioneers Sweeney Kincaid. The online auction of kit from the failed games developer was first postponed by four hours, but after more denial of service attacks, it was eventually moved offline. The auctioneers, …
John Leyden, 15 Nov 2010
The Register breaking news

Asia has fastest internet, launches most cyber-attacks

Not only is Asia home to the world's fastest internet connections, but it's also the source of the most internet attack traffic, according to new data from content delivery provider Akamai. The latest edition of the company's quarterly "State of the Internet" report once again crowns Hong Kong as home of the fastest broadband …
Neil McAllister, 24 Jan 2013

BIGGEST DDoS in history FAILS to slash interweb arteries

The massive 300Gbit-a-second DDoS attack against anti-spam non-profit Spamhaus this week didn't actually break the internet's backbone, contrary to many early reports. The largest distributed denial-of-service (DDoS) assault in history began on 18 March, and initially hit the Spamhaus website and CloudFlare, the networking biz …
John Leyden, 28 Mar 2013
The Register breaking news

Hackers warn: We'll hit US banks... again

Hackers who claimed responsibility for a series of denial of service attacks against US banks in September have warned the US they plan to renew their assault shortly. The Izz ad-Din al-Qassam Cyber Fighters named US Bancorp, JP Morgan Chase, Bank of America, PNC Financial Services Group and SunTrust as possible attack targets …
John Leyden, 17 Dec 2012
The Register breaking news

US gov blames Iran for cyberattacks on American banks

Denial-of-service attacks against US banks' web systems were the work of Iran rather than Islamic activists, says a former American government official. A group called the Izz ad-Din al-Qassam Cyber Fighters claimed responsibility for two waves of cyber-attacks against US banks including US Bancorp, Bank of America, Citigroup, …
John Leyden, 09 Jan 2013
The Register breaking news

Anonymous cell: Shove off, credit-hoggers, WE took down HSBC

An Anonymous-affiliated group has claimed responsibility for attacks that left HSBC websites worldwide knocked offline on Thursday night. UK-based Fawkes Security claimed responsibility for the digital sit-in via a post to Pastebin. As some of you may be aware HSBC bank suffered several DDoS attacks on the named sites in the …
John Leyden, 19 Oct 2012

BT: Olympics cyber attackers were amateurs

Twelve year old hacktivists and journalists with infected laptops were the biggest info security threats to the London 2012 Games - an event which in the end was notable for the absence of a major cyber attack, BT has revealed. The telco giant was in charge of supporting the official London2012.com site and the huge IP …
Phil Muncaster, 21 Nov 2012
The Register breaking news

One in seven North American home networks full of malware

One in seven home networks in North America are infected with malware, a recent study has revealed. Half the threats detected during Q3 2012 were made up of spam-spewing zombies or banking Trojans while the remainder were mostly adware and other lesser threats, according to a study by Kindsight Security Labs. The study was based …
John Leyden, 02 Nov 2012
Flag China

Chinese hackers call off CNN attack

Chinese hackers have postponed a planned attack on CNN.com. The assault was planned as a response to criticism of China in the Western media that has accompanied the Olympic Torch procession. Chinese policy in Tibet, as well as the nation's poor human rights record, has come under the spotlight as Western activists have …
John Leyden, 21 Apr 2008
balaclava_thief_burglar

Gaping network port with easy-to-guess password? You ARE the 79%

High-profile, sophisticated hackers stealing industrial secrets tend to hog the headlines but opportunistic hackers searching for routine vulnerabilities can create a world of hurt for victims, often small businesses. Verizon’s Data Breach Investigations Report found that 79 per cent of attacks during 2011 were classified as ‘ …
John Leyden, 24 Oct 2012
channel

Spamhaus repels DDoS attack

Spamhaus, the leading anti-spam organisation, has restored its site and services to normal after a distributed denial of service attack rendered its site temporarily inaccessible for several hours on Monday. The attack, launched from a botnet of compromised Windows PCs, witnessed a huge surge in spurious traffic to Spamhaus's …
John Leyden, 18 Sep 2006
The Register breaking news

Move over cybercrims, DDoS now protesters' weapon of choice

Ideological hacktivism has replaced cybercrime as the main motivatation behind DDoS attacks, according to a study by Arbor Networks. Up until last year, DDoS attacks were typically financially driven – either for reasons of competition or outright extortion – but the activities of Anonymous and related groups have changed that. …
John Leyden, 08 Feb 2012
The Register breaking news

Krebs nabs ‘RSA attack’ list

When RSA’s network security was breached earlier this year, the result wasn’t only the replacement of its SecurID tokens all over the world. At the time, specialists believed that similar techniques could have been deployed against other victims who mostly didn’t go public. Only a handful of stories confirmed the use of …
The Register breaking news

Telstra Int in anti-DDoS crusade

Telstra has unveiled a global DDoS protection service for its international clients. The new service is being rolled out by Telstra International to provide added cloud based protection to multinational customers’ internet-facing infrastructure against a wide range of DDoS attacks. “DDoS attacks have increased tenfold since …
The Register breaking news

Wordpress traces 2nd DDoS assault to China

Blogging service WordPress suffered a further series of denial of service assaults on Friday, days after recovering from a particularly debilitating attack. WordPress.com, which serves 18 million sites, traced the vast majority of the attack traffic of the latest assault back to China. Analysis pointed to a Chinese language site …
John Leyden, 07 Mar 2011
graph up

Blue Security offloads DoS attack onto blogs

A denial of service attack against Blue Security, distributors of a controversial anti-spam system, has taken the firm's site offline. Mistakes in the firm's response to the attack are been linked to a traffic flood that took numerous blogs offline too. Blue Security has established a ‘Do Not Intrude Registry’ (akin to the Do …
John Leyden, 04 May 2006
The Register breaking news

UK.gov braces for possible Wikileaks hacklash

UK government websites are bracing themselves for an attack from Anonymous. Failure to grant Julian Assange bail at a hearing due to take place on Tuesday could be enough to push pro-Wikileaks activists – who have already attacked Mastercard, Amazon, PayPal and Swedish prosecutors – into an assault on UK government systems. Sir …
John Leyden, 14 Dec 2010
The Register breaking news

Boffins devise 'cyberweapon' to take down internet

University Boffins say they've devised a way to take down the internet by turning core parts of its routing protocol against itself. The attack, which was presented last week at the Network and Distributed System Security Symposium in San Diego, California, attacks functionality in the BGP, or Border Gateway Protocol. The …
Dan Goodin, 14 Feb 2011
The Register breaking news

Botnets fuel internet DDoS insurgency

Distributed denial of service attacks topped 100Gbps for the first time last year, during which attempts to flood websites with junk traffic went mainstream. Major incidents in 2010 included DDoS attacks associated with pro- and anti-WikiLeaks hackers and militias as well as hacking attacks linked to political turmoil in Burma …
John Leyden, 02 Feb 2011
The Register breaking news

Spamhaus DDoS blamed on shady Russian hosts, not Anonymous

Anti-spam organisation Spamhaus has recovered from a denial of service attack over the weekend. Initially though, Spamhaus may have been attacked in response to its warning that a WikiLeaks mirror called WikiLeaks.info was being hosted by a Russian bullet-proof hosting outfit, called Webalta, that also played home to phishing, …
John Leyden, 20 Dec 2010
The Register breaking news

Doomjuice variant ups the ante in MS attack

A new version of the Doomjuice worm has been released into the wild in an apparent effort by hackers to modify an attack against Microsoft's Web site. Doomjuice-B attacks www.microsoft.com, much like its predecessor Doomjuice-A, but now it sets random HTTP headers to make it more difficult to filter out the attack traffic. Its …
John Leyden, 11 Feb 2004
The Register breaking news

BNP DDoS 'mega-assault' not actually mega in the least

A supposedly massive denial of service attack against the British National Party website has been exposed as a gross exaggeration. The assault, which began on Friday, was described by the party in an email appeal for funds as the "largest cyber attack in recorded history" and comparable only to a 2001 assault against Microsoft …
John Leyden, 27 May 2009
The Register breaking news

Twitter hack spawns spam and scareware scams

Spam and scams have continued to flow from the fallout of last week's DDoS against Twitter. The attack, which took the micro-blogging service offline for around two hours on Thursday, and reduced service levels for a much longer time afterwards, (see here and here), also affected Facebook, LiveJournal and other sites. The …
John Leyden, 10 Aug 2009
The Register breaking news

Targeted attacks to add to ISP woes

Hacking attacks are growing more sophisticated and more prevalent, with hard-pressed ISPs facing a wider range of threats. The large-brute force denial of service attacks of yesteryear have been joined by service-level and application-targeted attacks, DNS poisoning and route hijacking assaults that are more difficult to deal …
John Leyden, 11 Nov 2008
The Register breaking news

Pirate Bay clampdown prompted file sharing site spike

Attempts to shut down notorious torrent tracker site The Pirate Bay have spurred a four-fold increase in the number of file sharing websites during the third quarter of 2009. At least some of these sites are primarily designed to distribute scareware and other types of malware rather than pirated content. Net security firm …
John Leyden, 02 Nov 2009
The Register breaking news

Most security products not up to scratch

Only four per cent (one in 25) information security products pass muster when first tested under a widely-used industry kitemark scheme. Most products require two or more cycles of testing before achieving certification, according to security testing outfit ICSA Labs. ICSA Labs, which has tested anti-virus and firewall products …
John Leyden, 17 Nov 2009
The Register breaking news

Verisign moves DNS root servers in defensive ploy

Key Internet Domain Name System (DNS) servers have been relocated to improve Internet security and stability in the wake of a recent, serious distributed denial of service attack. Verisign, which manages two root DNS servers, moved one to a different locations, connected to different parts of its network earlier this week. It …
John Leyden, 21 Nov 2002
globalisation

VeriSign builds out DNS security defences

VeriSign is pushing ahead with plans to make the internet's Domain Name System (DNS) more resilient to internet attacks. But although it will make its upgraded server infrastructure IPv6 and DNSSec ready, the net infrastructure giant reckons the touted performance improvements promised by the protocols have been delivered by …
John Leyden, 18 Jun 2008
The Register breaking news

Universities warned of Storm Worm attacks

Colleges and universities have come under attack by Storm Worm botnets following attempts to detect infections through vulnerability scanning, a response centre for academic networks stated last week. The Research and Education Networking Information Sharing and Analysis Centre (REN-ISAC) sent out the warning last Thursday …
Robert Lemos, 17 Aug 2007
server room

Windows worms tax ISPs

Computer worms will cost European ISPs an estimated €123m this year, according to a study by Sandvine. The Net traffic management firm says its study shows attacks on European service providers are now a daily occurrence. Although worms are usually associated with attacks on corporate networks, the malicious traffic also ties …
John Leyden, 27 May 2004
The Register breaking news

Scottish ISP floored as DDoS attacks escalate

Most of the customers of Edinburgh business ISP edNET were left without Internet services yesterday after it experienced a serious distributed denial of service (DDoS) attack. edNET began to experience what it described in an email to users as a "catastrophic network failure" at around 8am yesterday. This resulted in most of …
John Leyden, 09 Apr 2002

Cisco beefs up IOS security

Cisco Systems has launched a range of products to ward off security threats. An upgrade to Cisco core IOS Software (Release.12.3T) should make networks more resilient to malicious attacks. New features include the ability to more easily segment networks into trusted zones. Also, it is now easier to identify the source of DDoS …
John Leyden, 10 Mar 2004