RSS Alerts

Related Links

Related Stories

  • Twitter goes down under a sustained DDOS attack
    At around 3:00 pm on Thursday afternoon, Twitter, the extraordinarily popular microblogging portal, fell silent, apparently the victim of a sustained distributed denial of service (DDOS) attack.
  • Social networking - a risk to information security?
    As the popularity of social networking sites continues to mount, it becomes increasingly important to consider the information security risks posed in the context of a wider data loss prevention and reputation management strategy. Cath Everett reports
  • What’s in store for 2010?
    The Noughties are behind us now, but memories of a decade of data breaches will continue to haunt the infosec professional. If only there was a way of knowing what the threat landscape would look like in the months to come. Well you’re in luck as Davey Winder has dusted off the crystal ball and spoken to a broad church of infosec professionals to get some informed predictions for 2010
  • 'Jester' ex-military hacker takes the distributed out of DDOS attacks
    A politically-motivated hacker has apparently developed a multi-thread, thin-client denial of service attack application that effectively allows him to launch a distributed denial of service (DDOS) attack on a website from a single linux server.
  • The charmed life of cybercrime
    Crimes, scams, and various forms of nonsense are hardly inventions of the digital age. In fact, they are likely as old as human civilisation. Wendy M. Grossman examines why criminals are finding it easier to engage in cybercrime over more traditional forms of physical theft, and why law enforcement finds it difficult to prosecute the perpetrators

News

Twitter, Facebook still suffering from internet packet delays

10 August 2009

The hacker attack on Twitter on Thursday afternoon UK time - which appears to have also spilled over to the Facebook social networking site - is now thought to have been the work of political activists who wanted to stop a pro-Georgian blogger - Cyxymu - from making his/her postings on the sites.

Some sources have not ruled out Russian government involvement in the attacksn hitting Twitter and Facebook, which are thought to have been botnet-driven.

The BBC reported that, as well as Twitter and Facebook - other sites such as Google and Live Journal, the blogging portal, were also affected by the attacks, which dramatically slowed down internet access to the sites.

Cyxymu - real name Georgy - is reported by the BBC to have posted videos and blogs which criticise Russia over its conduct in the war over the South Ossetia region, which began one year ago on his blog, Twitter and Facebook accounts.

"It's a big surprise to me that my blog has meant that 250m people have not been able to enter Facebook," he told the BBC.

The blogger said he first noticed that things were not right when he realised his Live Journal page was not working.

"After, I entered Facebook to say Live Journal was not working and Facebook was down," he told BBC News.

"So I entered Twitter to say that Live Journal and Facebook were not working, and Twitter was down."

"And so I understood that it was under attack. It is not possible that these three services were all down at one time."

He told the BBC that he still did not have access to his blog or profile pages on any of the services. However, he said, he had set up a new blog to continue his writings.

Arbor Networks, meanwhile, said it was able to use its Internet Observatory to revealed that 55 ISPs in the Internet Observatory were exchanging roughly 200 Mbps with Twitter before the DDOS attack started.

Traffic then dropped to a low of 60 Mbps around 10:40am Eastern Time (3:40pm UK time) on Thursday and began climbing after that.

As of 6pm UK time Thursday, the internet monitoring company said that Twitter traffic was still down by 50% for the time of day at 150 Mbps.

From DNS, said Arbor, it looks like Twitter has moved some of their infrastructure to different address blocks as of 7pm UK time last Thursday.

Steve Gold, Infosecurity's technical editor, said that the effects on Twitter were more pronounced, as many users make use of overlay applications such as Tweetdeck to access their Twitter accounts.

"This means that if the Twitter servers take too long to respond to a software-driven comment, the overlay software times out and reports a problem, often suggesting the user tries again", he said.

"This only serves to make the problem worse, as Twitter's servers are still waiting to respond to the original data request, and then additional data interactions start stacking up", he added.

The net effect of this, he said, is that, whilst users of the Twitter site have been able to access the service with severe delays, users of overlay software like Tweetdeck have seen their service apparently frozen.

This, he went on to say, is what may be the reason for users reporting continuing difficulties in accessing Twitter over the weekend, even after the major effects of the DDOS attack have subsided. 

 

This article is featured in:
Application Security Internet and Network Security

 

Comments

TheBananaMan says:

11 August 2009
Hey,

Recently I started a company and was looking for ways to secure it so that I would not have issues with Hackers. Writing good code and having the proper programs can help but people can still find the wholes, create a better system and they will create a better hack. I recently came across a service that stops hackers called XyberShield. I use it as well as my other security programs but I have been very impressed with how it runs. If people are interested in security you have to check out their website www.xybershield.com. For once it seems that the security world has a head start.

Thanks,

BananaMan

Note: The majority of comments posted are created by members of the public. The views expressed are theirs and unless specifically stated are not those Elsevier Ltd. We are not responsible for any content posted by members of the public or content of any third party sites that are accessible through this site. Any links to third party websites from this website do not amount to any endorsement of that site by the Elsevier Ltd and any use of that site by you is at your own risk. For further information, please refer to our Terms & Conditions.

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water