DDoS Archive

Anita Sarkeesian wanted to make a web series about how women are portrayed in video games. She asked the world for $US6000. Some of the people who thought that was interesting and worth doing have given her just shy of $US159,000.

Some of the people who thought it was not worth doing have defaced her Wikipedia page, written vile things to her on YouTube and… well, that’s what she already told us about in mid-June. But, wait, there’s more, as Sarkeesian explains in a new post on the Feminist Frequency blog:

In addition to the aggressive actions against me that I’ve already shared, the harassers launched DDoS attacks on my site, attempted to hack into my email and other social media accounts and reported my Twitter and YouTube accounts as “terrorism”, “hate speech” or “spam”. They also attempted to “dox” and distribute my personal contact info including address and phone number on various websites and forums (including hate sites).

Tropes Vs Women: Video Games is the name of the project. It’ll be a video series. It hasn’t even been made yet. That hasn’t stopped the trolling. I guess I should quote the mission statement of Sarkeesian’s project, though that implies that there is some mission statement out there that she could have had that would have merited this reaction — and that the only reason this reaction is condemnatory is because Sarkeesian’s mission statement doesn’t seem to merit the attacks sent her way.

Here’s the beginning of her Tropes Vs. Women: Video Games mission statement, to the extent that it even matters:

I love playing video games but I’m regularly disappointed in the limited and limiting ways women are represented. This video project will explore, analyse and deconstruct some of the most common tropes and stereotypes of female characters in games. The series will highlight the larger recurring patterns and conventions used within the gaming industry rather than just focusing on the worst offenders. I’m going to need your help to make it happen!

World-ending stuff, huh?

It’s not always that easy to be a woman in the world of gaming, but this is ridiculous.

Sarkeesian writes: “After struggling with whether or not to make the extent of the attacks public I’ve decided that it’s ultimately important to shed light on this type of abuse because online harassment and bullying are at epidemic levels across the internet.”

Agreed. It’s absurd. There are far smarter and funnier ways to disagree.

Source: http://www.kotaku.com.au/2012/07/exposing-the-hate-one-woman-gets-for-examining-video-games/

Cybercriminal gangs wielding hoards of malware-infected zombie machines are primarily using them for massive spam campaigns aimed at pushing pharmaceuticals, herbal remedies and porn, but they are also often rented out for more nefarious purposes, say experts who monitor them.

Botnets can be used to conduct distributed denial-of-service attacks (DDoS), leveraging the power of infected systems to disrupt and wipe out websites. Botnets often spread malware, and are the main engine behind phishing campaigns or the fuel behind powerful clickjacking campaigns. What started as an amateur activity on Internet Relay Chat (IRC) networks — using the power of people connected to IRC to knock victims offline — quickly became a for-profit venture associated with cybercriminal fraud activities, said Joe Stewart, director of malware research at Dell SecureWorks. “Now we see you’ve got governments and hacktivists getting into the game for reasons that aren’t really just money related, Stewart said.”

Stewart and other security experts say many enterprises have zombie machines running on their networks without even realizing it. Rather than being aimed to disrupt systems, the malware is being remotely controlled to seek an enterprise’s most prized possession: intellectual property.

“They’re highly focused on companies and governments,” Stewart said. “Anything you can imagine that somebody might steal in the virtual world, somebody has a botnet that is probably doing it.”

Stewart and other security experts say many businesses are far too reliant on automated systems; big security appliances such as intrusion prevention and detection systems designed to monitor network traffic. They’re calling for enterprises to instead hire skilled IT security pros to proactively monitor those systems and investigate issues. The approach, they say, improves the security systems already deployed in most enterprises by addressing and isolating issues before they become a serious problem.

The good news is some of the malware associated with widely known botnets can be detected using most traditional security appliances and endpoint security software, including antivirus. But a much more serious threat is targeted attacks – particularly those hurled at enterprise employees – that use malware combined with techniques that are designed to evade detection. Once an endpoint machine is infected by stealthy malware, a Trojan embeds itself and then attempts to reach out to cybercriminals for orders. Enterprise network monitoring tools can detect the nefarious traffic and block some of it, but over the years, cybercriminals have become savvy at tunneling communications using strong encryption algorithms, timing communication drops for odd hours when systems aren’t being fully monitored or sending out tiny communication packets that assimilate with normal network traffic.

“You can hope your corporate antivirus [detects botnet infections] at the gateway or on the desktop, but we know from testing that those capabilities don’t have the highest rates of detection,” Stewart said. “If you move into the network realm you can pick up a lot of this activity because it doesn’t change its network fingerprint very often.”

Botnet size doesn’t matter
Stewart said the most powerful botnets are not necessarily the largest. The Flame malware toolkit for example, contained a botnet of less than 200 infected machines in Iran, yet it wielded a powerful arsenal for those behind it. The limited scope of the attack, believed to be a nation-state driven cyberespionage operation, enabled the botnet operators to stealthily eavesdrop on their victims, steal data and capture video for years.

By contrast, Stewart said larger botnets give cybercriminals the advantage of leveraging the computing power of infected computers to spread malware and other malicious activities. They can be used to amplify a denial-of-service attack to take down a website or quickly spread malware and steal account credentials.

The Zeus and SpyEye malware families make up massive botnets that have, for years, wreaked havoc on the financial industry. The botnets spread quickly due to the business model put in place by the cybercriminals behind the malware. Using automated attack toolkits, the cybercriminals set up an affiliate network, rewarding other cybercriminals for infecting machines. Zeus gained notoriety in 2006. The malware can be coded to spoof websites, steal account credentials and drain bank accounts. Security firms have tried to knock out portions of the botnets by disrupting the command-and-control servers associated with them, but despite those efforts, cybercriminals have built-in mechanisms to bring them back online. The most recent effort came from Microsoft, which used legal action to wipe out Zeus botnet servers in the United States.

Detection: The human factor
There is no technology better than a skilled IT pro assigned to look for anomalies on the corporate network, said Johannes Ullrich, chief research officer at the SANS Institute. Skilled system administrators should be inspecting network traffic and system logs, applying creative thought in the process of flagging potential problems for further investigation, Ullrich said.  Packet analyzers and other filtering tools can help network security pros determine if suspicious traffic is malicious in nature.

“A lot of enterprises still rely on old, signature-based antivirus,” Ullrich said. “Particularly with [targeted] attacks and these kinds of botnets it depends on individuals at this point.”

The trend at many enterprises has been to outsource network monitoring activities, but Ullrich said that in his experience, outsourced security monitoring usually fails at detecting the targeted attacks and botnet infections that matter the most. Outsourced services follow a checklist and process a specific number of requests per hour, Ullrich said, adding that outsourced services would be better if they played a role in assisting a system administrator to “find the next new thing versus yesterday’s bot.”

“They don’t really understand the business and that’s why some enterprises are going through the expensive process of bringing it back in-house,” he said.

Endpoint security combined with network-based security such as host intrusion prevention (HIPS) technology and other reputation and filtering systems can help mitigate malware infections, said Mike Rothman, analyst and president of Phoenix, Ariz.-based security research firm Securosis LLC.  The firm recently concluded its malware detection series that focused on why detection is so challenging. Network security appliances can provide context on application and user behavior, but it requires adjusting and tuning to avoid a serious impact to end users, Rothman said in a blog post describing the firm’s research series.  The same goes for Web filtering and reputation-based. “Find a balance that is sufficiently secure but not too disruptive, navigating the constraints of device ownership and control, and workable across device locations and network connectivity scenarios,” Rothman wrote.

Source: http://searchsecurity.techtarget.com/news/2240159014/Botnet-infections-in-the-enterprise-have-experts-advocating-less-automation

Recorded Futureis the first temporal analytics engine enabling web intelligence, pulling open source information from the Internet and indexing it for analysis by event type and time, thereby allowing users to tap into the predictive power of the web. Recorded Future has proven capabilities to forecast unrest  demonstrated in a previous webcast and used by U.S. Southern Command, as well as the ability to analyze intelligence stored on a private cloud as shown in its analysis of the the Osama Bin Laden letters. Recorded Future also has wider, more unconventional applications, however, with monitoring and forecasting cyber attacks among the most interesting use cases.

Much of current commentary on cybersecurity treats attacks like unstoppable, unknowable forces of nature yet in reality, many of the attacks driving up the statistics are automated adversaries scanning networks or spamming inboxes. The most dangerous and costly attacks outside of insider threats tend to be targeted and often politically motivated. In this regard, they resemble physical security threats like protests, crime waves, and terrorist attacks, and Recorded Future can analyze them in the same way as demonstrated in a past webcast.

As with all open source intelligence today, cybersecurity analysts face information overload due to a massive volume of intelligence to aggregate, organize, and assess. Recorded Future automates the first two steps of this process so that you can focus on the third, where skilled analysts really shine. Let’s take the example of tracking hacktivist activity. Recorded Future can raise your situational awareness by aggregating relevant articles, blog posts, and tweets on hacktivism and arranging incidents, including predicted future events, chronologically so analysts can get a picture of threats at a given point in time. Recorded Future also lets you see incidents based on source type so you can filter for events talked about on blogs or the major media sources.

Recorded Future also aids in the analysis itself. It recognizes entities to map out the relationships and connections between different actors such as attackers and targets, as well as the attack vectors used or threatened in each case. It also tracks momentum, which tells you when there was the most buzz around a group or attack and whether that buzz is growing or declining. For example, if the momentum for Distributed Denial of Service attacks is increasing, you can assume that they are a growing threat and prepare for them. Recorded Future also helps with monitoring, allowing analysts to create a real time alerting system or a dashboard for events of interest such as threats, breaches, and attacks or future events such as new laws and court rulings that tend to draw a hacktivist response.

All together, these capabilities allow an organization to forecast more accurately whether they will be the target of a major cyber attacks and what threat vectors they should most worry about. Within minutes, analysts could see if there has been a trend of attacks against similar organizations, any threats reported online, or events likely to trigger attacks coming up. They can drill down into coverage by blogs or trade journals if they find the mainstream media insufficient or misleading, and map out the interactions and relationships between hacking groups, companies, government agencies, and law enforcement. While Recorded Future can’t tell you who will attack you and when, it makes open source intelligence intelligence analysis for cybersecurity easier, faster, and more effective. Since cyber defenders need every advantage they can get, Recorded Future can make a major difference in your organization’s cybersecurity.

Source: ctovision

Myanmar websites and Bangladesh websites have been attacked by two groups of heckers from Bangladesh and some heckers from Myanmar.

Two groups of heckers of Bangladesh are Bangladesh Cyber Army and Bangladesn Black HAT Hackers. They both are DDos( Distributed Denial of Service)and other security-illed or weak websites. Bangladesh Cyber Army attacked Myanmar website, www.myanmar.gov.mm and websites of Myanmar Tourism.

Facebook pages of Bangladesh Cyber Army has told as Myanmar heckers attacked theirs and so they have to attack back.

June 18, 6PM,MST they attacked websites of Myanmar Teleport and Communication, www.mpt.net.mm.

Blink Hecker Group who attacked Bangladesh’s sites has told as they attacked only Rohinjar’s sites.Then continued to attacked bangladesh goverbment’s sites for they attacked.

In this cyber war, some of Bangladesh people helped.

Source: groundreport

Two service outages within the course of several hours rocked microblogging platform Twitter on Thursday, as users worldwide reported significant down-time and slow service across both Twitter’s website and mobile applications.

Amid speculation that Twitter had been crippled by a hacker attack, the San Francisco-based company blamed the outage – one of its most severe episodes in recent months – on a “cascading bug” in one of its infrastructure components.

“One of the characteristics of such a bug is that it can have a significant impact on all users, worldwide, which was the case today,” Mazen Rawashdeh, a Twitter vice president of engineering, wrote in a blog post on Thursday afternoon, after normal service resumed.

“We are currently conducting a comprehensive review to ensure that we can avoid this chain of events in the future,” he added.

Twitter’s statements came after UgNazi – an emerging hacker outfit that recently gained publicity for breaking into Cloudflare chief executive Matthew Prince’s personal Google email account – claimed credit for the service disruption in an email to Reuters, saying it launched a distributed denial-of-service (DDoS) attack against Twitter because of the company’s support for the Cyber Intelligence Sharing and Protection Act.

One security professional said the group probably used a DDoS-for-hire site to launch an attack against Twitter on Thursday, but downplayed the likelihood the group was solely responsible for bringing down the social media network.

“It was mere coincidence,” the security professional said. “The backend of Twitter is having issues, which is unrelated to the very small attack.”

North American traffic levels for Twitter.com sharply plummeted on two occasions between 8:30 a.m. PDT (1530 GMT) and 11:00 a.m. PDT (1800 GMT), according to data provided by network analytics company Sandvine.

The first outage lasted between 8:30 a.m. (1530 GMT) and 10:00 a.m. (1700 GMT), data showed.

Twitter acknowledged the disruption in a mid-morning blog post that was continually revised as the service resumed, only to fail for a second time before 11:00 a.m.

Thursday’s sustained outage leaves a fresh bruise on a service that had supposedly shed its unreliable reputation long ago.

As the service resumed on Thursday, its most dedicated users quickly hopped back on to crack jokes, express relief and complain about the interruption – and, indeed, the fact that during the outage they had nowhere to complain about the interruption.

Founded in 2006, Twitter was plagued in its early days by frequent outages as its servers struggled to handle the ever-rising volume of tweets generated worldwide, leaving frustrated users with its famous “fail whale” error screen.

In recent years, Twitter, which has been under great pressure to demonstrate financial viability, has also devoted considerable resources toward improving its reliability, in an attempt to project itself as a mature, polished brand.

CEO Dick Costolo said this month that Twitter now has 140 million active monthly users who send 400 million tweets daily.

The company sounded an apologetic note on Thursday, as it conceded it had failed users who rely on the platform to connect with “heroes, causes, political movements.”

“It’s imperative that we remain available around the world,” said Rawashdeh, “and today we stumbled.”

Source: http://news.terra.com/twitter-suffers-sustained-outage-amid-hacker-attack,15a1a3f0e2218310VgnVCM3000009acceb0aRCRD.html