- BlackBerry Storm vs. the iPhone
- Digg's Kevin Rose: "We have to do better"
- Blogger warns: "Nortel doesn't make it out alive"
- Financial quagmire bringing out the scammers
- Verizon plays with the wrong e-mail addresses
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:Application Performance Solutions | App Performance | Networking Solution | SafeGuard Enterprise Solution Center | SOA | Test your Web Filter | Value of WDS
The Web site for the president of Georgia was knocked offline by a distributed denial-of-service (DDOS) attack over the weekend, yet another in a series of cyberattacks attacks against countries experiencing political friction with Russia.
Georgia's presidential Web site was down for about a day starting early Saturday until Sunday, according to the Shadowserver Foundation, which tracks malicious Internet activity.
Network experts said the attack was executed by a botnet, or a network of computers that can be commanded to overwhelm a Web site with too much traffic.
The command-and-control server for the attack is based in the United States, Shadowserver said. The botnet appears to be based on the "MachBot" code, which communicates to other compromised PCs over the HTTP, the same protocol used for transmitting Web pages.
The tool used to control this kind of botnet "is frequently used by Russian bot herders," according to Shadowserver. "On top of that, the domain involved with this C&C [command-and-control] server has seemingly bogus registration information but does tie back to Russia."
One of the commands contained in the traffic directed at the Web site contained the phrase “win+love+in+Rusia," wrote Jose Nazario a senior security engineer with Arbor Networks.
On Sunday, it appeared that the host for the command-and-control server had been taken offline, Shadowserver said.
The motivation for the attacks is not entirely clear. But Georgia is just one of several former Soviet satellites including Estonia and Lithuania seeking to downplay their historical legacy with Russia.
Georgia has angered Russia by pushing for entry to NATO (North Atlantic Treaty Organization), a pro-Western security alliance. It has also tangled with Russia over the handling of South Ossetia and Abkhazia, two rebellious regions pushing for independence.
In Lithuania, 300 Web sites were defaced around July 1 following a new law prohibiting the public display of symbols dating from the Soviet era, as well as the playing of the Soviet national anthem. The hacking was blamed on an unpatched vulnerability in a Web server at a hosting company.
Estonian Web sites were pounded by a massive DDOS attack in April and May 2007. The attacks were believed to have been connected to a decision to move a monument honoring Soviet World War II soldiers to a less prominent place, which ignited protests from ethnic Russians.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment