Tag Archives: DDoS

North Korea’s Twitter and Flickr Accounts Hacked by Anonymous

The official North Korean “Uriminzokkiri” Twitter and Flickr accounts have been hijacked and defaced by groups that claim to be a part of the online hacking activism collective Anonymous. Both of these accounts are managed by the Government of North Korea.

The reason behind these attacks seems to be the retaliation to North Korea’s most recent threat to attack the United States and its allies with nuclear weapons.

Here’s a screenshot of the hacked Twitter and Flickr account. At the time of writing this post, the Twitter account had 14,325 followers. The first tweet after the hack was sent at 22:45 PDT on Wednesday:

North Korea's Twitter Account Hacked

One of the photos uploaded to the Flickr account shows Kim’s face with a pig snout, ears and a tattoo of Mickey Mouse:

North Korea's Flickr Account Hacked

The hack follows last week’s attack on North Korean news site Uriminzokkiri.com, where the hackers, a part of the ‘hacktivist’ collective, have stolen nearly 15,000 passwords.

Although the hacks are far less entertaining, what’s surprising to me is that nearly eight hours after the accounts being hacked, the government has still not reacted to regain access and delete the tweets posted by the hacker. Having said that, I really doubt if the government will even try to get back its accounts from Anonymous. Even more surprising is that neither Yahoo nor Twitter has helped regain them the accounts back.

The hackers also claim to have hacked Uriminzokkiri.com. The site has currently gone offline, however, what we believe that it could be down to a DDoS attack rather than a hack.

Citibank and BoA Websites DDoSed by Al-Qassam Cyber Fighters

The new year has started on a disturbing note for Citibank and Bank of America (BoA), as Al-Qassam Cyber Fighters have started attacking them with a DDoS. The attack is not a surprise, as it was announced back in December last year. This is the second phase of their Operation Ababil, which started on 27 December, last year. The operation seems to have one agenda only — to get the controversial anti-Islamic video removed from YouTube and to stop the organized western offensive against Islam (if there is such a thing).

bank-of-america

The first phase of Al-Qassam’s attack took place in October, after which they took a break for Eid al-Adha. The list of targets for this second phase includes US Bancorp, JPMorgan Chase, Bank of America (BoA), PNC Financial Services Group and SunTrust. The hackers at Al-Qassam said,

In new phase, the wideness and the number of attacks will increase explicitly; and offenders and subsequently their governmental supporters will not be able to imagine and forecast the widespread and greatness of these attacks.

The hackers are extremely confident about their mission and have been able to cause temporary interruption of services in BoA and Citibank. While Bank of America has been attacked earlier in the first phase, Citibank is being attacked by Al-Qassam Cyber Fighters for the first time.

Citibank has announced about the disruption in service on its official Twitter account.

This hacker collective does not have any affiliation with Anonymous, and is one of its kind as it has risen to defend Islam, unlike other hacker groups.

Godaddy Sites Back Online After Outage

A large number of websites that were either hosted or using GoDaddy name servers went down for more than four hours today following an outage in their DNS server. GoDaddy has been working to fix the issue and now it looks like almost all sites are back online.

There are speculations on what caused the glitch with some blaming it on the online vigilante group, Anonymous. A Brazilian twitter user loosely affiliated with Anonymous even tweeted the following, taking responsibility of the outage.

I’m taking godaddy down bacause well i’d like to test how the cyber security is safe and for more reasons that i can not talk now.

GoDaddy has been in the receiving end of similar attacks by Anonymous after their support to the infamous anti-piracy bill SOPA. But we are not yet able to verify whether this outage was a result of any kind of attack and there’s a good chance that this might just be a glitch in their DNS configuration. GoDaddy, while not mentioning whether the outage was a result of a DDoS attack, has tweeted that there was no compromise of user data.

WIRED is also reporting that GoDaddy has migrated some of the DNS records to VeriSign following the outage. It is not yet clear whether they are migrating the whole DNS configurations from the affected server or just the one for GoDaddy’s website which was also affected by the outage.

MTNL Website Hit By A DDoS Attack By Anonymous India

In their bid to lash out at the very staunch supporters of censorship and blatant liars and looters in general (read: the great Indian Internet Service Providers), Anonymous India has been doing pretty much the same thing that Anonymous Everywhere Else does:-

  1. Download the Low Orbit Ion Cannon software (a freely available Denial of Service attack software that keeps asking the target server several random bits of useless information, and thus clogging it)
  2. Get a bunch of friends and decide on a fairly useless website as the target (which usually does not have many servers to back up the content)
  3. Giggle manically
  4. ????
  5. PROFIT!! (Or at least, some drama)
So, Anon turned its head towards Mahanagar Telephone Nigam Limited (MTNL), the State’s ISP for Mumbai and New Delhi and launched a Distributed Denial of Service (DDoS) attack on its corporate website, leaving many a head in the MTNL office scratching their heads.
This was done to protest against the censorship of several sites such as The Pirate Bay and Vimeo.
We are against Internet Censorship. Instead of blocking few URLs the ISP blocked the whole domain of various file sharing websites. The HC Madras, DoT didn’t isssue any list of websites to be blocked still ISP supported internet censorship.
Apparently MTNL’s managers have absolutely no idea why these sites are banned.
These sites are generally blocked due to court orders or directives from the Telecom Department. But I cannot say for sure
It is very mind boggling indeed. But if this is the case with an alleged court order, then I am very sure this DDoS would not be more than a minor irritation on some of these employees of MTNL, many of whom would be quite surprised to know that their ISP has a corporate website.

Pirate Bay Criticizes Anonymous for Virgin Media DDoS

A UK based ISP Virgin Media has decided to ban access to the Pirate Bay, following a court order. The court order affects five major ISPs in the UK, Virgin Media being the second largest in all of Britain. British Telecom (BT) is still in talks over this matter, in spite of being asked to implement a ban, last year. The ban on The Pirate Bay came after the British Phonographic Industry (BPI), which represents a number of media houses, aggressively pursued a case.

Furious over the ban, The Pirate Bay has given enough tips to circumvent this ban, rendering it useless anyway. On the bright side of things, it has also recorded a traffic boost of 12 million, after the court order. However, when Anonymous came out in support of The Pirate Bay and decided to DDoS Virgin Media, it was not pleased at all. The DDoS was carried out between 5 and 6 PM and Anonymous took down the Virgin Media website for over an hour.

The Pirate Bay has made it clear that it does not support DDoS as a means of protest.the-pirate-bay-virgin-hack

We believe in the open and free Internet, where anyone can express his or her views. Even if we strongly disagree with them and even if they hate us. So don’t fight them using their ugly methods. DDOS and blocks are both forms of censorship. If you want to help; start a tracker, arrange a manifestation, join or start a pirate party, teach your friends the art of bittorrent, set up a proxy, write your political representatives, develop a new p2p protocol, print some pro piracy posters and decorate your town with, support our promo bay artists.

With this ban, Virgin Media has become the first UK based ISP to impose a ban on The Pirate Bay. Legally, Virgin Media is not at fault here because it is just following court orders. However, instead of accepting the ban so happily, Virgin should have questioned the decision and followed BT’s example. ISPs should in no way determine what content to push to its users, and what to filter; this is against net-neutrality and free speech. If they are being forced to censor content like in this case, it is their rightful duty to question such decisions, as BT did.

WordPress Under a Large DDoS Attack

If you are experiencing issues with your WordPress service, you are not alone. WordPress says it is under, what they think is, the largest DDoS attach they have ever seen. The size of the attach is multiple gigabits per second and tens of millions of packets per second. The attach has affected all three datacenters WordPress uses in Chicago, San Antonio and Dallas.

The attack seems to have minimized a bit but there is no word yet about who is behind such a massive attack. Many people are suggesting that it is a politically motivated move. Here’s a complete statement that was posted on the WordPress VIP Blog, as reported by TechCrunch:

WordPress.com is currently being targeted by a extremely large Distributed Denial of Service attack which is affecting connectivity in some cases. The size of the attack is multiple Gigabits per second and tens of millions of packets per second.

We are working to mitigate the attack, but because of the extreme size, it is proving rather difficult. At this time, everything should be back to normal as the attack has subsided, but we are actively working with our upstream providers on measures to prevent such attacks from affecting connectivity going forward.

We will be making our VIP sites a priority in this endeavor, and as always, you can contact us via [email protected] for the latest update. We will also update this post with more information as it becomes available

The WordPress.com official Twitter account was last updated with this message:

Sporadic slowness is back — we’re battling a non-trivial DDoS attack and will update as soon as it’s mitigated.

 

Encyclopedia Dramatica Shut Down, Or Did It Just Get DDoSed?

If you haven’t heard about Encyclopedia Dramatica yet, I will point you to go to this Wikipedia article. The Wikipedia satire which is run by the 4Chan Anonymous group has poked fun on several people and things, Wiki style. However, it looks like the website has now been shut down or has been taken down like other 4Chan properties.

Encyclopedia Dramatica

Encyclopedia Dramatica has been used to document and poke fun at various personalities. It has even been used to poke fun on the infamous banner on Wikipedia where Jimmy Wales asked visitors to donate to the site.

However, the Encyclopedia Dramatica site (http://encyclopediadramatica.com/) seems to be down right now. It isn’t clear whether the site’s  has been shut down or whether it has just been hit with a DDoS. Nevertheless, its not loading anymore and we are trying to gather more information about it.

If you haven’t visited Encyclopedia Dramatica, you could do now thanks to this Google Cache page.

(h/t @weemundo)

Breaking: 4Chan Anon Takes Down PayPal.com

Updates at the bottom

4Chan’s Anon has finally taken down PayPal over their fiasco. This is getting really bad today and lot of sites have been taken down.

anon_paypal_down

Currently PayPal.com is completely down as you can see from the screenshot above. Earlier today the PayPal blog was taken down after they blocked payments to Wikileaks, PayPal has claimed that no-one had contacted them to stop payments to Wikileaks.

Earlier today 4Chan members had also brought down MasterCard, A Swiss Bank and Visa websites through DDoS attack. Both and  suspended Anon accounts earlier today, making this battle even more prolific. When this battle will end is not certain, but Wikileaks has definitely take a new twist altogether.

PayPal Down

Update: PayPal.com looks to be down even after an hour. Down for me or Everyone also confirms the same.

Update 2: Only http://paypal.com seems to be down, www.paypal.com seems to be working fine. If you type paypal.com in your browser it does not work, if you type www.paypal.com it works Ok. Thanks @hp_lifelive.

Twitter Suspends Operation Payback Account, Will 4Chan Attack Twitter Now?

has suspended the account of the Anon "Operation Payback" team @Anon_Operation. This account was being used by the Anon team to send out messages on when they were going to hack which site.

Operation Payback Twitter Account Suspended

Quite recently Anon took down Visa.com and had flashed several messages on Twitter about the operation. Now as SAI is reporting, the account has been suspended by Twitter.

Twitter was one of the targets for Anon to attack, because they thought they were censoring content from the trending topics. However, Twitter has denied those claims, but the suspension of the "Operation Payback" account could enrage the members of Anon who might possibly DDoS Twitter.

Start bracing yourself for some Twitter downtime.

Update: Operation Payback is now back on Twitter as @Anon_Operationn

Update 2: The original @Anon_Operation account is now back up. There was a tweet from the account which said that the deletion was accidental.

Anon Team Attacks VISA.com Over Wikileaks

The Anon team which was earlier attacked MasterCard and PayPal in Defense have now taken down Visa.com. The attack was publicized on through the handle @Anon_Operation.

Anon Operation Payback Wikileaks

The folks behind Anon are calling this operation, Operation Payback and are bringing down websites which have anything to do with blocking payments or funding to Wikileaks.

Visa.com Website Down

Anon members are actually members of the notorious 4Chan board who have their share of fun DDoSing websites. They have in the past taken down several popular sites including Tumblr, Gawker Media, RIAA and MPAA among others. Currently Visa.com is down, so it looks like they were able to hit the target this time too.