Kids, not Russian government, attacking Georgia's Net, says researcher
Initial information suggests that Internet attacks on Georgian Web sites over the last two weeks are the work of kids, according to one researcher, while another says the intensity of these attacks is short-lived when compared with attacks in Estonia last year.
In an e-mail to CNET News, Gadi Evron, founder of the Zero Day Emergency Response Team, said that "although the impact on their Web sites is clear, I believe this may end up being just some kids who got overexcited, with Georgia being ill-prepared to say the least. "
Posting on CircleID, Evron wrote that there are botnet attacks against .ge Web sites, but the Internet infrastructure doesn't appear to be directly attacked. "Not every fighting is warfare," wrote Evron. "While Georgia is obviously under a DDoS attacks and it is political in nature, it doesn't so far seem different than any other online aftermath by fans. Political tensions are always followed by online attacks by sympathizers."
In May 2007, the Baltic nation of Estonia was attacked online and its Internet infrastructure crippled.
On Tuesday, Jose Nazario of Arbor Networks offered in a blog more information on the strength and duration of the attacks. "Compared to the May 2007 Estonian attacks, these are more intense but have lasted (so far) for less time. This could be due to a number of factors, including more sizable botnets with more bandwidth, better bandwidth at the victims, changes in our observations, or other factors."
Nazario also said that there is evidence that the Georgians had responded by attacking a Russian newspaper Web site.
As CNET's resident security expert, Robert Vamosi has been interviewed on the BBC, CNN, MSNBC, and other outlets to share his knowledge about the latest online threats and to offer advice on personal and corporate security. Listen to his podcast at securitybites.cnet.com or e-mail Robert with your questions and comments. 
That is really what I think is going on with most of these DDoS attacks when they happen around the world: it is being done by different organizations who are bound together by e-mailing and forum-surfing, sometimes recruited by governments.
It is evident that there is no direct evidence of Russian hackers, or Russian government attacking Georgian website. According to the latest information posted by ShadowServer.org of Tuesday, 12 August 2008 titled "Georgian Websites Under Attack - Don't Believe the Hype", specifically refers to the fact that there is no proof that above mentioned organization are in fact responsible to the attacks. According to ShadowServer.org, the attacked sites fall under the following categories: * Adult video websites * Prostitution websites * White supremacy websites * Carder websites (sites that trade in stolen credit card numbers) * Online gambling websites * Virtual currency websites (think PayPal, but not nearly that legitimate) * Russian news websites * Random Russian websites * Many other websites Another speculation is that RBN is somehow involved in DDoS attacks. Nobody has a proof of that either.
http://lists.grok.org.uk/pipermail/full-disclosure/2008-August/063898.html
http://lists.grok.org.uk/pipermail/full-disclosure/2008-August/063901.html
Subject: You were wrong to quote Gadi Evron.
From: n3td3v xploitable@gmail.com
You are wrong to go with Gadi Evron's theory and put it to press.
He has no credibility and never has had.
All the best,
n3td3v
- by cancertruther September 26, 2008 11:34 PM PDT
- Chosen ones are more times than not the ones responsible for hacking. Chosen ones hack from Israel. Many dissidents have traced hackers back to Israel, but just like other chosen one criminals the Chosen ones are safe in Israel.
- Like this Reply to this comment
-
(13 Comments)