Could you be responsible for the Twitter outage?

Of course you're not personally responsible for bringing down Twitter, but if your computer isn't equipped with up-to-date anti-malware software and the latest version of your operating system, you could unwittingly be part of the problem.

Twitter has confirmed that its outage Thursday morning and subsequent intermittent problems were due to an ongoing denial-of-service attack. Facebook also "encountered network issues related to an apparent distributed denial-of-service attack, that resulted in degraded service for some users," according to a company spokesperson.

Typically a DoS attack, which is often called a distributed denial-of-service attack, results when multiple computers simultaneously try to access the site in question. Usually the reason that happens is because the attacking PCs are infected with malware that does the dirty work for whoever is behind the attack.

As Symantec blogger Marian Merritt pointed out, "It's often the case that DDoS attacks come from computers infected with bots, turning them into zombie computers doing their cybercriminal's bidding. "

You can help prevent your PC from being part of such an insidious scheme by:

* Using a good anti-malware suite from a reputable vendor such as Symantec, TrendMicro, McAfee, ZoneAlarm, or CA. You can find trial versions of such programs as well as the excellent AVG-Anti Virus Free Edition at CNET's Download.com

* Making sure your operating system has the latest patches. Visit Microsoft and Apple security pages for information.

* Avoid clicking on e-mail links that take you to Web sites you're not familiar with (malware is often distributed through "drive-by downloads" from unreputable or infected sites).

Visit CNET's security center for more security news.

Podcast: Larry talks with CNET security reporter Elinor Mills about how the attack may have been aimed at a single individual who blogs about Georgia. The podcast runs 4 minutes and 53 seconds.

Listen now: Download today's podcast

[No Man]

Thanks for the article. The information is nothing new, but its good to see it phrased in terms of people taking personal responsibility for their computers. I can recall times that friends/coworkers have complained about their favorite site going down because of a DDoS attack, but I wonder how many of them had little or no virus protection on their computers and might have actually contributed to it.

[johnbishop2]

This is a ridiculous article. Twitter needs to take care of their servers, not joe the computer user. The reality speaks for itself Twitter (and Larry Magid): http://twitter.eatspoop.com/

[baconstang]

I'm not responsible, but I wish I was ;)

[ks2problema]

One wonders if, instead, perhaps it's just that the Russian hookers and porn spammers have discovered Twitter -- after getting handfuls of new followers every day for some time, over the last month or two, I've seen legitimate human use drop substantially to be replaced by robo-friend-bots, spammers, and trolling hookers.

I *guess* there must be some Twitter users who continue using that service -- but, honestly, I don't know any.

[umbrae]

Yes, I am sure idiot users brought down twitter. Its would only take a fraction of Ashton's followers.

[dumbspammers]

Chances are you're one of them, if you don't get the thrust of this article.

[disposable001]

Can you please explain a mechanism where by a Mac would be part of a DoS botnet? Isn't this overwhelmingly a Windows problem?

[funkotronic]

By all means this is a Windows-centric issue.

While Macs are not IMMUNE to such remotely-executed malware installs, the actual likelihood is very small as a virtue of the underlying structure and inherent security of the real-world installs and usage patterns of the OS (as opposed to the "black hat" conventions which "prove" that the Mac OS is easily breakable) - and as a result, the overwhelming need for resource-hogging protectionist software packages is far less.

Think about it, kidz: When's the last time you've heard of a Mac-based botnet? Windows-based software and yes, the OS itself, are FAR more porous than the Mac OS - this fact has been proven over and over on a daily basis worldwide. As a credit to Vista, it seems that these porosity issues have been largely dealt with, however that has been somewhat overshadowed by the fact that it is apparently such an otherwise steaming pile of ummmm, shall we say "quality". There will, of course, be the frothing-at-the-mouth WinZealots who will happily (and quite vocally) disagree: let the flames begin! I can see it now: "MAC suXors!!"

To echo the sentiment of [no man], all users REGARDLESS OF PLATFORM CHOICE need to take personal responsibilty for their machines. Oh wait, that means that said users would already be taking personal responsibility for their LIVES as well - and that seems to be somewhat out of style these days.

[kr3bstar]

To participate in a DOS, the Mac would have to have malicious software installed onto it by any means, and then the malicious application would be one which participates in the ddos. For the "bad guy" to install software on a mac, the techniques would have to be the same as on any other OS: Encouranging a user to visit a website or click on a link which takes advantage of any known security flaw which allows root access, which then allows the malicious code to be installed. It's a myth that macs don't have security flaws which can be exploited. There have been plenty of examples over the years. Here's one: http://www.itworld.com/mac-hacked-first-in-contest-080327

[Bunyrbit]

Of course who uses apple computers? 8%? Come on dude why do Apple fans always want to start a fight they couldnt wont ever win?Apples are fruits you eat, windows are an opening to a whole world outside....

[deadmongoose]

funk
I have a Windows machine not because I'm a fanboy, nor do I think its better than Mac or Linux, in fact I know that Windows OS's are in almost all ways inferior to OSX & Linux. I use a Windows machine because I can upgrade anytime I want, every couple years I can have a "Top of the Line" system for a fraction of what I would pay for a comparable Mac. I use Windows because I like to game, until Wine works with all Windows games, then I will stay with Windows. I have used Linux extensively and I love the freedom and usability, you can find nearly anything you need for free, but for me that isn't as good as having everything I need work almost all the time.

[JSY00]

It's more about market share than anything else. If i'm a malware programmer, i'm going to choose the vector that allows the most widespread delivery of my work. MacOS has a less that 20% market share. I'm more likely to focus on something that is a windows based exploit than something that is mac based, or even multi platform, for that matter.

[gggg sssss]

Unless the Chiese govt owned manufacturers of the iPhone installed a backdoor to let them take over every iPhone, and thus iTunes and thus every Mac. Think about it.The iPhoe as a national security risk.

[deadmongoose]

disposable
I think he was trying to urge people to keep their systems up to date, whether using Mac or PC. While the overwhelming number of infected computers are PC's, there is just a matter of time before people start turning toward Mac's vulnerabilities, especially as the market share increases. He didn't explicitly say that Macs are the cause, in fact the article only mentions Macs once, when he links how to update your OS.

In addition another very good Anti-Virus software is Avast, I have been using it for years and never been infected with anything.

[graggamuffin]

Well then wouldn't it be a good time a website such as cnet starts actively promote alternative to Windows since Maleware, viruses and other disturbances are mainly a Windows problem? Mac is known enough but expensive and Linux, free but working absolutely fine with no need to spend time and money on expensive security software.

[FragosTech]

I agree with graggamuffin. Why pretend options like Linux don't exist?

[monkeyfun14]

If you shift everyone over to Mac then the malware problem just starts on that platform

There is no magic fairy dust protecting mac and linux.

[krosafcheg]

Disposable- Security through obscurity is not a great strategy. Macs are no more secure than Windows PCs, they are just a much smaller market share so most malware/virus writers don't bother. If everyone had a Mac instead of a PC, then PC users would be enjoying this false sense of security.

[yomamashump]

Correct.

Market share, in most cases, influences if not directly determines OS security.

This is just common sense people.
For example: When you read product reviews, you are far more likely to get a good overview of the pros and cons from 1000 reviews than a product with 10 reviews. Operating systems are no different. More people using = more flaws being discovered.

I promise you, if all the hackers in the world simultaneously switched their efforts to OS X, they would find more holes than a block of swiss cheese.

Incidentally I have a Mac mini and 2 Linux servers...I have security suites on all of them. Trust no one.

[Dalkorian]

Bull. You have proven yourself to be totally uneducated in this matter. Quit while you're behind.

Hint: OS 9 had many many viruses, yet OS X does not. Care to argue that OS 9 had a larger market share?

[SactoGuy018]

This is very good reason why you want to have a good Internet security suite running on your system if you're running Windows 2000/XP/Vista. The really good ones like the suites from Symantec, McAfee, Trend Micro, Kaspersky, and Panda Software not only keep out malware, but also can monitor and stop any attempt to go to a web site where data phishing and malware attacks can happen.

[gggg sssss]

maybe they could stop you from going to twitter as well.

[buddesatva]

I actually am responsible for the Twitter outage. I think they are all a bunch of Twits. My fondest hope is that one day I will be able to deny service to a select group. Pray you are not a member.

[Eshnunna]

Since I don't twitter I don't really care if Twitter crashes. I think it wastes an awful lot of time.

[kr3bstar]

I second that. I'm simply not interested in anyone's banal existence and I'm not narcissistic enough to think anyone is interested in mine.

[ca5ter]

See CNET, I'm not the only one.

[baconstang]

Where can I download that DoS malware?

Ironically, I just clicked on your link for the Top Technology story, "Denial-of-service attack cripples Twitter" which apparently tried to take me to the Twitter site. I got the message "The server at Twitter.com is taking too long to respond." So now cnet IS part of the DOS?

But more importantly, when are we going to wake up and automatically update every online computer with the latest security updates as a default? And when are all of our ISPs going to be required to scan all email for viruses? These cheap attacks must cause more disruption and cost business more than would the cost of preventive scanning. For those geeks who don't want their computers to be updated, they can have special password-based protection, and a required registration for the privilege so that we can track back to them if they are really just criminals masquerading as geeks.

Oh, silly me, I just realized that what I thought was an error message, was actually just an illustration for the story.

My responsible Big Brother solution still stands...

[transporter2000]

My question is whether Twitter ever prepared for a Distributed Denial of Service attack (DDOS)? Some of the large bandwidth providers (AT&T, Qwest, Verizon, Level 3) can take the bandwidth hit and allow legit traffic through and absorb the bot crap. You don't hear of these kind of outages with Google, Ebay, Amazon, etc. Surely they are huge targets to for DDOS attacks. Even "North Korea" went after the US Government's websites last month that led to disruptions.

[MadLyb]

Yep...I did it. I fully admit it. I killed Twitter.

You can thank me later.

8^P

[johnbishop2]

<a href="http://www.twitter.com/">TWITTER</a>

[sammo241]

Just another case in point Don't use windows or mac. You will have no problems. I never have for 15 years.

[baconstang]

I wonder how many Macs were in the botnet?

[veeblefetzer]

When telling people about helping to prevent your computer being used as a bot, why don't people mention that you should shut off your computer when it's not being used? When it's off it can't get infected and if it is infected it can't be used. Plus it saves electricity.

[baconstang]

I know. It's like the most obvious thing to limit damage. Like when you read articles talking about pollution, climate change or dwindling resources, they usually fail to mention "Oh yeah, and quit having families with like 8 kids".

[gggg sssss]

foil underpants help too

[buzzdaly9]

OMG! Twitter is down? Absolutlely NOTHING of importance will result from this shutdown.

That people waste their time on this silliness is mindboggling.

Who cares? Nothing is impacted, other than the feeble minds of those who embrace this useless technology.

OMG! OMG!!

Good riddance.

[baconstang]

In a related side story, U.S. productivity spiked today.

[meatmachine]

"TweetDeck"??? What the hell is a tweetdeck? I am Sooooooooooooo glad I do not know.

I second and third all those above....not a thing will be missed. Sad and too much time. Better management is surly needed in the workplace if TWEETS are the norm!

[meatmachine]

"TweetDeck"??? What the h&*% is a tweetdeck? I am Sooooooooooooo glad I do not know.

I second and third all those above....not a thing will be missed. Sad and too much time. Better management is surly needed in the workplace if TWEETS are the norm!

[dumbspammers]

For whatever it's worth, every single one of the PCs brought to me for disinfection this year has been running Norton/Symantec security software of some type, and it was up-to-date, but the viruses got in anyway. That suggests to me that using some other AV product would be a good idea; I personalyl recommend Avast for home users.

[soluto]

Sort of feels like your hometown is under terrorist attack. Check out my CARTOON at http://www.pcdisorder.com/2009/08/denial-of-twirvice.html