Eighteen months after a denial-of-service attack, the Estonian Ministry of Defense has posted a detailed report (PDF) on the attacks. While focusing on specific steps the nation needs to take to prevent another attack, the report contains global recommendations as well.
In May 2007, the Baltic nation experienced a series of denial-of-service (DoS) attacks as a result of its government's decision to relocate a statue honoring an unknown Russian person killed during World War II. At Black Hat in 2007, security expert Gadi Evron said the attacks were not directed by the Russian Federation, or any government entity; he suggested it was the work of a "flash mob" of individuals from all over the world. In January, a native Russian in Estonia was convicted for his involvement in the event.
The report calls for Estonia to apply a graduated system of security measures, develop high awareness of information security to the highest standard, develop appropriate regulatory and legal framework of information systems, and promote international cooperation toward achieving global cybersecurity.
On the latter topic, Estonia will seek global condemnation of cyberattacks given the impact on individuals' livelihoods. In Estonia, a nation that is well-wired per capita, the DoS attacks shut down local ISPs and prevented people from buying food, getting gas, or completing bank transactions for several days.
The report concludes that Estonia should seek the cooperation of all nations in strengthening local cybersecurity law enforcement by presenting its expertise and experience at global security conferences.
Initial information suggests that Internet attacks on Georgian Web sites over the last two weeks are the work of kids, according to one researcher, while another says the intensity of these attacks is short-lived when compared with attacks in Estonia last year.
In an e-mail to CNET News, Gadi Evron, founder of the Zero Day Emergency Response Team, said that "although the impact on their Web sites is clear, I believe this may end up being just some kids who got overexcited, with Georgia being ill-prepared to say the least. "
Posting on CircleID, Evron wrote that there are botnet attacks against .ge Web sites, but the Internet infrastructure doesn't appear to be directly attacked. "Not every fighting is warfare," wrote Evron. "While Georgia is obviously under a DDoS attacks and it is political in nature, it doesn't so far seem different than any other online aftermath by fans. Political tensions are always followed by online attacks by sympathizers."
In May 2007, the Baltic nation of Estonia was attacked online and its Internet infrastructure crippled.
On Tuesday, Jose Nazario of Arbor Networks offered in a blog more information on the strength and duration of the attacks. "Compared to the May 2007 Estonian attacks, these are more intense but have lasted (so far) for less time. This could be due to a number of factors, including more sizable botnets with more bandwidth, better bandwidth at the victims, changes in our observations, or other factors."
Nazario also said that there is evidence that the Georgians had responded by attacking a Russian newspaper Web site.
- prev
- 1
- next
