http://news.cnet.com/8301-10789_3-9962676-57.html By Robert Vamosi Defense in Depth June 7, 2008 On Friday, Internet movie database IMDB fell victim to a sustained distributed denial-of-service (DDoS) attack that coincided with Amazon.com being offline, says one researcher. Soups Ranjan, a senior member of the technical staff of network protection and management company Narus, said in a blog that he found evidence that at least one of the IP addresses used by IMDB fell under a sustained DDoS attack between 10:30 a.m. and 1:30 p.m. PDT Friday. "My attempt to load the IMDB page via a direct connection to the Web server under attack (http://72.21.206.70/) doesn't load the images at all. It becomes interesting when you realize that IMDB seems to be hosted using Amazon Web Service (AWS) since this IP-address is registered as belonging to Amazon." Ranjan noted that the duration of the attack on IMDB coincided with the amount of time that Amazon was offline on Friday. He also provided some details, saying that "the attacker seemed to open multiple connections with the IMDB's Web server (port 80) while incrementing his source port for every new connection. The attack's average rate was 3Mbits/sec, certainly not large enough to cause a complete meltdown but probably good enough to delay the legit users. However, there might have been other attacks launched at the same time on IMDB which weren't in the path of our probes." _______________________________________________ Attend Black Hat USA, August 2-7 in Las Vegas, the world's premier technical event for ICT security experts. Featuring 40 hands-on training courses and 80 Briefings presentations with lots of new content and new tools. Network with 4,000 delegates from 50 nations. Visit product displays by 30 top sponsors in a relaxed setting. http://www.blackhat.com
This archive was generated by hypermail 2.1.3 : Mon Jun 09 2008 - 02:47:55 PDT