Flood of malicious junk traffic makes Ukrainian websites unreachable
source link: https://arstechnica.com/information-technology/2022/02/torrents-of-malicious-junk-traffic-make-ukrainian-websites-unreachable/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
DDOSES R US —
Flood of malicious junk traffic makes Ukrainian websites unreachable
DDoSes temporarily take out sites as Ukraine stares down Russian soldiers at its border.
Dan Goodin - 2/16/2022, 12:51 AM
Ukraine's Defense Ministry and two banks were knocked offline on Tuesday by a flood of malicious traffic designed to prevent people from visiting the sites, Ukraine's information security center said.
The distributed denial-of-service attacks targeted the websites for Ukraine's defense ministry, the Armed Forces of Ukraine, and two banks, Privatbank and Oschadbank, the country's State Service for Special Communication and Information Protection reported. At the time this post was being reported, the Defense Ministry site remained completely unreachable. Meanwhile, only the homepage for PrivatBank was available, and it was defaced. Oschadbank's site provided only limited access.
The malicious data floods were also reported by the Ukrainian cyberpolice, but at the time this post was being reported, attempts to visit most of the department's website were unsuccessful. The homepage said: "We apologize for the inconvenience. The site is under maintenance."
On Twitter, department personnel also said they had identified individuals who were sending texts reporting fraudulent ATM failures. Ukraine's Security Service website was also not loading.
No pizza for you
Campaigns that use DDoSes (short for distributed denial-of-service) deliver torrents of junk traffic that are intended to overwhelm targets so they are unable to deliver services. DDoSes can be difficult to stop because they are delivered by large numbers of devices distributed in a wide geographic region. They're analogous to flooding a pizza parlor with so many calls that it's unable to accept orders from customers.
Advertisement
While DDoSes have the capacity to paralyze websites or even huge swaths of the Internet, the disruptions they cause are temporary and usually last only as long as the responsible party continues to deliver the torrent or until a DDoS mitigation service filters out the junk traffic.
Network observability company Kentik has been tracking Internet traffic flowing through Ukraine. Graphs showed the DDoSes starting on Tuesday, when the volume of traffic to various targets suddenly spiked by orders of magnitude. AS28907, the autonomous system that hosts the Ukrainian Army, was hit by three waves, as the following two images show:
AS60173 AND AS15742, which host Oschadbank and PrivatBank, respectively, saw similar floods:
The DDoSes arrived as Russia has amassed more than 100,000 soldiers at its border with Ukraine. There's no evidence the Russian government or citizens are behind the cyber actions, but a statement from Ukraine's Center for Strategic Communications and Information Security posted on Facebook hinted who it suspected.
"It is not ruled out that the aggressor used tactics of little dirty tricks because its aggressive plans are not working out on a large scale," the center officials wrote in a rough translation.
Recommend
-
33
Ubuntu 16.04 and 18.04 (and likely future versions) often don't have Python 2 installed by default. Sometimes Python 3 is installed, available at /usr/bin/python3 , but for many minimal images I've used,...
-
8
Collaborator rust-log-analyzer commented
-
2
Closed Bug 1644719 Opened 11 months ago Closed 23 days ago...
-
12
Will throw in dangerous code Heuristically Unreachable? advertisements I've got a method that, due to some non-intuitive business requirements...
-
12
Copy link Contributor jhpratt commented
-
3
Function std::hint::unreachable_unchecked1.27....
-
9
上周我們遇到一個非常罕見的問題,一群人費了九牛二虎之力才徹底釐清案情,並且成功修復問題。我們在部署 Azure Functions 的時候,大部分的情境底下都是正常的,唯獨將站台重新部署到 Linux 平台的 App Service Plan 之後,詭異的狀況就此發生。由於案發過程過...
-
12
Ukrainian websites knocked offline ahead of possible Russian invasion ...
-
5
Joe Biden, Indebted Americans Flood Student Loan Websites With Traffic, Break ThemDr. Anthony Fauci, Face of the US COVID Response, Is Stepping DownFauci annou...
-
3
News Analysis Malicious package flood on PyPI might be sign of new attacks to come
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK