Massive cyberattack threatens internet speed

Well now that makes no sense.

Why would they attack a site that is trying to prevent spam, when they are doing the spamming.

Thought they were against people who did spam? The ones doing the DDOS.

Originally posted by Manhater
Well now that makes no sense.

Why would they attack a site that is trying to prevent spam, when they are doing the spamming.

Thought they were against people who did spam? The ones doing the DDOS.

We use Spamhaus with our mail filter. It filters out spam emails.
Recently Spamhaus blocked an entire hosting company called Cyberbunker.

www.nytimes.com...

The dispute started when the spam-fighting group, called Spamhaus, added the Dutch company Cyberbunker to its blacklist, which is used by e-mail providers to weed out spam. Cyberbunker, named for its headquarters, a five-story former NATO bunker, offers hosting services to any Web site “except child porn and anything related to terrorism,” according to its Web site.

So you can imagine that a company that will host anything was probably being used by criminal gangs to spam the internet. And quite frankly they are mad.
So they DDoS'd Spamhaus to overwhelm their servers thus interfering with their ability to properly give out the blacklists that many mail filters use. Or at least try to.

I think this is a tactic to get people to stop using Spamhaus services. Because if you can't scan the blacklist then your email may be backed up and not delivered.
But it's failing to have the desired effect.

A week ago, our computers in our home in Italy started going slower than ever, than suddenly, during certain hours in the morning and evening it goes fast, but during afternoon it goes very slow.
We even called our company because we thought there was a problem...

Is there something I can do for that??? When will this cyber attack end?

Originally posted by fenceSitter
From BBC article:


I can't verify that since I'm at work - anyone else notice issues with Netflix?

i wouldn't waste my money with netflix, other than that have had no problems with the net today.
have these people nothing better to be doing with their lives than just annoy other people??

Originally posted by grey580
From what I've read the attack is at the global internet level.
Spamhous is very distributed with servers in many countries.
It's hard to take them offline.

Normal DDoS attacks usually are in the 50mbit range.
This one is in the 300mbit range.

It's truly massive.

It's 300 GB a second . Spamhaus got took down BIG time last week by a botnet . Then they employed "CloudFlare " to protect them , since they kinda provide that service ;o) Same people that protect WikiLeaks.

This is old news TBH as it started on March 18th at 10 , then hit 20 and quickly moved up to 120 and now its around 300GB/s !!! Hat tip to Cloudflre big time .... The Internet will break before they do.

Basically CloudFlare uses a technique called anycast to distribute attack traffic to other servers. The ultimate anti-DDoS tool.

What happens is CloudFlare buys more bandwidth from Tier 2 providers and then pass on the attack traffic to Tier 1 providers and thats caused problems last week for sure in Europe. If Tier 1 goes down bye bye interwebz lol.

What will happen ? Close down CyberBunker ? That wont stop a bot-net will it lol. A botnet can be run from anywhere , Highly unlikely that its run via the servers on site ( these are professionals and not some kiddie scripts after all).

Maybe CloudFlare will have to stop the protection as its part of the problem , Will Tier 1 be able to cope with the bottle neck ?

CyberBunker seems to be under attack as well ? All aboard the Lulz Boat , get the pop corn out !!!

reply to post by fenceSitter


So is this why they have moved to infect peoples email and send these things out through personal emails using your name as a subject line and your contact list to get more and more sources to infect and send from? Are these the ones they are trying to stop? It is a constant battle to watch your computer, your phone, home and cell to identify this scum. I am beginning to think that maybe the whole thing needs to be shut down for a bit to get rid of this crap and make it safer to use, i would never bank on line because of this very scary stuff.

Originally posted by grey580
Normal DDoS attacks usually are in the 50mbit range.
This one is in the 300mbit range.

Gigabits, not megabits... If a server went down after a 50Mbs DDoS attack, then it was already asking for it

As for whether I've seen any issues "my end" - not really. The reports I've read seem to say it is intermittent anyway, so for most of us it would probably go unnoticed unless they started taking down chunks of infrastructure.

reply to post by whatnext21


Welcome to teh interwebz lol.

If you are sensible and use common sense you will be fine. The "internet" isn't the problem , its the people that use it , that's the real problem.

Good. Maybe people will pick up a book or go for a jog now.

Originally posted by Agent008
Good. Maybe people will pick up a book or go for a jog now.

Irony .... much ? Did you feel any as you typed that reply lol.

Speaking about irony , Isn't it amusing that anti-spammers need protection from spammers. The only winner here being CloudFlare .... Top end prices start at around $3000 per month.

The Public Prosecutor has initiated an investigation into the DDoS attack on spam fighter Spamhaus. The Dutch hoster Cyber ​​Bunker would sit behind that attack. Or Cyber ​​Bunker official suspect in the case, is currently not known.

The DNS amplification attack relies on two main weaknesses in the structure of the Internet. Many DNS resolvers accept incoming requests from all IP addresses, and many providers do not monitor or outgoing IP traffic is manipulated. In this case, Cyber ​​Bunker ip addresses are spoofed at Spamhaus DNS requests to different DNS resolvers. DNS resolvers that sent the answer to the servers of Spamhaus. A DNS replies usually contains much more data than a DNS request, allowing the attacker is relatively little data to send toward the dns resolver can establish a major attack. When Spamhaus company CloudFlare turned on to its servers to protect against the attack, were the servers that company attacked. Other providers might suffer from the pressure that puts the attack on the DNS system.

Source with broken English via Google translate.

reply to post by Rule34


Yes I did think of the irony of it smart @$$

PS love your user name!

I just heard about this, they're saying it could shut down our internet........


Great timing when brazil and china ditch our money system

OPERATION STOPHAUS:

We demand that The Spamhaus Project, an offshore criminal network of tax circumventing self declared internet terrorists pretending to be 'spam' fighters, seizes the following activities:

1: Listing personal information, photos, etc, without a permit of applicable authorities, such as the information commissioners office (UK), often combined with slander, at the ROKSO part of their website.

2: Listing any and all IP space that is not a source of spam, triggering a honeypot, on a per-ip basis, for a defined time, with autoremoval after this period of time.

3: Listing non-related, non SPAM originating IP space, both of ISPs, their carriers and peers, in an effort to blackmail/extort those ISPs, Carriers and Peers to discontinue service to certain clients Spamhaus doesn't like for whatever 'reason'.

4: Stop using slanderous terms, such as 'criminal' or 'illegal' or 'fraud' in cases where under applicable (residence of the end-user) law, this is not the case at all. In case Spamhaus thinks
something criminal is going on, they have the legal obligation to hand it over to law enforcement, not blackmail people into getting it disconnected without legal process.

5: Compensate each and everyone ever listed, for damages, regarding the manhours and financial resources spent, to repair the damage done by listing non SPAM related IPs. (most of the listings on spamhaus serve no technical purpose whatsoever, and are only there to blackmail people).

Spamhaus has recently blackmailed several multinational carriers into disconnecting clients, breaching their own contracts, without any legal procedure whatsoever, and pretty much everyone on the internet so-far has feared spamhaus too much to report them to the authorities, wether they have a legal department to do so or not. reporting spamhaus to the authorities has shown to result in more listings, such as on their DROP list, which breaks access to significant parts of the internet completely. Spamhaus advertising its use as such, constitutes to breach of the UK Computer Sabotage Act. they know that by listing anything on DROP, they're breaking internet access (at least partially), and use it as a means to terrorize people into giving them their way.

For more information about the Spamhaus project, and their network of offshore limiteds they use to circumvent taxation (claiming to be a non-profit in the UK, meanwhile selling illegally harvested and processed datafeeds and whitelistings through companies registered on the bahamas and cyprus), we refer to our forum at www.stophaus.com...


WE ARE LEGION
WE NEVER FORGET
SPAMHAUS SHOULD HAVE EXPECTED US.

Source

The cyberwars have began and some one is firing teh lazers !

I do have mixed opinions on this to be honest but the internet MUST remain free and open without censorship other wise things will just be pushed down into the darknet and its not a place you want to vist, Cyber bullying by anyone is not acceptable. Looks like they have messed with the wrong people this time.

VIVE LA REVOLUTION !

Originally posted by Agent008
reply to post by Rule34

 

Yes I did think of the irony of it smart @$$

PS love your user name!

Sorry couldn't resist that one Agent , gave you a star for my cheekiness lol Interesting avatar , very anonymous like.

And yes "Rule number 34 of the internet" as you know binds the interwebz together and remember no exceptions !!!1!!!1