A quick update on the DDoS of various govermental/commercial sites in the US and South Korea. At this point, the security researcher community is still working on the particular malware involved, the sites involved and how to remediate the ongoing threat. However, what is clear is that more or less well-known techniques are being used to debilitate the online presence of the aforementioned governmental/commerical entities.
First, the governmental is still operational. This attack, while problematic, doesn’t stop the country from working. If ftc.gov is offline, the economy doesn’t crash. Based on that alone, this attack cannot be labelled as cyberwarfare. That isn’t to say it isn’t significant or a problem. However, the key takeaway is that the governments of the US and S. Korea are still working and still operational. They do not rely on their public facing websites to work.
While more technically specific writeups are conducted (and conference calls and the like are being held around the clock on this one), some quick points. It does not seem that any new novel techniques are being used. A new DDoS toolkit, perhaps, but well-known attacks. Simply flood the target with requests beyond that which it can handle.
Latest Updates on Ongoing DDoS on Governmental/Commercial Websites in USA and S. Korea
