These clowns are using Twitter as a platform and nothing is being done about it.
LIZARD SQUAD is Back. Planning XBL Attack. "Biggest attack yet". [UP: XBL/PSN Down]
- Thread starter Horse Armour
- Start date
These clowns are using Twitter as a platform and nothing is being done about it.
I'm sure they can continue to coordinate a DDOS attack on IRC and be okay with the loss of a Twitter account. It's something and nothing all at the same time.
Twitter is doing nothing to take down accounts that are actively admitting to breaking the law.
DenogginizerOS
BenjaminBirdie's Thomas Jefferson
Can Sony's engineers fix anything that would stop a DDOS attack? No. So, why are they telling people their engineers are working on the problem? It suggests to me there is possibly more to this.
demosthenes
Member
You can't see the difference between Twitter and CNN? Well, ok then.
So, have you actually read what that article says? Just wondering.
Because what I see are ways for network admins and ISPs to prevent people inside of their network becoming part of the attack; at least from what I am reading, the article doesn't explain how a person receiving the attack can block it. Maybe you can point that out to me?
Yeah, disturbing or like... an over exaggeration/joke maybe >_>
It probably was in bad taste though, so for that I apologize.
GrooveCommand
Member
"An NTP amplification attack begins with a server controlled by an attacker on a network that allows source IP address spoofing (e.g., it does not follow BCP38). The attacker generates a large number of UDP packets spoofing the source IP address to make it appear the packets are coming from the intended target. These UDP packets are sent to Network Time Protocol servers (port 123) that support the MONLIST command."
More information can be found here
edit: to add, this also means that because the source IP is spoofed there is no way to track it back to it's point of origin via the IP Address. I'm sure there are other ways of tracking a packet back to it's origin but it's rather difficult to do that.
esmith08734
Member
Stupid question, but what's stoppint the police from tracking the IP address from the device accessing Twitter?
DAREALGUMMY
Member
So what? It's not that hard to make another account or go elsewhere. As long as people keep bringing them up, it'll continue. They're seeking attention and everyone is giving it to them. I doubt that will change if Twitter was no longer available.
It's a very generic catch-all response.
Probably sounds better than "we are not doing anything, please understand".
It's not about communication amongst themselves, but getting reactions from everyone else plus the general exposure.
If they crop up again with another account, they'll need to publicize it again, and hopefully Twitter will keep actively terminating their accounts.
So Twitter should just do nothing? They should not be given a platform anywhere in which to parade their attention seeking bullshit.
astroturfing
Member
are there any estimates on how many infected computers they need in their botnet to bring down PSN or XBL? a 100,000? millions? because i have no clue.
what if someone wanted to bring down Google and their exponentially more robust defenses? would you theoretically need maybe billions or even tens of billions of computers in your botnet to bring down Google, so it's impossible? that's what i'm thinking in my head but reality might be completely different lol.
some numbers would help me understand this whole thing.
what if someone wanted to bring down Google and their exponentially more robust defenses? would you theoretically need maybe billions or even tens of billions of computers in your botnet to bring down Google, so it's impossible? that's what i'm thinking in my head but reality might be completely different lol.
some numbers would help me understand this whole thing.
Going over their means of communication is a waste because coordination can be done practically anywhere. They are free to take down the Twitter account but good luck going after an IRC chatroom where the real meat and potatoes are probably happening. Companies should figure out how to operate in spite of the environment of apathetic and attention-seeking hacks, if at all possible. They are not going away anytime soon.
I'm pretty sure Twitter, one of the largest sites in the world, can implement a way to stop certain hashtags from trending and shut down their accounts.
Pestilence11
Member
lol
The Twitter accounts should be taken down regardless of whether it will "help" or not.
On this, we agree.
Manp
Member
that article explain how the attack works and how it can be prevented or at least mitigated by fixing the vulnerabilities on the open NTP servers used to conduct the attack.
said NTP servers are used by the attacker to generate traffic that hits the target of the attack. basically the attacker ask these servers for stuff and provide the ip of the target as the ip to send answers to, and by doing so generating a huge amount of traffic to the target servers that they can't cope with.
the NTP servers used by the attacker are in no way under the control of the target so there is no way any of the solution explained to mitigate the attack can be actually used by the target to stop the attack.
what the article is saying is that if you are running a public and open NTP server you should know better and not leave it unpatched so an attacker can use your NTP server against a third part.
from the point of view of the target (Sony in this case) there are other things that can be done, but are not explained in that article you linked.
CaptainTiptop
Member
I just got an ad for DDoS protection on the bottom of mobileGAF.
DAREALGUMMY
Member
Twitter has shitty policies that should be changed yes, but everyone thinking a closed account will stop this are kidding themselves. This is the internet, people will share things across all social media sites. People have a problem with giving things attention that it wants to create when it can be ignored.
SirMossyBloke
Member
Sony better extend the last week sale on PSN if this keeps up. I just want to buy Alien Isolation for $39. I'll be pissed if I can't.
Why are they doing this? For attention/fame. How they're getting all this attention/fame? Via Twitter.
If Twitter keep blocking their accounts, there will be no place for them to e-dickwave anymore. Plus DDoS'ing is a crime, and there's no motive for Twitter to not ban the accounts.
They will be suspended eventually I'm sure. It's a hollow victory though any way you slice it.
gutter_trash
Banned
Nicktendo86
Member
Having issues with Nintendo network as well now.
Fuck.This.Shit.
Fuck.This.Shit.
Northeastmonk
Gold Member
Twitter must of taken the week off. I wonder if anyone is still in their offices. Watch as they come back to a lawsuit Monday morning. Who fails on a company in which they use their services to upload pictures all the time? Shame on Twitter. Shame.
shungokusatsu
Member
Sure, but at what costs? What isn't covered is that DDoS mitigation services are insanely expensive. They can be in excess of 100K+ per incident, or double that for active and ongoing service. There's also a slew of negative problems that come from mitigation services because of how heavy handed they are.
The attack can be mitigated through different filters and blocking DNS requests coming from open DNS hosts at the target level, as explained in the article. I guess taking down your whole network instead of paying your top tier network guys to come in on a holiday to mitigate damage might be cheaper for Sony.
There are plenty of places to e-dickwave other than Twitter in this day and age. It wouldn't be the best option for attention but it is an option. You know people would be going there to find out what's happening regardless of the medium of the message.
Yes. But you know what the word reflection means? Lets make a laser pointer analogy.
PSN is an eye. 3rd party NTP servers are mirror's. DDoS attackers shine a lot of laser pointers on the mirror so that the reflection (that is also amplified) goes right into the attacked eye (PSN).
Sony can't do anything because they don't have admin access to all 3rd party NTP servers on the planet.
Led_Zeppelin
Member
That is mostly for NTP compromise servers to do, and not for the ones being attacked. NTP servers are basically used to amplified the traffic on the attacked server by using exploits.
There are actions to be taken from Sony side that could help them to mitigate the issue but those aren't listed there.
Manp
Member
and that's fine if you're running an NTP server.
in this case Sony is the target, NOT the one running the NTP servers used to perform the attack (which are the one that should be patched).
I guarantee Sony has lost far more than that due to this incident. 100k is nothing.
DAREALGUMMY
Member
Exactly.
Sure but then you run that slippery slope of censoring things and having restrictions. I'm not arguing for this group at all. People just need to understand that if people are doing things "just for the lulz", they'll do it. People will talk and it'll be all over websites and the news like it is now.
yeah thats how targeted advertising works unfortunately...
VincentMatts
Member
at the end of the day, these hackers are probably doing this to get paid. If I was Sony I would do the same thing. It sends them a message, I ain't going to pay you I'll turn off my own network.
Northeastmonk
Gold Member
Are they stock photos from 2001? You can always count on the news agencies to take footage from E3.