attack

When political tensions flared last month between Georgia and its large neighbor to the north, the country was ready to block Internet traffic from Russia, hoping to avoid the denial-of-service attacks that shut down Internet service in Estonia for several days in 2007. Instead, most of the DoS attacks that were directed against Georgia came from an unlikely place: the United States.

"Russia is one of the most capable countries when it comes to launching system intrusion hacking attempts, distributed denial-of-service attacks, and operation of botnets," said Don Jackson, director of Threat Intelligence for SecureWorks. "Yet you'll notice the number of attacks coming from Russia are very low."

SecureWorks on Monday released a list ranking the countries with the most infected computers enlisted for use with botnets. On that list, Russia ranks 7th, far behind the United States, China, Brazil, South Korea, Poland, and Japan. The reason Russia is so low, Jackson said, is that hackers from Russia don't attack from within Russia.

Instead of attacking using Russian IP addresses, Jackson said, the hackers who wanted to attack Georgia used "computers and control servers located in Turkey while the bots (the infected computers) that they controlled were mostly in the United States." … Read more

Updated at 2:25 p.m. PDT with "BusinessWeek" comment.

Hackers have broken into BusinessWeek's online site and set up an attack scenario in which visitors to a section of the site could have their own computers compromised and their data stolen, a security researcher said on Monday.

It's unclear how long the site has been compromised and there is no evidence that BusinessWeek.com readers have been affected, but also no evidence that they haven't, said Graham Cluley, senior technology consultant at Sophos.

The hackers used an increasingly common form of attack called SQL … Read more

The Georgian embassy in the U.K. has accused forces within Russia of launching a coordinated cyberattack against Georgian Web sites, to coincide with military operations in the breakaway region of South Ossetia.

Speaking to ZDNet UK on Monday, a Georgian embassy spokesperson said that Web sites had been unavailable over the weekend, claiming this was due to Russian denial-of-service attacks.

"All Georgian Web sites have been blocked," said the spokesperson. "Georgia is working on redirecting Web traffic."

At the time of writing, the Web site for the Ministry of Defense of Georgia was unavailable for … Read more

On Tuesday, the FBI announced the indictment of a former technology director accused of hacking into the system at a Houston organ bank and deleting patient files.

The indictment alleges that Danielle Duann, 50, illegally accessed and damaged LifeGift Organ Donation Center's database in November 2005, shortly after she was fired as director of information technology for the company. She is alleged to have deleted organ donation database records and accounting invoice files from the network. LifeGift said that all of the records were restored from a backup and that no patients were put into jeopardy.

At the time … Read more

China and the U.S. lead the world as the two biggest sources of Internet attack traffic, according to a report published by the content distribution company Akamai.

Akamai, which operates a global server network that helps distribute and accelerate rich media across the Internet, released its first quarterly "State of the Internet" report on Thursday.

One of the key findings of the report revealed that China and the U.S. were home to the greatest percentage of Internet attacks, such as denial of service attacks and hacking attempts for the first quarter of 2008. Almost 17 percent … Read more

A distributed denial-of-service attack on Radio Free Europe/Radio Liberty this week is the latest attack in a resurgence of hacktivism (hacking + activism) in the Internet underground, a security researcher says.

The attack knocked out or interrupted eight RFL/RL sites, starting with Belarus and including Kosovo, Russia, and Azerbaijan, according to the news agency's Web site.

At one point the Web sites were getting up to 50,000 fake hits per second from other machines. The attack started on April 26, the 22nd anniversary of the Chernobyl nuclear accident and RFE/RL was going to be covering demonstrators … Read more

Progress was made Monday in mitigating thousands of SQL-based Web sites injected with malicious Javascript code. However, one security expert says we can expect more such attacks in the near future.

A traditional SQL injection attack allows malicious attackers to execute commands on an application's database by injecting executable code. "What's different about this latest attack is the size and the level of sophistication," said Jeremiah Grossman, CTO of WhiteHat Security.

In the past, attackers have gone after a small niche of the Internet--say travel sites or sports sites--but with this latest attack, attackers have a … Read more

When you think of things related to science, music may not make the top of your list.

But the folks involved with a small collective called ArcAttack would like you to change your associations.

ArcAttack is all about one thing: building singing Tesla coils and crafting entire musical performances around them. For some time, at events like Dorkbot and other geekfests, the team--Joe DiPrima, Oliver Greaves, and Tony Smith--had been pulling off straightforward demonstrations of their creations. But they were synchronizing the machines to other people's music and not adding much in the way of their own innovations besides … Read more

Apple has released a QuickTime security update to address "highly critical" security flaws in its media player that could allow malicious attackers to take control of a user's system.

The security flaws affect QuickTime 7 versions running on the Mac OS X and Windows. Users are advised to update to QuickTime 7.4.5, according to an Apple advisory issued Wednesday.

Apple issued 11 security updates designed to prevent malicious attackers from disclosing users' sensitive information, executing arbitrary code, or causing an application to suddenly crash.

Users can be hit with such evil dealings when visiting a … Read more