Menu

e-bay Security Practices under investigation by US States      

Biggest ever Distributed Denial of Service (DDoS) attack on Cloudfare Networks       

Bitcoin Exchanges continue to suspended withdrawal operations      

Snowden accessed NSA confidential data using web scrapping tools      

Barclays Bank probing the breach of client data sold to rogue City traders      

New Snapchat Flaw Can DoS and Spam iOS and Android       

Biggest ever Distributed Denial of Service (DDoS) attack on Cloudfare Networks

Published on: 2/13/2014

Cloudfare experienced the biggest ever Distributed Denial of Service (DDoS) attack on a French website. The attack was confirmed on Twitter by CloudFlare's CEO Matthew Prince, who said that it's "the start of ugly things to come" because "someone's got a big, new cannon." The attack reached the record breaking capacity of 325-400 Gigabits per second. Before this only Spamhaus, has faced such high capacity attack during March last year.

Cloudfare experienced the biggest ever Distributed Denial of Service (DDoS) attack on a French website. The attack was confirmed on Twitter by CloudFlare's CEO Matthew Prince, who said that it's "the start of ugly things to come" because "someone's got a big, new cannon."

 

The attack reached the record breaking capacity of 325-400 Gigabits per second. Before this only Spamhaus, has faced such high capacity attack during March last year. IT is suspected that attackers may have used NTP protocol to amplify DDoS attack on Cloudfare NTP servers. Using  NTP attacker may send requests with spoofed IP address and NTP reflection behavior cause a flood of data sent back to the spoofed client's IP address.

 

Couldfare suspect that "the attacker used 4,529 NTP servers running on 1,298 different networks. On average, each of these servers sent 87Mbps of traffic to the intended victim on CloudFlare's network. Remarkably, it is possible that the attacker used only a single server running on a network that allowed source IP address spoofing to initiate the requests."



Hackers using Internet Explorer Vulnerability to attack IE users | Use Microsoft EME Toolkit to Protect

Security firm FireEye revealed that hackers have been using a previously unknown security flaw in Microsoft Internet Explorer 10 to attack users. The users targeted for attacks include the visitors to U.S. military veterans site. The hackers broke into the website of U.S. Veterans of Foreign Wars and placed a malicious link to redirect site users to the malicious website. The attack does not affact the users of Microsoft Internet Explorer 11. ...
Read More

Syrian Electronic Army hacked MarkMonitor targeting brand damage to Amazon, Facebook,Google and Yahoo

MarkMonitor provides brand protection services including domain management services and claim to have a big majority of Forture 100 organization to be it's customers. Syrian Electronic Army (SEA) posted on their Twitter account that Markmonitor took down the management portal after it was hacked by SEA. The attempt was made to actually hack the high profile organizations including Google, Amazon, Facebook and Yahoo which are client of MarkMonitor.
Read More

Bitcoin Exchanges continue to suspended withdrawal operations

Bitcoin Exchanges continue to suspended operations and three exchanges has already suspended the withdrawals. Due to attack, Bitcoin currency is falling on all exchanges due to intensified attack. The value on MtGox exchange has plunged from $926 on 5 February to $530 on 12 February. A spokeswoman for the Bitcoin Foundation Jinyoung Lee Englund said This is a denial-of-service [DoS] attack. Whoever is doing this is not stealing coins, but is su...
Read More

Las Vegas Sands Casino website hacked | Home Page Defaced and Data Exposed

Las Vegas Sands Casino website was hacked and attackers defaced website home page. The website has been down since more than 3 days while U.S. Fedral agency was still investigating the hack. The attack started on Monday and first took down the email system. This is still to confirm if Customer's data including the credit card numbers are exposed to the attacker. Spokesman Ron Reese said "While we have been able to confirm that certain core ope...
Read More

The largest website in Sweden spreads malicious code.

The malicious ad that was running on Aftonbladet also had a script to check the browser, probably to avoid false infections, and was only triggered when a user running Internet Explorer. When you visit Aftonbladet and you are using Internet Explorer you will get redirected to another website, hxxx://xxx.windowsdefence-sn.nl on this page a static image of a fake warning from Microsoft Security Essentials that they have detected viruses on your c...
Read More