Stories
Slash Boxes
Comments
Search

News for nerds, stuff that matters

Slashdot Log In

Log In

Create Account  |  Retrieve Password

DoS Attacks on Estonia Were Launched by Student

Posted by Soulskill on Thu Jan 24, 2008 11:04 PM
from the modern-techniques-for-making-people-hate-each-other dept.
Government Security Politics
As_I_Please alerts us to the fact that a 20-year-old Estonian student has been fined for participating in DoS attacks against various Estonian political and governmental websites last May. The situation was notable because it escalated tensions between Estonia and Russia when the latter was accused of initiating the 'cyber-attack'. Quoting: "The fact that a single student was able to trigger such events is particularly ominous when you consider just how many potential flashpoints exist between various countries all over the world. The DoS attack against Estonia is an excellent example of how a cyberattack carried out by a 20-year-old student in response to real-life events further exacerbated an existing problem between two nations."
+ -
story

Related Stories

[+] IT: Russia Accused of Cyber-War Against Estonia 373 comments
earthlingpink writes about the ongoing DDoSing of Estonia. The Guardian is reporting that Russia stands accused of engaging in a three-week-long series of cyber-attacks. Government, banking, and media websites have been targeted. It is unclear whether the attacks are sanctioned or initiated by the Russian Government, but Estonian authorities believe that to be the case. NATO has sent security experts to Tallinn to help beef up defenses. The Estonian defense minister said, "At present, NATO does not define cyber-attacks as a clear military action. This means that the provisions of... collective self-defense, will not automatically be extended to the attacked country... this matter needs to be resolved in the near future."
Submission: Student Launched DDoS Attacks on Estonia by As_I_Please (471684)
[+] Your Rights Online: In Australia, Bosses May Get Power To Snoop On Emails 287 comments
Numerous readers noted the proposal by the Australian government for legislation to allow employers to snoop on employees' email and IM conversations. This is being proposed in the name of protecting the infrastructure from terrorism. The attorney-general cited the Estonian cyber-attacks as a reason why such employer monitoring is necessary in Australia — never mind that the attacks were perpetrated by a lone 20-year-old and not by a foreign government or terrorist. The law permitting intelligence agencies to snoop on citizens without permission expires this June, leading to the government's urgency to extend and expand it. The chairman of Electronic Frontiers Australia said, "These new powers will facilitate fishing expeditions into employees' emails and computer use rather than being used to protect critical infrastructure. I'm talking about corporate eavesdropping and witch-hunts... If an employer wanted to [sack] someone, they could use these powers."
[+] News: Expert Dissects Estonian Cyber-War 172 comments
Stony Stevenson points out an iTnews summary of a security researcher's account of the cyber-attacks on Estonia last year. The full report [PDF] is also available. We've discussed this internet-based conflict in the past. From the report: "In the days leading up to the attack, numerous clues pointed to a large-scale operation that was being planned online. Russian-language Internet discussion forums were abuzz with preparations for an online attack. Three days before the expected onslaught, Estonia planned to release the news of the coming strike in hopes that European media attention would oblige the EU to pressure the Kremlin to intervene, whether or not the attacks emanated from the Russian authorities."
This discussion has been archived. No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

DoS Attacks on Estonia Were Launched by Student 50 Comments More /

 Full
 Abbreviated
 Hidden
More
Loading... please wait.

  • In Soviet Estonia... (Score:5, Funny)

    by Anonymous Coward on Thursday January 24 2008, @11:06PM (#22177604)
    Computers launch students... into space like great hero cosmonauts!
  • I read this article [news.com] at news.com earlier & am now a little bit stupider. Check out this line:

    The distributed denial of service (DDoS) attacks, which some security experts have alternatively called a flash mob or the first-ever cyberwar,


    WTF? A DDOS is a flash mob?

  • In other news... (Score:2, Funny)

    by Anonymous Coward
    it was found that the recent DoS attempt against arstechnica was launched by slashdot users everywhere

  • An exellent example... of what? (Score:5, Insightful)

    by gnud (934243) on Thursday January 24 2008, @11:18PM (#22177696)
    The DoS attack against Estonia is an excellent example of how a cyberattack carried out by a 20-year-old student in response to real-life events further exacerbated an existing problem between two nations.

    Eh. How about the _only_ example?

  • Russia accused... (Score:5, Insightful)

    by unbug (1188963) on Thursday January 24 2008, @11:21PM (#22177724)
    So on what basis did Estonia accuse Russia of staging those attacks? This story was picked up all over the world and nobody bothered to check if they actually had anything resembling a proof?

    • Not the first time (Score:5, Insightful)

      by r_jensen11 (598210) on Thursday January 24 2008, @11:37PM (#22177860)
      How was it that the United States got involved in Iraq, exactly?

      • Re: (Score:2, Informative)

        by schnikies79 (788746)
        By Saddam Hussein invading Kuwait.

        Say what you want. Thats where it all started.

        • Re:Not the first time (Score:4, Insightful)

          by ScentCone (795499) on Friday January 25 2008, @12:21AM (#22178150)
          By Saddam Hussein invading Kuwait.

          Say what you want. Thats where it all started.

          I'm sorry, this is slashdot. Please keep the facts out it, would you? Next you're going to cite the fact that it was Bill Clinton's stated policy to see Saddam removed from power, too.

          • Re:Not the first time (Score:4, Interesting)

            by ptbarnett (159784) on Friday January 25 2008, @01:28AM (#22178444)

            Next you're going to cite the fact that it was Bill Clinton's stated policy to see Saddam removed from power, too.

            Along with just about everyone else on both sides of the political aisle.

            I've noticed that now there's a "study" about all the lies that the Bush administration told about Iraq, back when almost everyone else was apparently telling the same lies, or at least believing them.

            There's an excerpt on Yahoo News of an interesting interview from "60 Minutes", with the guy that interrogated Saddam after he was captured. According to this interrogator, Saddam said he didn't believe that Bush would actually order the invasion -- he thought that there would be a few days of air strikes, and it would be over. Saddam survived it when Clinton tried that, and Saddam thought he could survive it again. And he admitted that's why he continued to let everyone believe that he had various weapons of mass destruction.

            I always wondered why Saddam behaved like he had something to hide, when he really didn't. I guess he thought the WMD threat would discourage his enemies -- which included most of the Middle East, various Western democracies, and a large percentage of the people in his OWN country.

            • Re:Not the first time (Score:5, Informative)

              by blirp (147278) on Friday January 25 2008, @02:15AM (#22178668)
              I've noticed that now there's a "study" about all the lies that the Bush administration told about Iraq, back when almost everyone else was apparently telling the same lies, or at least believing them.

              'Everybody'? I don't know what planet you where on back then, but most people in Europe didn't buy the theory of a link to Al-Qaeda. Most governments of Europe also wanted the weapons inspections to continue instead of invading.
              Personally, I expected an invasion to become the quagmire the current Vice President of USA predicted. And I, along with a lot of people, expected it to only enrich certain oil companies. I even participated in a protest march for this.

              M.

              • Even most people in the countries (country?) who supported USA didn't believe the link - at least in the UK for the people I know. And given the 'Sorry, World' apology from the US, I'd guess the situation was pretty similar even there. But I guess most of us don't get the same sort of say as big oil in these matters.

            • Re: (Score:3, Informative)

              by chthon (580889)

              I have a read an explanation over at The Strategy Page [strategypage.com]. For him, it was a bluffing to win at two fronts. Iraq and everything west of it is Arab, at the east you have Iran. Arabs live in fear of the Persians. This dates back more than three thousand year.

              Having his war at the beginning of the eighties with Iran gained him much respect in the Arabic world, because he stood up to them. The bluff with the WMDs was in the same category, it was to scare off the Iranians and give confidence to the Arab world that

        • Re: (Score:3, Insightful)

          by Anonymous Coward
          If you're going to go that far back, just go back a little further when we got involved with entangling alliances in the region and meddling in the affairs of foreign governments. Had we not armed Saddam Hussein, for example, he might not have been strong enough to invade Kuwait. But we had to arm him, because the Shah of Iran, whom we propped up, got toppled by the Ayatollah who came to power by exploiting the dissatisfaction with the corruption of the US backed Shah, and we feared him spreading his power

        • Probably not. (Score:5, Interesting)

          by jd (1658) <imipak@yahCOFFEEoo.com minus caffeine> on Friday January 25 2008, @01:06AM (#22178356) Homepage Journal
          Before that, the USA was arming Iraq to fight Iran. Some time prior to that, Iraq went through numerous coups, a British invasion, two monarchies and a partridge in a pear tree. Prior to the pear tree, Iraq was owned by the British. Actually, two distinct regions (Basra and Baghdad) were owned by the British. To save on ink, when drawing maps, they called the group "Iraq". Before that was the Ottoman Empire, who - ultimately - can be blamed quite reasonably for most of the current blood-feuds in Europe and the Middle East. Before that were the Mongols, who can be blamed for just about everything else. Before that, the Islamic forces of Khalid ibn al-Walid decimated the area and took it out of Persian control, who in turn invaded before they even became Persians. Nothing like getting ahead of themselves! Some time before that, Alexander the Great made a royal mess of the area. Before that, there were endless wars between the Assyrians, the Akkadians, the Sumerians (who were largely obliterated), assorted other nomadic and semi-nomadic tribes, and whatever culture lived there first of which there is almost no trace left.

          In other words, there is no meaningful "first", unless you want to go back around 10,000 years. Almost everything that happened after that point was in direct retribution to what had happened before. That's one reason it will take a lot of effort to calm the region down - ten thousand years is a long time to build up grdudges and resentments -- and don't think a single one of them has been forgotten.

          Getting back to the main topic, just as an aside, this is why societies can't survive for very long on a diet of paranoia, fear and resentment. Sooner or later, you'll get people who hate each other less than they hate some imagined collective enemy, and the shit will hit the fan at a speed approaching mach 2. I'm surprised that this sort of thing doesn't happen more often - students get an even rawer deal than most, even at the best of times, naturally form into groups, and generally have significant combined intellect and skills. This is probably the worst group to infuriate and should really be the first group to focus on getting support from.

          • Re: (Score:3, Informative)

            by octal666 (668007)
            Just one thing, Alexander the Great was after the Persians. And I think you forgot Babylon. But yeah, in essence, Iraq is the craddle of civilization, writting was discovered there and probably the first war that deserved that name was also fought there. What a place to invade!

    • Re:Russia accused... (Score:4, Informative)

      by tehbunneh (1178277) on Friday January 25 2008, @01:44AM (#22178508)
      Maybe if you would knew a bit of that situation you wouldn't say that. Because the one who got caught was also an ethnic Russian. Born in Estonia to Russian parents. And he said he got the idea from various blogs and forum posts which called people to attack Estonian servers. These blogs and forums were in Russian servers. Besides the IP addresses showed the majority of the attacks to be from Russia. The guy in Estonia was just easier to arrest.

      • Re: (Score:2, Informative)

        by unbug (1188963)

        Maybe if you would knew a bit of that situation you wouldn't say that. Because the one who got caught was also an ethnic Russian. Born in Estonia to Russian parents.

        Ah, I see. This, of course, proves beyond any doubt that he was a sleeper agent planted in Estonia by the KGB. Also, it is a well-known fact that every ethnic Russian is directly controlled by the Russian government anyway.

        And he said he got the idea from various blogs and forum posts which called people to attack Estonian servers. These blogs and forums were in Russian servers.

        Right. It is safe to assume that this entirely non-obvious idea was planted on those blogs by Russian secret services. Only their weird minds could have conceived of something like that.

        Besides the IP addresses showed the majority of the attacks to be from Russia. The guy in Estonia was just easier to arrest.

        I sincerely hope that the valiant Estonian government will ultimately manage to get them all. As a f

  • Not Acting Alone (Score:5, Insightful)

    by mandelbr0t (1015855) on Thursday January 24 2008, @11:23PM (#22177752) Journal

    While they may not have found evidence of any other people involved, it's unlikely that a single person could establish a botnet large enough to overwhelm anything on his own. The only answer I can think of is education - botnets exist because the owners of the zombie PCs simply don't recognize that it's a zombie. There is certainly an overall lack of regulation, too. As a domain owner, I see lots of abusive traffic and have absolutely no legal recourse to punish a perpetrator. Responsible network owners often help, but there's so few networks that are responsible that I usually assume they're not, forcing me to do what little I can at my own site to prevent further abuse.

    For the student's part, he was only fined (I couldn't find how much in TFA). Not much deterrent to prevent him from doing it again. No leverage to find out who he was working with. The lack of clear laws in any country makes prosecution of such actions impossible. As a domain owner, I'd like to see civilized countries show some direction toward making prosecution of such activities a reality. Until then, it's "you hack me, I hack you" which is completely counterproductive.

    • Re:Not Acting Alone (Score:4, Insightful)

      by Anonymous Coward on Friday January 25 2008, @12:17AM (#22178134)
      While they may not have found evidence of any other people involved, it's unlikely that a single person could establish a botnet large enough to overwhelm anything on his own.

      I disagree. He wouldn't necessarily have to do anything to build a botnet himself, just have access to a C&C network built by someone else. He could gain access by renting the network, or even stumbling on an unprotected C&C server. There's a few out there, believe it or not. So yeah, other people may have created the botnet, but he still could have been acting alone when launching his attack.
      • You mean to tell me there is no way for a network admin to tell when a computer on their network is an infected botnet drone? I claim poppycock on that. Comcast and others for example detect BT networks enough to disrupt them why can't they do the same for the botnets? Oh, their isn't a threat of lawsuit in botnets....I see...

        • Re: (Score:3, Informative)

          by dissy (172727)

          You mean to tell me there is no way for a network admin to tell when a computer on their network is an infected botnet drone? I claim poppycock on that. Comcast and others for example detect BT networks enough to disrupt them why can't they do the same for the botnets? Oh, their isn't a threat of lawsuit in botnets....I see...

          I, and anyone familiar with the BT protocol, can describe how to detect the BT protocol.
          Would you mind sharing with us the 'botnet' protocol?
          I realize there is no botnet protocol, but actually hundreds (or thousands) of them, each different, for one type of botnet drone software. These also change, in that new ones are introduced, and old ones updated. I realize that, and hope you see it now too.

          What exact type of traffic are you claiming can be detected?
          The 10 or 20 packets sent once that went towards t

  • The War on Cyber-Warfare (Score:5, Interesting)

    by T-Bone_142 (917711) on Thursday January 24 2008, @11:25PM (#22177766)
    Is it just me or have there been a lot of stories about "cyber wars", "cyber-attack"... lately (especially on slashdot). Is this going to become the next big thing, "The War on Cyber-Warfare" with new laws contently coming in place to help protect everyone from evil "hacker" teenagers bent on destroying the world, which no doubt will take away even more of the dwindling freedoms the american people still have left?

  • Obligatory Soviet Russia Jokes Thread (Score:5, Funny)

    by Gazzonyx (982402) on Thursday January 24 2008, @11:35PM (#22177846)
    I hereby declare a single thread dedicated to "In Soviet Russia..." jokes; we might as well keep them all together, as there's too much material for them in this story. I'll kick it off.


    In Soviet Russia, you attack Estonia!


    What do you guys got?

  • Remakes of Hackers and The Net, anyone?
  • Not to knock on anyone for being frugal, but they should really upgrade to something more secure than DOS.

  • Headline *very* misleading! (Score:3, Insightful)

    by minimum (719615) on Friday January 25 2008, @12:51AM (#22178288)
    Only one kid DDOS'ed goverment and news sites and created that mayhem? Right. So nobody bothers to mention that the student who was arrested had a Russian name - Dmitri Galushkevich ? Sure he may have the citizenship but he's not really Estonian. Just offspring of an immigrant. And he wasn't the only kid around here who helped to DDOS.

  • You know what would be funny? (Score:2, Funny)

    by Anonymous Coward
    Someone should create a mockumentary where a couple of hackers destroy worldwide economy and bring about the end of civilized life. They should do so using only tools that any hacker would know to be completely inadequate to do the job. Use vim, show screenshots of obfuscated perl scripts (especially variants of "Hello, world!"), and explain the dangerous uses behind commands like `kill|killall`, `dos2unix` (= denial of service 2 US networks integrating x86), mogrify and crash (because they sound menacing),

  • Just as I said (Score:3, Insightful)

    by saikou (211301) on Friday January 25 2008, @01:55AM (#22178574) Homepage
    Just as I said when original discussion happened [slashdot.org], Russian government was not responsible. Now, is Pentagon still ready to bomb cyberattackers? If yes, then next student with a grudge will finish off a country or two before we have a chance of intelligent machines or human-made bacteria to kill us all.

  • What A Crock (Score:4, Insightful)

    by Jane Q. Public (1010737) on Friday January 25 2008, @02:08AM (#22178638)
    Quote: "The fact that a single student was able to trigger such events is particularly ominous when you consider just how many potential flashpoints exist between various countries..."

    What nonsense. If governments put important messages on such "secure" places as roadside billboards, for example, then they should expect "hacks" like moustaches drawn on them, etc.

    Others are not to blame if the government is clueless. The fact that it was so easy to do is a great indication that the government was in fact clueless. If they want to put something important somewhere and keep it "secure", then they are responsible for taking at least minimal measures to make sure that it is, in fact, secure.

    They are just looking for someone to blame for their own incompetence.
  • It won't be popular here, but I will say it. The greatest risk to stable society is its young men. It's not surprising that Australian first peoples used to put a lot of effort into controlling them, that the Amish let them live outside their society till they get it out of their system, and that other societies have put them into armies under strict discipline. The combination of increasing strength, hormonal confusion, and social pressure makes them volatile and dangerous. Fifty percent of us have been t
    • Well, considering that a breeder would have rater too little time on his hands to do it... with his wife and all his kids.

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2009 Geeknet, Inc.