Stories
Slash Boxes
Comments
Search

News for nerds, stuff that matters

Slashdot Log In

Log In

[ Create a new account ]

DoS Attacks on Estonia Were Launched by Student

Posted by Soulskill on Fri Jan 25, 2008 12:04 AM
from the modern-techniques-for-making-people-hate-each-other dept.
Security Politics
As_I_Please alerts us to the fact that a 20-year-old Estonian student has been fined for participating in DoS attacks against various Estonian political and governmental websites last May. The situation was notable because it escalated tensions between Estonia and Russia when the latter was accused of initiating the 'cyber-attack'. Quoting: "The fact that a single student was able to trigger such events is particularly ominous when you consider just how many potential flashpoints exist between various countries all over the world. The DoS attack against Estonia is an excellent example of how a cyberattack carried out by a 20-year-old student in response to real-life events further exacerbated an existing problem between two nations."

Related Stories

[+] IT: Russia Accused of Cyber-War Against Estonia 373 comments
earthlingpink writes about the ongoing DDoSing of Estonia. The Guardian is reporting that Russia stands accused of engaging in a three-week-long series of cyber-attacks. Government, banking, and media websites have been targeted. It is unclear whether the attacks are sanctioned or initiated by the Russian Government, but Estonian authorities believe that to be the case. NATO has sent security experts to Tallinn to help beef up defenses. The Estonian defense minister said, "At present, NATO does not define cyber-attacks as a clear military action. This means that the provisions of... collective self-defense, will not automatically be extended to the attacked country... this matter needs to be resolved in the near future."
Firehose:Student Launched DDoS Attacks on Estonia by As_I_Please (471684)
[+] Your Rights Online: In Australia, Bosses May Get Power To Snoop On Emails 287 comments
Numerous readers noted the proposal by the Australian government for legislation to allow employers to snoop on employees' email and IM conversations. This is being proposed in the name of protecting the infrastructure from terrorism. The attorney-general cited the Estonian cyber-attacks as a reason why such employer monitoring is necessary in Australia — never mind that the attacks were perpetrated by a lone 20-year-old and not by a foreign government or terrorist. The law permitting intelligence agencies to snoop on citizens without permission expires this June, leading to the government's urgency to extend and expand it. The chairman of Electronic Frontiers Australia said, "These new powers will facilitate fishing expeditions into employees' emails and computer use rather than being used to protect critical infrastructure. I'm talking about corporate eavesdropping and witch-hunts... If an employer wanted to [sack] someone, they could use these powers."
[+] News: Expert Dissects Estonian Cyber-War 1 comment
Stony Stevenson points out an iTnews summary of a security researcher's account of the cyber-attacks on Estonia last year. The full report [PDF] is also available. We've discussed this internet-based conflict in the past. From the report: "In the days leading up to the attack, numerous clues pointed to a large-scale operation that was being planned online. Russian-language Internet discussion forums were abuzz with preparations for an online attack. Three days before the expected onslaught, Estonia planned to release the news of the coming strike in hopes that European media attention would oblige the EU to pressure the Kremlin to intervene, whether or not the attacks emanated from the Russian authorities."
This discussion has been archived. No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

DoS Attacks on Estonia Were Launched by Student 25 Comments More | Login /

 Full
 Abbreviated
 Hidden
More | Login
Loading... please wait.

  • In Soviet Estonia... (Score:5, Funny)

    by Anonymous Coward on Friday January 25, @12:06AM (#22177604)
    Computers launch students... into space like great hero cosmonauts!
  • I read this article [news.com] at news.com earlier & am now a little bit stupider. Check out this line:

    The distributed denial of service (DDoS) attacks, which some security experts have alternatively called a flash mob or the first-ever cyberwar,


    WTF? A DDOS is a flash mob?

  • An exellent example... of what? (Score:5, Insightful)

    by gnud (934243) on Friday January 25, @12:18AM (#22177696)
    The DoS attack against Estonia is an excellent example of how a cyberattack carried out by a 20-year-old student in response to real-life events further exacerbated an existing problem between two nations.

    Eh. How about the _only_ example?

  • Russia accused... (Score:5, Insightful)

    by unbug (1188963) on Friday January 25, @12:21AM (#22177724)
    So on what basis did Estonia accuse Russia of staging those attacks? This story was picked up all over the world and nobody bothered to check if they actually had anything resembling a proof?

    • Not the first time (Score:5, Insightful)

      by r_jensen11 (598210) on Friday January 25, @12:37AM (#22177860)
      How was it that the United States got involved in Iraq, exactly?

        • Re:Not the first time (Score:4, Insightful)

          by ScentCone (795499) on Friday January 25, @01:21AM (#22178150)
          By Saddam Hussein invading Kuwait.

          Say what you want. Thats where it all started.

          I'm sorry, this is slashdot. Please keep the facts out it, would you? Next you're going to cite the fact that it was Bill Clinton's stated policy to see Saddam removed from power, too.

          • Re:Not the first time (Score:4, Interesting)

            by ptbarnett (159784) on Friday January 25, @02:28AM (#22178444)

            Next you're going to cite the fact that it was Bill Clinton's stated policy to see Saddam removed from power, too.

            Along with just about everyone else on both sides of the political aisle.

            I've noticed that now there's a "study" about all the lies that the Bush administration told about Iraq, back when almost everyone else was apparently telling the same lies, or at least believing them.

            There's an excerpt on Yahoo News of an interesting interview from "60 Minutes", with the guy that interrogated Saddam after he was captured. According to this interrogator, Saddam said he didn't believe that Bush would actually order the invasion -- he thought that there would be a few days of air strikes, and it would be over. Saddam survived it when Clinton tried that, and Saddam thought he could survive it again. And he admitted that's why he continued to let everyone believe that he had various weapons of mass destruction.

            I always wondered why Saddam behaved like he had something to hide, when he really didn't. I guess he thought the WMD threat would discourage his enemies -- which included most of the Middle East, various Western democracies, and a large percentage of the people in his OWN country.

            • Re:Not the first time (Score:5, Informative)

              by blirp (147278) on Friday January 25, @03:15AM (#22178668)
              I've noticed that now there's a "study" about all the lies that the Bush administration told about Iraq, back when almost everyone else was apparently telling the same lies, or at least believing them.

              'Everybody'? I don't know what planet you where on back then, but most people in Europe didn't buy the theory of a link to Al-Qaeda. Most governments of Europe also wanted the weapons inspections to continue instead of invading.
              Personally, I expected an invasion to become the quagmire the current Vice President of USA predicted. And I, along with a lot of people, expected it to only enrich certain oil companies. I even participated in a protest march for this.

              M.

        • Probably not. (Score:5, Interesting)

          by jd (1658) <imipakNO@SPAMyahoo.com> on Friday January 25, @02:06AM (#22178356) Homepage Journal
          Before that, the USA was arming Iraq to fight Iran. Some time prior to that, Iraq went through numerous coups, a British invasion, two monarchies and a partridge in a pear tree. Prior to the pear tree, Iraq was owned by the British. Actually, two distinct regions (Basra and Baghdad) were owned by the British. To save on ink, when drawing maps, they called the group "Iraq". Before that was the Ottoman Empire, who - ultimately - can be blamed quite reasonably for most of the current blood-feuds in Europe and the Middle East. Before that were the Mongols, who can be blamed for just about everything else. Before that, the Islamic forces of Khalid ibn al-Walid decimated the area and took it out of Persian control, who in turn invaded before they even became Persians. Nothing like getting ahead of themselves! Some time before that, Alexander the Great made a royal mess of the area. Before that, there were endless wars between the Assyrians, the Akkadians, the Sumerians (who were largely obliterated), assorted other nomadic and semi-nomadic tribes, and whatever culture lived there first of which there is almost no trace left.

          In other words, there is no meaningful "first", unless you want to go back around 10,000 years. Almost everything that happened after that point was in direct retribution to what had happened before. That's one reason it will take a lot of effort to calm the region down - ten thousand years is a long time to build up grdudges and resentments -- and don't think a single one of them has been forgotten.

          Getting back to the main topic, just as an aside, this is why societies can't survive for very long on a diet of paranoia, fear and resentment. Sooner or later, you'll get people who hate each other less than they hate some imagined collective enemy, and the shit will hit the fan at a speed approaching mach 2. I'm surprised that this sort of thing doesn't happen more often - students get an even rawer deal than most, even at the best of times, naturally form into groups, and generally have significant combined intellect and skills. This is probably the worst group to infuriate and should really be the first group to focus on getting support from.

    • Re:Russia accused... (Score:4, Informative)

      by tehbunneh (1178277) on Friday January 25, @02:44AM (#22178508)
      Maybe if you would knew a bit of that situation you wouldn't say that. Because the one who got caught was also an ethnic Russian. Born in Estonia to Russian parents. And he said he got the idea from various blogs and forum posts which called people to attack Estonian servers. These blogs and forums were in Russian servers. Besides the IP addresses showed the majority of the attacks to be from Russia. The guy in Estonia was just easier to arrest.

  • Not Acting Alone (Score:5, Insightful)

    by mandelbr0t (1015855) on Friday January 25, @12:23AM (#22177752) Journal

    While they may not have found evidence of any other people involved, it's unlikely that a single person could establish a botnet large enough to overwhelm anything on his own. The only answer I can think of is education - botnets exist because the owners of the zombie PCs simply don't recognize that it's a zombie. There is certainly an overall lack of regulation, too. As a domain owner, I see lots of abusive traffic and have absolutely no legal recourse to punish a perpetrator. Responsible network owners often help, but there's so few networks that are responsible that I usually assume they're not, forcing me to do what little I can at my own site to prevent further abuse.

    For the student's part, he was only fined (I couldn't find how much in TFA). Not much deterrent to prevent him from doing it again. No leverage to find out who he was working with. The lack of clear laws in any country makes prosecution of such actions impossible. As a domain owner, I'd like to see civilized countries show some direction toward making prosecution of such activities a reality. Until then, it's "you hack me, I hack you" which is completely counterproductive.

    • Re:Not Acting Alone (Score:4, Insightful)

      by Anonymous Coward on Friday January 25, @01:17AM (#22178134)
      While they may not have found evidence of any other people involved, it's unlikely that a single person could establish a botnet large enough to overwhelm anything on his own.

      I disagree. He wouldn't necessarily have to do anything to build a botnet himself, just have access to a C&C network built by someone else. He could gain access by renting the network, or even stumbling on an unprotected C&C server. There's a few out there, believe it or not. So yeah, other people may have created the botnet, but he still could have been acting alone when launching his attack.

  • The War on Cyber-Warfare (Score:5, Interesting)

    by T-Bone_142 (917711) on Friday January 25, @12:25AM (#22177766)
    Is it just me or have there been a lot of stories about "cyber wars", "cyber-attack"... lately (especially on slashdot). Is this going to become the next big thing, "The War on Cyber-Warfare" with new laws contently coming in place to help protect everyone from evil "hacker" teenagers bent on destroying the world, which no doubt will take away even more of the dwindling freedoms the american people still have left?

  • Obligatory Soviet Russia Jokes Thread (Score:5, Funny)

    by Gazzonyx (982402) on Friday January 25, @12:35AM (#22177846)
    I hereby declare a single thread dedicated to "In Soviet Russia..." jokes; we might as well keep them all together, as there's too much material for them in this story. I'll kick it off.


    In Soviet Russia, you attack Estonia!


    What do you guys got?

  • What A Crock (Score:4, Insightful)

    by Jane Q. Public (1010737) on Friday January 25, @03:08AM (#22178638)
    Quote: "The fact that a single student was able to trigger such events is particularly ominous when you consider just how many potential flashpoints exist between various countries..."

    What nonsense. If governments put important messages on such "secure" places as roadside billboards, for example, then they should expect "hacks" like moustaches drawn on them, etc.

    Others are not to blame if the government is clueless. The fact that it was so easy to do is a great indication that the government was in fact clueless. If they want to put something important somewhere and keep it "secure", then they are responsible for taking at least minimal measures to make sure that it is, in fact, secure.

    They are just looking for someone to blame for their own incompetence.

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2008 SourceForge, Inc.