Group items matching

in title, tags, annotations or url

If a North Korea link is found, it would mark a new turn in Pyongyang's attempts to lash out at the U.S. North Korea has been building up its capability for cyberattacks in the past couple of years, computer security specialists said. North Korea recently increased the number of people in a cyber-warfare unit, South Korea's Yonhap news agency reported last month.

U.S. government Web sites attacked included those of the Defense Department, National Security Agency, Treasury Department, Secret Service, State Department, Federal Trade Commission and Federal Aviation Administration, according to the cyber-security unit of VeriSign Inc., a computer-security company, and others familiar with the attacks. The attacks appear to have occurred roughly from Saturday to Tuesday.

Private sites attacked, according to a cyber-security specialist who has been tracking the incidents, included those run by the New York Stock Exchange, Nasdaq, the Washington Post, Amazon.com and MarketWatch.

Most U.S. federal Web sites appeared to be running properly Wednesday. In South Korea, several government sites were down late Tuesday and early Wednesday but many were back to normal by Wednesday afternoon. "There is a connection between what is going on here in the states and what is going on in [South] Korea," said Richard Howard, director of intelligence at VeriSign's iDefense cyber-security unit.

North Korea turned more antagonistic after the illness of dictator Kim Jong Il last August and September. The country had done little to prepare for a successor, and Mr. Kim's illness triggered an internal shuffle that apparently raised the influence of hard-line military figures.

At the White House, spokesman Nicholas Shapiro said the attacks over the weekend "had absolutely no effect on the White House's day-to-day operations." The only effect, he said, was that some Internet users in Asia may not have been able to access the White House's Web site for a time.

President Barack Obama has made bolstering cyber-security a priority. He said in May he would create a new White House cyber-security post, though it hasn't yet been staffed. People familiar with the process say the White House has had difficulty finding someone to take the job.

Defense officials confirmed Pentagon networks were struck but said the intrusions were detected quickly and did no real damage. Adm. Mike Mullen, the nation's top military officer, said Pentagon networks are under near-constant attack. "I grow increasingly concerned about the cyber-world and the attacks," he said.

James Lewis, a cyber-security specialist at the Center for Strategic and International Studies, said of the attack, "It's really a test of which U.S. agencies are ready and which aren't."

The New York Stock Exchange's parent company, NYSE Euronext, announced at 12:35 p.m. Wednesday that its Web site, but not its trading systems, had been targeted. Exchange officials weren't aware of the attack until notified by the government on Tuesday, said a person familiar with the events. An NYSE spokesman said the exchange's systems detected zero impact either on the Web site or on the separate trading operations. An official of Nasdaq said there wasn't any impact on its business.

Those responsible used a method similar to attacks in recent years on the governments of Estonia and Georgia, called a "distributed denial of service" attack. It is a maneuver in which many computers act in concert to overwhelm Web sites.

The cyberattacks came as Washington's point man on North Korea sanctions, Ambassador Philip Goldberg, concluded a weeklong trip to China and Malaysia aimed at tightening the financial screws on Pyongyang. Last week, the Obama administration announced sanctions on two North Korea-linked arms companies. The U.S. Treasury last month listed 17 North Korean banks and businesses that it is seeking to constrict financially.