Brian Krebs is a popular reporter on the cybersecurity beat. He regularly exposes cybercriminals and their tactics, and consequently is regularly a target of their ire. Last month, he wrote about an online attack-for-hire service that resulted in the arrest of the two proprietors. In the aftermath, his site was taken down by a massive DDoS attack.In many ways, this is nothing new. Distributed denial-of-service attacks are a family of attacks that cause websites and other internet-connected systems to crash by overloading them with traffic. The "distributed" part means that other insecure computers on the internet—sometimes in the millions—are recruited to a botnet to unwittingly participate in the attack. The tactics are decades old; DDoS attacks are perpetrated by lone hackers trying to be annoying, criminals trying to extort money, and governments testing their tactics. There are defenses, and there are companies that offer DDoS mitigation services for hire.
Basically, it's a size vs. size game. If the attackers can cobble together a fire hose of data bigger than the defender's capability to cope with, they win. If the defenders can increase their capability in the face of attack, they win.
What was new about the Krebs attack was both the massive scale and the particular devices the attackers recruited. Instead of using traditional computers for their botnet, they used CCTV cameras, digital video recorders, home routers, and other embedded computers attached to the internet as part of the Internet of Things.
Much has been written about how the IoT is wildly insecure. In fact, the software used to attack Krebs was simple and amateurish. What this attack demonstrates is that the economics of the IoT mean that it will remain insecure unless government steps in to fix the problem. This is a market failure that can't get fixed on its own.
Group items matching
in title, tags, annotations or url
1More
2More
We Need to Save the Internet from the Internet of Things | Motherboard - 0 views
1More
AllSeen Alliance Adds Security Updates to Open Source IoT Platform | Open Source Applic... - 0 views
Manufacturers and Utilities Are Leading the IoT Charge with 600M 'Things' - Datamation - 0 views
1More
IoT will become a matter of life or death for security pros | InfoWorld - 0 views
1More
The future is the Internet of Things-deal with it | Ars Technica UK - 0 views
1More
Data Collection for Embedded Linux and IoT with Open Source Fluent Bit | Linux.com | Th... - 1 views
1More
Empower consumers to control their privacy in the Internet of Everything | The Enterpri... - 0 views
2More
EE.UU. admite que puede utilizar los dispositivos caseros para espiar a sus ciudadanos ... - 0 views
1More
Program the world: 12 technologies you need to know | ITNews - 1 views
1 - 13 of 13
Showing 20▼ items per page