Some kids playing with crappy IoTs.
We had Edward Snowden speaking at a major Security conference here in Toronto couple days back (via a link) , nobody gave shit to try blocking him.
We had Edward Snowden speaking at a major Security conference here in Toronto couple days back (via a link) , nobody gave shit to try blocking him.
Snowden has not been
peeing into Hillary's Cheerios.
Maybe DynDNS did not pay their DDOS protection money or one of their customers is the target.
Wikileaks issued a statement for there guys to stop messing with the internet in the USA. Assange said "you made your point!"
Brian
Wikileaks issued a statement for there guys to stop messing with the internet in the USA. Assange said "you made your point!"
Brian
Did Assange imply that he sees this DDOS related to his internet embargo?
As for snowden, he is not disclosing anything new these days.
Some kids playing with crappy IoTs.
I reckon it's more than that. In the past month Bruce Schneier has been talking about the possibility of someone (i.e. large foreign entities, such as governments) probing the defences of various networking infrastructure. The latest attack might have been part of that test.
https://www.schneier.com/blog/archives/2016/09/someone_is_lear.html
I think that is a preemptive attack of Putin ,because is very curious that the russians were waiting during days an DDOS attack from CIA .
And resulted that Usa is attacked by the same method that wanted to attack to Rusia
.
So, when the whole things falls to the ground it will be the toasters and refrigerators that are behind it.
The true face of Skynet is revealed.
So, when the whole things falls to the ground it will be the toasters and refrigerators that are behind it.
The true face of Skynet is revealed.
If you listen to Elon Musk he's pretty worried about Skynet actually happening...
Brian
I think Elon should just stick with making cars.
The number of bots out there trying to compromise your stuff is crazy, a few weeks ago I had a look in my logs and was surprised just how constantly IP's are trying to log into my personal home workstation via SSH (and failing naturally).
Just today 21 newcomers gave it a shot, mostly from China, a couple Vietnam.
Some nice almost sequential IP's too...
[ssh] Ban 119.249.54.66
[ssh] Ban 119.249.54.68
[ssh] Ban 119.249.54.75
[ssh] Ban 119.249.54.88
[ssh] Ban 121.18.238.104
[ssh] Ban 121.18.238.109
[ssh] Ban 121.18.238.114
[ssh] Ban 121.18.238.98
[ssh] Ban 123.31.34.217
[ssh] Ban 123.31.41.212
[ssh] Ban 163.172.16.102
[ssh] Ban 211.64.120.91
[ssh] Ban 212.129.2.234
[ssh] Ban 221.194.44.143
[ssh] Ban 221.194.47.208
[ssh] Ban 221.194.47.224
[ssh] Ban 221.194.47.229
[ssh] Ban 221.194.47.249
[ssh] Ban 222.186.21.35
[ssh] Ban 58.30.52.46
[ssh] Ban 89.163.224.128
The negligence of these vendors is insane. They are shipping millions of devices that are insecure by default and can be trivially compromised. To make matters worse, the nature of the devices can make detection and removal difficult or impossible. People hate intrusive government regulation, but market failures like this practically invite it.
The negligence of these vendors is insane. They are shipping millions of devices that are insecure by default and can be trivially compromised. To make matters worse, the nature of the devices can make detection and removal difficult or impossible. People hate intrusive government regulation, but market failures like this practically invite it.
Unless you can convince consumer that their priority is security, but not "how can I login to this damn thing, ah admin admin"
Right, convince consumers to make security their priority (sarcasm here).
More seriously, We are enamored with all these devices and their connectivity. Interesting with people anywhere in the world is exhilarating, fascinated, more connected, yet more disconnected.
We need a greater awareness for the need for Internet security (security and need for some privacy in general)
It is like the Boiling frog analogy. "Bring the heat up slowly, and the frog stays in and boils" It is vague and existential to most Americans..that is, until they have been hacked and have their identities stolen. Then they take it very seriously. At a server and domain level, 90% of people only vaguely understand what those words mean.
We are still dependent on the programmers, hardware designers, Internet managers, and organizations dedicated only to keeping us current of where security needs to improve and where we have failed.
I now have an app on my smart phone that aggregates articles and updates on Internet security. Glad I have it. It follows up on old stories, Our mainstream news doesn't do that. I am learning that hacks, DDOS, man-in-the-middle. New devices and that new hardware products are getting hacked, or exploits found, BEFORE they hit market. This is both good and bad.
About Julian Assange being cut off. His Ambassadorial hosts are getting hard threats regarding major national economic De-stabilization for their country.
My view? WE just need to keep speaking up about these matters, those of us who know. And just keep naging those who don't to learn and understand the state of Internet security.
I notice that the webcams used have now been recalled in the US
I have isolated all my IOT stuff - DVR's, doorbell, etc on a separate network which helps protect my internal systems. That, however, does not help keep them out of a dDOS attack pool. In theory, I could setup static routes, port filtering, or whatever may help prevent that, but even if I was successful in keeping making my iot devices useless to hackers - I would be in a microscopic minority.
What the heck is the solution? If all the devices were heavily secured, they would cost more and the iot sector would cry foul when the sales dry up. We cannot expect the general public to understand or care. Every manufacturer that makes boring stuff is adding a stupid WiFi 'feature' to let you know the temperature of your toast and allow you to monitor the status of your toaster from anywhere in the world.
Like most things, it will take a major disaster before anyone cares.
Yep, all IoT devices should be placed into a separated network and controlled/protected via a firewall. Anything else would plain stupid.
It is too bad the NSA and other government agencies worked to sabotage various internet security protocols and especially IPSEC. Ubiquitous encryption would have helped in a general way.
How would that protect us from insecure defaults settings, firmwares with tons of security issues, firmwares with outdated versions of network services with known security issues, lack of security fixes by vendors and users not updating firmwares?
The number of bots out there trying to compromise your stuff is crazy, a few weeks ago I had a look in my logs and was surprised just how constantly IP's are trying to log into my personal home workstation via SSH (and failing naturally).
Just today 21 newcomers gave it a shot, mostly from China, a couple Vietnam.
I'm currently seeing ~30000 telnet or ssh attempts a day, mostly unique IPs. A few weeks back 2000-3000 a day was typical.
[ssh] Ban 119.249.54.66
[ssh] Ban 119.249.54.68
[ssh] Ban 119.249.54.75
[ssh] Ban 119.249.54.88
[ssh] Ban 121.18.238.104
[ssh] Ban 121.18.238.109
[ssh] Ban 121.18.238.114
[ssh] Ban 121.18.238.98
[ssh] Ban 123.31.34.217
[ssh] Ban 123.31.41.212
You can simplify things by taking the allocations:
119.248.0.0/14
121.16.0.0/13
123.30.0.0/15
...
BTW, I haven't seen any attempt via IPv6 yet.
The number of bots out there trying to compromise your stuff is crazy, a few weeks ago I had a look in my logs and was surprised just how constantly IP's are trying to log into my personal home workstation via SSH (and failing naturally).
Just today 21 newcomers gave it a shot, mostly from China, a couple Vietnam.
I'm currently seeing ~30000 telnet or ssh attempts a day, mostly unique IPs. A few weeks back 2000-3000 a day was typical.
Another approach is to rate-limit the connection attempts. Could be done per IP or network.