US government agencies under cyber attack
Wednesday 08 July 2009
A widespread and unusually resilient computer attack that began July 4 knocked out the websites of several government agencies, including some that are responsible for fighting cyber crime, The Associated Press has learned.
The Treasury Department, Secret Service, Federal Trade Commission and Transportation Department websites were all down at varying points over the holiday weekend and into this week, according to officials inside and outside the government. Some of the sites were still experiencing problems last night.
Federal government officials refused to publicly discuss any details of the cyber attack, and would only generally acknowledge that it occurred. It was not clear whether other government sites also were attacked.
Others familiar with the outage, which is called a denial of service attack, said that the fact that the government websites were still being affected three days after it began signalled an unusually lengthy and sophisticated attack. The officials spoke on condition of anonymity because they were not authorised to speak on the matter.
The Homeland Security Department confirmed that officials had received reports of "malicious web activity" and they were investigating the matter, but had no further comment. Two government officials acknowledged that the Treasury and Secret Service sites were brought down, and said the agencies were working with their internet service provider to resolve the problem.
Ben Rushlo, director of internet technologies at Keynote Systems, called it a "massive outage" and said problems with the Transportation Department site began on Saturday and continued until Monday, while the FTC site was down Sunday and Monday.
Keynote Systems is a mobile and website monitoring company. The company publishes data detailing outages on websites, including 40 government sites it watches.
According to Rushlo, the Transportation website was "100 per cent down" for two days, so that no internet users could get through to it. The FTC site, meanwhile, started to come back online late Sunday, but even on Tuesday internet users still were unable to get to the site 70 per cent of the time.
"This is very strange. You don't see this," he said. "Having something 100 per cent down for a 24-hour-plus period is a pretty significant event."
He added that, "The fact that it lasted for so long and that it was so significant in its ability to bring the site down says something about the site's ability to fend off (an attack) or about the severity of the attack."
Denial of service attacks against websites are not uncommon, and are usually caused when sites are deluged with internet traffic so as to effectively take them off-line. Mounting such an attack can be relatively easy using widely available hacking programs, and they can be made far more serious if hackers infect and use thousands of computers tied together into "botnets."
For instance, last summer, in the weeks leading up to the war between Russia and Georgia, Georgian government and corporate websites began to see "denial of service" attacks. The Kremlin denied involvement, but a group of independent Western computer experts traced domain names and website registration data to conclude that the Russian security and military intelligence agencies were involved.
Documenting cyber attacks against government sites is difficult, and depends heavily on how agencies characterise an incident and how successful or damaging it is.
Government officials routinely say their computers are probed millions of times a day, with many of those being scans that don't trigger any problems. In a June report, the congressional Government Accountability Office said federal agencies reported more than 16,000 threats or incidents last year, roughly three times the amount in 2007.
Most of those involved unauthorised access to the system, violations of computer use policies or investigations into potentially harmful incidents.
The Homeland Security Department, meanwhile, says there were 5,499 known breaches of US government computers in 2008, up from 3,928 the previous year, and just 2,172 in 2006.
Life & Style blogs
Reader dilemma: 'Our son is 34 with an IQ of 85, and spends all his time in his room. What will happen to him when we're no longer here?'
Why it matters 26 million people have changed their Facebook profile picture to a rainbow flag
What supermodels really think about posing in the nude
The age of inactivity: How laziness is killing us
What do the emojis on Snapchat mean?
The moment a Queen's Guard soldier lost it and drew his gun at annoying tourist
Greece crisis: IMF was pushed around by Angela Merkel and Nicholas Sarkozy – and now it is being humiliated
Greece crisis: The wider lesson is that it’s time to abandon this failed experiment in currencies
'I wish the BBC would stop calling it Islamic State' – David Cameron unleashes frustration at broadcaster
Pentagon accuses Russia of 'playing with fire' over nuclear threats towards Nato
They are neither a 'state' nor 'Islamic': Why we shouldn't call them Isis, Isil or IS
- 1 Tunisia hotel attack: Locals form 'human shield' to protect hotel from gunman Seifeddine Rezgui
- 2 Russian officials ban yoga because it's too much like a religious cult
- 3 German ethics council calls for incest between siblings to be legalised by Government
- 4 Ginger Pride festival to take place next summer, organisers say 'time of bullying gingers is over'
- 5 Facebook rainbow profile pictures likely being tracked by social network
iJobs Gadgets & Tech
£26000 - £32000 per annum: Recruitment Genius: An IT Support Technician is req...
£18000 - £21000 per annum: Recruitment Genius: This is an opportunity to join ...
£18000 - £23000 per annum + competitive: SThree: As an Associate Recruitment C...
£18000 - £23000 per annum + competitive: SThree: As a Trainee Recruitment Cons...