Advertisement
This site uses cookies to improve your experience and to provide services and advertising. By continuing to browse, you agree to the use of cookies described in our Cookies Policy. You may change your settings at any time but this may impact on the functionality of the site. To learn more see our Cookies Policy.
OK
Dublin: 5 °C Thursday 24 January, 2019

#DDoS

# ddos - Thursday 17 November, 2016

Disgruntled gamer 'used cameras and lightbulbs' to take down Netflix and Twitter

Hacker harnessed 150,000 devices such as cameras, lightbulbs and appliances to overwhelm system.

# ddos - Monday 18 July, 2016

Pokémon Go is so popular, even hackers are claiming they've taken it down

Two different groups are claiming responsibility for the game’s servers going down over the weekend.

# ddos - Saturday 23 January, 2016

From Business ETC DDoS attacks brought down lottery and government sites, but what are they? Hacking

DDoS attacks brought down lottery and government sites, but what are they?

It was the reason why a number of high-profile Irish sites were forced offline, but how much of a problem can they be?

# ddos - Friday 22 January, 2016

Government websites hit by cyberattack

Services like the Central Statistics Office and the Courts service of Ireland were down because of a DDoS attack

# ddos - Thursday 31 December, 2015

BBC website brought down by 'large cyber attack'

The website is back online now.

# ddos - Monday 19 January, 2015

The group that brought PSN/Xbox Live down gets a taste of its own medicine

Both usernames and passwords of those using Lizard Squad’s tool LizardStresser, a tool which allowed anyone to launch their own DDoS attack, were exposed after it was allegedly hacked.

# ddos - Thursday 11 December, 2014

Sony fights back against hackers by attacking sites sharing its stolen data

The company is reportedly trying to disrupt downloads of its stolen files by launching Denial of Service attacks on torrent sites.

# ddos - Monday 8 September, 2014

Nude celebrity photos might not be to blame for New Zealand internet crash

The company involved now suspects a cyber attack may have taken place.

# ddos - Thursday 28 March, 2013

Dispute between two companies leads to biggest ever 'cyber attack'

Have you noticed your internet being slower than usual in the last few days? This may be why.

# ddos - Thursday 4 October, 2012

Banks, governments and ISPs participate in 'cyber attack' experiment

1200 bodies are being hit by scheduled DDoS attacks as part of an EU-wide cybersecurity exercise.

# ddos - Wednesday 3 October, 2012

Swedish government sites attacked after Pirate Bay host is raided

Two government websites were attacked – one by a DDoS attack, the other defaced with profane messages.

# ddos - Thursday 3 May, 2012

DDoS attack forces UK serious crime agency offline

SOCA says attack poses no risk to its data.

# ddos - Friday 3 February, 2012

Hacked FBI-Met Police call refers to intelligence sharing with Irish authorities

A conversation between police in the UK and FBI agents in the US has been hacked and posted online by the Anonymous hacking collective today.

# ddos - Wednesday 25 January, 2012

‘Whole government response to threat’ following #OpIreland cyber attack

The Department of Justice has confirmed it was subject to a Distributed Denial of Service attack overnight.

# ddos - Monday 27 December, 2010

2010 in review: August Review2010 This post contains videos

2010 in review: August

Authorities approve a mosque near Ground Zero, a Chilean mine collapses, and a Coventry woman puts a cat in a wheelie bin.

# ddos - Monday 13 December, 2010

Amazon says site downtime not caused by ‘hacktivist’ group

The online retailer – which went down for 30 minutes last night – says its disruption was the cause of a technical fault.

# ddos - Saturday 11 December, 2010

4chan hackers abandon attacks on WikiLeaks 'opponents'

The Anonymous gathering of ‘hacktivists’ instead decide to spread WikiLeaks’ documents as much as is possible.

# ddos - Friday 3 December, 2010

WikiLeaks returns with new address after US provider pulls web services Wikileaks

WikiLeaks returns with new address after US provider pulls web services

Just days after being forced to change hosts, the wikileaks.org domain is pulled – forcing the site to take a new Swiss address.

# ddos - Thursday 4 November, 2010

Burma crippled by internet attack ahead of election

Days before the first elections in 20 years the entire country has been taken offline.

# ddos - Wednesday 25 August, 2010

THE CAO has reopened the ‘My Application‘ part of its website after closing it earlier as part of a reported investigation into Monday’s ‘cyber attack’ that saw the website closed. Some students have been given new passwords to the section, within which they view and accept college offers.

# ddos - Monday 23 August, 2010

THE COLLEGE APPLICATIONS OFFICE says its website, www.cao.ie, is now back fully online after overcoming a ‘distributed denial of service’ (or DDoS) attack earlier today. The body issued over 48,000 college offers this morning, which students have until Monday to accept.

THE COLLEGE APPLICATIONS OFFICE (CAO) website has been inaccessible since mid-morning, leaving many potential college-goers in the dark as to whether they have been offered a place in third-level education.

But what exactly is going on to the website? What is this “malicious attack from an unknown source“?

Well, reports seem to indicate that the website is suffering from a ‘Distributed Denial of Service’ attack, or DDoS for short. Essentially, this exploits the limited amount of traffic that any web server can handle.

Let’s say, hypothetically, that the computer on which a website lives can handle 100 visitors at a time. This means that only 100 individual users would be able to access a page at once, so if 101 people all simultaneously tried to access the website’s homepage, one of them would be unable to connect to the site – it would simply be unable to respond to all of the requests.

The internet’s answer to overcrowding

In fact, the other 100 users might notice a significant slowdown in the speed of the website, such is the effect. In some cases, the website would seem to entirely lock down. It’s the online equivalent of overcrowding: if a room can fit 100 people, then if more show up, not only can they not get in, but the people in there can’t get out.

Try to imagine a large-scale version of this. If the CAO website can handle – again, taking a figure entirely hypothetically – 3,000 users at a time, then any visitors on top of this simply cannot be catered for. And, naturally enough, the website will slow down – or grind to a total halt – if more people try to visit.

What a DDoS attack does, to be basic, is deliberately flood a target website with requests for pages, to the point where the server is unable to respond to any requests, good or otherwise. Typically the people behind such an attack will use several machines to launch it, so that blocking the traffic from one computer’s individual IP address does not resolve the crisis. It’s possible that some of the machines being used are being hijacked without the knowledge or compliance of their owners.

In essence, unless a website has bucketloads of spare capacity (in which case, it should probably be using some of it all the time anyway) that it can activate, then the sheer volume of requests being received will cause the website to effectively keel over. And, in some cases, adding new capacity will not resolve the problem, because the attackers could alternatively find new machines to launch even more sustained attacks.

When it happens – and when it doesn’t

Major international websites – the likes of Facebook – will receive multiple DDoS attacks a day. They’re simply big enough, however, to absorb the extra hassle without any noticeable slow-down. Even the likes of Boards.ie has said it gets regular attacks, but constantly monitors and counters them as they arise.

The problem with the CAO site, it would seem, is that it’s not generally built to handle quite the level of traffic it’s getting this morning – the bulk of it, you might guess, being maliciously sent.

Therefore the only real tactic a website can use to resolve a DDoS is to try and identify the IP addresses from which the traffic is coming, and then block these addresses from submitting any requests – freeing up space for the genuine web users. The CAO appears to have resolved its problems, however, and looks to be back up and running – a welcome return to action for the 77,628 students hoping for a college offer today.

In the meantime, potential college-goers are reminded that if they’ve been offered a college place, they should also have received a copy of the order via the post – and can also respond to the offer by post.

Those who can’t access their physical post need not worry, either: first round offers can be accepted any time up until next Monday, before offers are withdrawn and reallocated in the Round 2 offers.