Slashdot Mirror

← Back to Stories (view on slashdot.org)

Expert Dissects Estonian Cyber-War

Posted by Soulskill on from the political-tube-cloggers dept.

Stony Stevenson points out an iTnews summary of a security researcher's account of the cyber-attacks on Estonia last year. The full report [PDF] is also available. We've discussed this internet-based conflict in the past. From the report: "In the days leading up to the attack, numerous clues pointed to a large-scale operation that was being planned online. Russian-language Internet discussion forums were abuzz with preparations for an online attack. Three days before the expected onslaught, Estonia planned to release the news of the coming strike in hopes that European media attention would oblige the EU to pressure the Kremlin to intervene, whether or not the attacks emanated from the Russian authorities."

8 of 172 comments (clear)

  1. Too bad. by cdrguru · · Score: 5, Interesting

    The Internet as it stands today is a consequences-free zone. Nations can't "do" anything about such attacks because there are no effective ways to conclusively track them back to individuals or even organizations. Even if there was, how much is some official going to do in China when handed a report of some kind of attack against some other country's computers?

    As continuously pointed out, an IP address does not identify an individual. Today, with today's laws, unless you leave clear tracks to other forms of identification just having an IP address does not connect a deed with an individual. You can threaten, harass, and, yes, DDoS, with impunity. I don't see this changing anytime soon.

    This pretty much means that any real online presence lives or dies by how much they draw attention to themselves and how motivated the attackers are. Estonia sounds like they were particularly vulnerable with little in the way of offline backup for basic services. This is not true in the US today, but it could easily be that way tomorrow. Could a group of disgruntled folks cripple government services in the US? Maybe. Given the current climate with laws, enforcement and international cooperation, there is no way that anyone outside the US would ever be prosecuted unless they bragged about what they did.

  2. Short summary of the original by MikePlacid · · Score: 2, Interesting

    Cyber attacks are dangerous (impact on Estonia described). The are too easy to organize (Russian blogs described). We need draconian laws to punish offenders. Russia (and other poorly governed countries) can't be relied upon to establish draconian laws. We must lead the way! (and probably force everyone else to follow).

  3. Re:Yes, yes, and... by jd · · Score: 1, Interesting

    You will also no doubt recall that these were found infected by malware that had been transferred from unclassified networks. What difference does an airwall make when it's being run by an airhead?

    --
    It's a small world and it smells funny; I'd buy another if it wasn't for the money; Take back what I paid (SoM)
  4. Re:I was close to participation by Darinbob · · Score: 3, Interesting

    I never really understand when someone gets enraged when a different country does something considered an insult by another. These aren't personal insults. They're insults to a government, often a past government. Ie, US "patriots" foaming at the mouth when France won't be a lap dog, or someplace objects to expanding military bases, etc. It makes no sense.

    For Estonia, it's their country, they can do whatever they want with some statue that they never asked for. If moving the statue means anything to the Russians, it should have meant some sort of introspection about why they're not seen as the glorious savior of eastern europe. Why the anger? I honestly don't understand it, except that most people growing up in the Soviet Union were fed propaganda and haven't learned to see things from other viewpoints.

    Such as the viewpoint that this statue was never seen as a "war memorial" to the ethnic Estonians, but was a symbol of occupation and Russification, and had become a flash point for conflicts. If anyone was insulted, it was the Soviet occupation. Do modern Russians still fondly love the Stalinist era? Should Germans become enranged if someone tears down a memorial put up by Nazis? Do Russians still honestly believe Estonia is fascist, that they loved the Nazis? Given a choice between Stalinist brutality and Nazi brutality, why are Russians still pissed off that they weren't the first choice?

    And yes, I am equating Stalinist excesses to Nazi excesses. I don't believe praising the lesser of two evils.

  5. Re:Yes, yes, and... by shutdown+-p+now · · Score: 3, Interesting

    For the rest of the world who isnt so spun up in anti-US fervor to see what the real problem is.... Vladamirs Putins political party is heavily involved in supporting "youth" organizations which can act for the state, without the state getting any stains on its hands.
    You're not keeping up with the news. The "youth organizations" had one sole purpose - their members were supposed to clash on the streets with opposition supporters after the elections, if their results would be disputed so much that the people would go out to the streets (as it happened in Ukraine and Georgia earlier). Now that elections are past (and were relatively quiet), Kremlin has little use for all the skinheads they've hired, so most "youth orgs" have been basically told to go screw themselves.

    Oh, and you really do not need any sort of government backing to mount a pretty massive cyber-attack on Estonia here. Most Russians hate the Baltic countries (thanks to all the Russian TV propaganda about suppressing the Russian minority and glorious marches of SS veterans that happen there), there are plenty of semi-serious jokes about "our tanks in Riga (/Vilnius/Tallinn)" etc. All that was needed was a spark, and the events in Estonia gave it. I would be surprised if the "youth org" members didn't heavily participate (for one, because they are strongly brainwashed), or that there was tacit government support for that. But it's hardly organized by the Russian state as a whole.

  6. Re:I was close to participation by Darinbob · · Score: 2, Interesting

    There are Russians (ethnic Russians, not Russian Federation citizens) in Estonia, True. The vast majority of ethnic Russians in Estonia though immigrated during the Soviet era, as part of russification and build up of industrialization. Should Estonia be allowed to try and restore a national identity and choose it's own national language?

    So far the best excuse for siding with Nazi the Estonian nationalists presented was along the lines "but Nazi did not kill ethnic Estonians, so they are alright for us". Nazis did kill ethnic Estonians. But the Soviets killed far more. Estonians welcomed the Nazis as liberators because they had been recently forcibly annexed into the USSR and were being repressed. This in no way means they approved of fascism on the whole (though in every nation at the time there were some who did like fascism). Many Estonians, unwilling to side with the Nazis, enlisted in the Finnish army.

    It was only after the war that the Nazis gained the association of being the ultimate evil of all time. The horrors of the holocaust were not very well known at the time, and rumors of it were often dismissed as exaggeration. At the time of the war, the conflict was probably viewed as yet another chapter in an age old tug of war between super powers in Europe.

    There are countries all over Europe who were occupied by the Nazis and who had some population willingly side with the Nazis. Are modern Russians all angry with them also? What are the feelings about Finland, which had a war against the USSR with Nazi support?
  7. Re:Yes, yes, and... by shutdown+-p+now · · Score: 2, Interesting

    This whole Russia-bashing is quite annoying. First, the cold war ended 18 years ago, and hands were shaken, cheeks were kissed, TV shows with USA and SU children holding hands were aired, promises were made that it's a peace without winners or losers, Russia let everybody go their way without much opposition and I personally saw Moskva 1 TV channel (was able to watch it because I lived just across the SU border at that time) arranging to show hot female teens saying stuff that would be unimaginable in USA or any nice Western European country, namely "For me Russia means those that want to stay".
    The cold war ended 18 years ago, indeed. A second one began in 2000, with the change of power.

    If anybody still imagines that a handful of dissidents that in July 1989 were in prison or home arrest managed to topple the Communist regimes, that person is rather naive, since s/he believes that a state apparatus with complete control over the life of its citizen managed fell to the anger of the righteous.
    By the time the USSR has collapsed, it didn't have "complete control over the life of its citizens" for a looong time. It started in Brezhnev's time already, Gorbachev and his ilk just sped up the process by giving up the reins completely.

    In 2001 Putin himself was hinting about Russia getting into NATO
    Russia has never, ever, seriously considered joining NATO, even during the more Western-friendly Yeltsin times. "Hinting" is a stretch, and well, Belarus' Lukashenko also "hints" things like that sometimes - usually when he wants something from his friend Putin, and doesn't get it as quickly as he likes. It's hard to take these things seriously.
  8. I actually saw it by Jay+Tarbox · · Score: 3, Interesting

    A customer of mine (small college) reported issues with their (smallish) internet pipe one evening. Something appeared to be hogging a bunch of bandwidth.
    Long story short, a sniffer revealed a huge amount of traffic coming from a particular student machine directed at an IP address ARIN showed as belonging to Estonia's government. We said huh, wierd and shut down his switch port and went to bed.
    Of course we found out a little bit later about the attacks. I don't have the sniffer traces anymore.