Slashdot Mirror

← Back to Stories (view on slashdot.org)

Expert Dissects Estonian Cyber-War

Posted by Soulskill on from the political-tube-cloggers dept.

Stony Stevenson points out an iTnews summary of a security researcher's account of the cyber-attacks on Estonia last year. The full report [PDF] is also available. We've discussed this internet-based conflict in the past. From the report: "In the days leading up to the attack, numerous clues pointed to a large-scale operation that was being planned online. Russian-language Internet discussion forums were abuzz with preparations for an online attack. Three days before the expected onslaught, Estonia planned to release the news of the coming strike in hopes that European media attention would oblige the EU to pressure the Kremlin to intervene, whether or not the attacks emanated from the Russian authorities."

2 of 172 comments (clear)

  1. you call this weather? by Anonymous Coward · · Score: -1, Offtopic

    reminds us more of poorly written sci-fi drama. let your conscience be yOUR guide. you can be more helpful than you might have imagined. there are still some choices. if they do not suit you, consider the likely results of continuing to follow the corepirate nazi hypenosys story LIEn, whereas anything of relevance is replaced almost instantly with pr ?firm? scriptdead mindphuking propaganda or 'celebrity' trivia 'foam'. meanwhile; don't forget to get a little more oxygen on yOUR brain, & look up in the sky from time to time, starting early in the day. there's lots going on up there.

    http://news.yahoo.com/s/ap/20071229/ap_on_sc/ye_climate_records;_ylt=A0WTcVgednZHP2gB9wms0NUE
    http://news.yahoo.com/s/afp/20080108/ts_alt_afp/ushealthfrancemortality;_ylt=A9G_RngbRIVHsYAAfCas0NUE
    http://www.nytimes.com/2007/12/31/opinion/31mon1.html?em&ex=1199336400&en=c4b5414371631707&ei=5087%0A

    is it time to get real yet? A LOT of energy is being squandered in attempts to keep US in the dark. in the end (give or take a few 1000 years), the creators will prevail (world without end, etc...), as it has always been. the process of gaining yOUR release from the current hostage situation may not be what you might think it is. butt of course, most of US don't know, or care what a precarious/fatal situation we're in. for example; the insidious attempts by the felonious corepirate nazi execrable to block the suns' light, interfering with a requirement (sunlight) for us to stay healthy/alive. it's likely not good for yOUR health/memories 'else they'd be bragging about it? we're intending for the whoreabully deceptive (they'll do ANYTHING for a bit more monIE/power) felons to give up/fail even further, in attempting to control the 'weather', as well as a # of other things/events.

    http://video.google.com/videosearch?hl=en&q=video+cloud+spraying

    dictator style micro management has never worked (for very long). it's an illness. tie that with life0cidal aggression & softwar gangster style bullying, & what do we have? a greed/fear/ego based recipe for disaster. meanwhile, you can help to stop the bleeding (loss of life & limb);

    http://www.cnn.com/2007/POLITICS/12/28/vermont.banning.bush.ap/index.html

    the bleeding must be stopped before any healing can begin. jailing a couple of corepirate nazi hired goons would send a clear message to the rest of the world from US. any truthful look at the 'scorecard' would reveal that we are a society in decline/deep doo-doo, despite all of the scriptdead pr ?firm? generated drum beating & flag waving propaganda that we are constantly bombarded with. is it time to get real yet? please consider carefully ALL of yOUR other 'options'. the creators will prevail. as it has always been.

    corepirate nazi execrable costs outweigh benefits
    (Score:-)mynuts won, the king is a fink)
    by ourselves on everyday 24/7

    as there are no benefits, just more&more death/debt & disruption. fortunately there's an 'army' of light bringers, coming yOUR way. the little ones/innocents must/will be protected. after the big flash, ALL of yOUR imaginary 'borders' may blur a bit? for each of the creators' innocents harmed in any way, there is a debt that must/will be repaid by you/us, as the perpetrators/minions of unprecedented evile, will not be available. 'vote' with (what's left in) yOUR wallet, & by your behaviors. help bring an end to unprecedented evile's manifestation through yOUR owned felonious corepirate nazi glowbull warmongering execrable. some of US should consider ourselves somewhat fortunate to be among those scheduled to survive after the big flash/implementation of the creators' wwwildly popular planet/population rescue initiative/mandate. it's right in the manual, 'world without end', etc.... as we all ?know?, change is inevitable, & denying/ignoring gravity, logic, morality, etc..., is only possible, on a temporary basis. concern about the course of events that will occur should the life0cidal execrable fail to be inte

  2. Re:Yes, yes, and... by Anonymous Coward · · Score: -1, Offtopic

    "What are nations going to do about it?" - by jd (1658) on Thursday May 22, @07:18PM (#23512592) Homepage Educate the end-user(s), first!

    Mainly, in how to secure PC's (for starters)... AND, it's NOT HARD, with the right tools (like CIS Tool, or even Microsoft's Baseline Security Analyzer), ala this guide:

    -----------------

    HOW TO SECURE Windows 2000/XP/Server 2003 & VISTA, + make it "fun to do", via CIS Tool Guidance:

    http://www.tcmagazine.com/forums/index.php?s=c89978d2e90631e7547c94c6285319ed&showtopic=2662

    -----------------

    & also training of coders (be in on the job, or in academia), both web devs & std. executables devs, on how to sanitize inputs fields correctly, as a followup, as imo @ least? MOST back-end DBA's (experienced ones) KNOW how to do so in their stored procedures... but, in case THEY don't? Well, then DBA's also must go for training here too...

    The stuff that's in that guide also extends to LAN/WAN & Server environs too... with some "minor variations" is all (they are listed inside it also).

    IPv6 will probably help though, @ the levels YOU are speaking of... but, how to "turn the world over on a dime" is the question: Like David Bowie said (as Nikola Tesla in the film "The Prestige"):

    "SOCIETY ONLY TOLERATES 1 MAJOR CHANGE @ A TIME..."

    (More-or-less, the point's there)

    Sometimes? I think they don't WANT folks to know how to secure themselves! There's more monies in "prevention", than an outright cure! Heck, cutting off the indiscriminate use of JavaScript/IFrames, &/or ActiveX controls would go a LONG WAYS to cutting off many of today's threats... but, you don't hear the likes of CA, Norton/Symantec, Microsoft, or any other major software production house telling you that simple truth!

    (If you follow security news? Hitting sites like SECUNIA.COM, SecurityFocus.com, SANS, SRI, SpamHaus, or others will note it, for me... the most WIDELY USE ATTACK VECTOR is something your webbrowsers & email programs of today need to counter for, wholesale - turn off javascript for "every site under the sun" basically, & limit their usage solely to sites that DEMAND it for full function (such as online shopping &/or banking sites, period/only)).

    That way, you limit the amount of sites that could have infected/infested you, period (limiting the attack surface AND the ability to identify WHO did it to you... assuming no "man-in-the-middle" type attack was occurring that is, & the site you assumed was EBay/Amazon, or your bank, was in fact, NOT them @ all))

    APK

    P.S.=> Nicest part of the whole thing is that the CIS Tool is NOT just restricted to Windows NT-based OS', but also has versions for Linux variants, BSD variants, Sun Solaris, & more... &, the points it notes (based on industry best practices), work! apk