Europe Joins Forces In Massive Simulated Cyber Attack

An anonymous reader writes "Hundreds of cyber security experts from across the EU are testing their readiness to combat cyber-attacks in a day-long simulation across Europe today. In Cyber Europe 2012, 400 experts from major financial institutions, telecoms companies, internet service providers and local and national governments across Europe are facing more than 1200 separate cyber incidents (including more than 30 000 emails) during a simulated DDoS campaign. The exercise is testing how they would respond and co-operate in the event of sustained attacks against the public websites and computer systems of major European banks. If real, such an attack would cause massive disruption for millions of citizens and businesses across Europe, and millions of euros of damage to the EU economy."

In other words...

"China" is cyber-attacking the EU but no one is attempting to claim it's China.

Next story.

How does one 'simulate' this?

[SuricouRaven]

What exactly are they doing? I can think of no way of 'simulating' a massive DDoS short of actually doing it. The only possibility I can see is that they are testing the protocols management put in place regarding who talks to who to make sure that the government advisors are kept informed - lots of phone calls along the lines of 'I'm attacking your mail server, pass it on.'

Re:How does one 'simulate' this?

[Beryllium+Sphere(tm)]

For which the correct term would be "tabletop exercise", not "simulation", but it's still valuable and I recommend it to clients as the first step in testing their BC/DR plans.

Re:How does one 'simulate' this?

[zig007]

They simulate it like the military simulates casualties I suppose. "That guy's dead, now carry him".
You don't actually have to DDoS, the problem is the infrastructure around the systems, that people don't know what to do.
The systems are supposedly down, so there is not much to do about it but trying to get them up again and that is a different exercise I'd think..

Re:How does one 'simulate' this?

[michalk0]

400 experts are having a good "conferency" time wasting taxpayer money on an event that has absolutely nothing to do with its proclaimed goals. I call this security drill a complete bullshit.

Re:How does one 'simulate' this?

They just found an economical way to simulate a "cyber" attack : EU just told China that they were backing the Japanese for their islands conflict.
The only problem is to convince the Chinese to stop the "simulation" ...

Re:How does one 'simulate' this?

Yeah, CNN conducted a similar simulation with all the appropriate talking heads from government and industry. It was farcical in the extreme.

Re:How does one 'simulate' this?

"The only possibility I can see..." : Did you even read the summary before commenting?

TFA says they were "testing how they would respond and co-operate in the event of sustained attacks against the public websites and computer systems". You don't need to actually do the DDoS for this.

They would need to actually do the DDoS if they wanted to observe its (presumably unkown) results. But people know these days what the results of a DDoS are and how to respond to them when they occur. So, it only makes sense to practice this response and the associated protocols, not the actual attack.

And what "simulation" actually means is purely objective. Children playing with wooden guns are simulating an armed conflict, as far as they are concerned.

30.000 emails

Wow! where do the get the equipment to even send 30.000 emails in a day? that's more then one email every 3 seconds! No one could ever press the Send-button as fast as that.

Re:30.000 emails

You are still going to get your wooosh.

Just run Mod_Evasion

Just run mod_evasion then you won't need to do squat except answer a load of emails as to why the server is slow today.

If that doesn't work, just follow Apache's handy guide, which is a couple of setting tweaks.

"If real, such an attack would cause massive disruption for millions of citizens and businesses across Europe, and millions of euros of damage to the EU economy."

Millions of euros damage...r-i-g-h-t, and how much did this exercise cost when the fixes are already known?

Re:Just run Mod_Evasion

[piripiri]

s/mod_evasion/mod_evasive

Re:Just run Mod_Evasion

Either way, congratulations! Your suggested solution to DDOS is as effective as an umbrella during an atomic bomb detonation. You do know what a DDOS is, right?

Re:Simulated?

[djsmiley]

Your brain appears to be overheating due to internal reflection of heat from your foil cap.

Ehhr...

[miffo.swe]

If someone is really out to hurt the infrastructure an DDoS attack is not that efficient. A shovel do much bigger damage if applied on a couple of strategic fibers. DDoS attacks is just nuisance and putting all efforts into stopping those but forgetting just how much damage someone malicious can do easily IRL is rather stupid.

Ten people that cuts a bunch of fiber could black out most of Sweden with ease if they just snip the right ones.

Re:Simulated?

If you look at the short video of the Pentagon explosion, one thing is missing--the huge black and red fireball (burning hydrocarbons) that we all saw blasting out the side of the World Trade Center, a result of all the fuel aboard the planes. Instead, you see a grey and black explosion--exactly what you'd expect from solid fuel/explosives and cement dust.

So what you're saying is that you think the glass and drywall construction of the WTC walls should have done just as good a job of containing the fireball as a ground-level concrete reinforced structure?

The foil is strong in this one.

Is was yesterday.

[trancemission]

TFA was posted yesterday, the exercise was yesterday,

Priceless

[frovingslosh]

Chemical sniffing boarding gate: $10,800,000

Government contract for the U.S. air travel system: Billions

$4 bag of potassium nitrate fertilizer sprinkled on sidewalk ice by a terrorist instead of salt: Priceless

Re:Priceless

Wrong thread there, buddy. But yes, that would be priceless.

Coincidence?

[equex]

It nicely coincides with Anons announced attack on Sweden today. The real thing and a drill at the same time!

Re:Coincidence?

Wow weird that's just like 9/11 when the air force was on training drills that day,

Oh and also weird that is also what happened on 7/7 in England, also a training day for the security forces that should have spotted the incident.

Maybe training missions are really just covers for real missions that if it goes wrong "ah well it was only training"

Cut to the chase, normal people get off the intern

Jeez have you guys never watched hackers or war games? Remember the Gibson, the internet vs the plague 100s vs 1 super hacker? This is what the governments need to deal with everyday!!! Personally I think the governments should just take over the internet and kick everyone off, then they can leave all their government computers connected without fear of losing state secrets regularly. The lower classes (the middle classes are gone) can just go fcuk themselves. INFACT only government endorsed companies should be allowed on this internet. That way just like real life, the only companies that do well are ones that are in bed with the politicians at the time. This way we can go back to how it was 20-30 years ago, where the lower classes were sat in front of a box and governments and advertisers just sent stuff for them to look at after they have worked their 9-5 making min wage so that the elite class can make even more money. The sooner we get to a state where the internet is regulated like other mediums then we will all be better off, lowerclasses dont need hope, they just need to be distracted enough that they cannot resist.

In related news....

...I just administered a MASSIVE shit on my neighbors lawn.

FYI

The only reason it is in the media so much is because the Globalist are getting ready to introduce an Iron Grip control of the Internet, which will further piss people off. "but they won't implement it" (yet).

ho hum

[Anarchduke]

sounds like just another day trying to use the time warner website.

30K? ONLY 30K emails

i could do that in seconds
what kind a moron is running this world

I'm confused

[Required+Snark]

Who are they going after in their simulated attack?

Typo In Your Comment

Globalist? You spelled "Americans" wrong. The EU is not conspiring to harm the Internet, its protecting it from the damn American politicians and corporations!

Re:EUROPA !! WHAT DOES EUROPA KNOW OF WAR ??

Count the entries at: http://en.wikipedia.org/wiki/List_of_conflicts_in_Europe
Sum: 502 entries dating back to antiquity.

27 of these in the 13th century
38 of these in the 14th century
54 of these in the 15th century
56 of these in the 16th century
42 of these in the 17th century
39 of these in the 18th century
51 of these in the 19th century
73 of these in the 20th century
11 of these in the 21st century

In most of these there where at least one victor who know how to win, so I suppose that Europeans do know their stuff, they are just tired of it...

that list needs expansion

[mapkinase]

"400 experts from major financial institutions, telecoms companies, internet service providers and local and national governments across Europe "

What if they randomly perform cyber-attacks against personal home computers as well, find holes, and notify the user via ISP?

Drink Coffee and Wait for it to end

Every week you hear about a sustained DDoS taking down some well known website or service. Generally the victim has the option of sitting around and waiting for it to end as network tricks generally don't do well when facing an attack of this type. While I await to see the report that comes of this, I don't imagine it will reveal anything more than the typical "we didn't do as well as we hoped, please send us more money"

HACK THE PLANET!

[allaunjsilverfox2]

But in all seriousness, I can't imagine what they could do other than take down the servers. Unless there was some emergency order that allowed retaliation against the offending source?