Slashdot Mirror

← Back to Stories (view on slashdot.org)

Why Lizard Squad Took Down PSN and Xbox Live On Christmas Day

Posted by samzenpus on from the ruining-it-for-everybody dept.

DroidJason1 writes Early Christmas morning, hacker group Lizard Squad took credit for taking down PlayStation Network and Xbox Live for hours. This affected those who had received new Xbox One or PS4 consoles, preventing them from playing online. So why did they do it? According to an exclusive interview with Lizard Squad, it had to do with convincing companies to improve their security — the hard way. "Taking down Microsoft and Sony networks shows the companies' inability to protect their consumers and instead shows their true vulnerability. Lizard Squad claims that their actions are simple, take down gaming networks for a short while, and forcing companies to upgrade their security as a result."

55 of 336 comments (clear)

  1. They're assholes. by Anonymous Coward · · Score: 3, Insightful

    Why did they do it? They're assholes.

    1. Re:They're assholes. by burni2 · · Score: 3, Interesting

      Perhaps because they are not those assholes, as you imply?

      They could have done much more harm with access to credit card information, like transfering money to many dubious locations.

      So they just gave you time to think about your game consumption, and the opportunity to think about the "silent" in silent night.

    2. Re:They're assholes. by Mister+Transistor · · Score: 3, Insightful

      (Waves Hand)

      These are not the assholes you are looking for...

      So they weren't as malicious as possible, that gives them a pass somehow?

      --
      -- You are in a maze of little, twisty passages, all different... --
    3. Re:They're assholes. by burni2 · · Score: 2, Interesting

      A pass in the sense, that they might have used the only possible solution to give these companies a hint. As those companies did not do their share in protecting their network - and their users.

      In law there is a principle, that in the case of an emergency you can justify breaking law without punishment.

      But, this does not justify torture, but it gives you the option to kill someone that instant this person threatens your or other human life directly.

      Also those "bastards" did not impede on basic human rights,
      even the right to "commerce" is only slightly restricted now (it will be up and running quickly), no company will be bankrupt.

      Nor was personal data published. If they would have done that, the verdict would be different because it would impede on human rights.

    4. Re: They're assholes. by Anonymous Coward · · Score: 4, Insightful

      No they couldn't. This was a ddos attack that any dumass with enough gear can acclompish. They're a bunch of adolescents trying to become rock stars. There is not one ounce of benevolence here. Sorry to inform u.

    5. Re:They're assholes. by JackieBrown · · Score: 5, Informative

      So they just gave you time to think about your game consumption, and the opportunity to think about the "silent" in silent night.

      They stopped because they were paid off. Thinking of them as noble or anything less than assholes gives them to much credit.

      https://twitter.com/LizardMafi...

      Lizard Squad @LizardMafia 10h 10 hours ago
      Thanks @KimDotcom for the vouchers--you're the reason we stopped the attacks. @MegaPrivacy is an awesome service.

    6. Re: They're assholes. by Anonymous Coward · · Score: 3, Insightful

      "Hey, I could have stabbed you in the eye, but instead I just beat you down. No worries you will heal and by the way, all I did was show you you need a self defense class. See how nice and helpful I am?"

    7. Re:They're assholes. by DarkOx · · Score: 5, Insightful

      I think at least some blame does need to be lay at the feat of Sony and Microsoft here, but not because of 'network security' but rather creating the risk in the first place where there does not need to be one.

      This was basically a DDOS attack. By and large those are difficult to defend, and the usual defense is just having over whelming resources. Should everyone just go an 90% under subscribe systems just to make the DDOS proof? I don't know does not see practical.

      Why do these systems need network access to play a game bought on a disk? That is the bigger question, sure I can understand only supporting multiplayer through a centralized service, my issue is with the activation and phone home crap. There is no "good" reason someone should not be able to use these things without network access for single player experiences.

      Customers out realize that the system is brittle because Sony and Microsft created a hard dependency where there never needed to be one. It might not be their fault they are attacked, but they do know or should have know they are targets. Hopefully the lession they take away from this is that basic functionality should be there if you have the system and game disk fresh out of box. Maybe you can't update, download new content, do multiplayer but folks ought to be able to at least play with it even if the network is down.

      That way the scope of these little disasters would be limited.

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
    8. Re:They're assholes. by gbjbaanb · · Score: 3, Insightful

      Ok, so there are many aspects to this - big corporation, single points of failure, 'improve security', steal credit cards/passwords, offline play, etc but there's one that stands out for me:

      DDoS. Its trivially easy to send massive amounts of data at something and we have pitiful ways of mitigating it - in fact there is nothing you can do to mitigate it except buy more pipe than the attacker can fill. This is pants and isn't something the attacked companies can do anything about (except buy more pipe - which is ok if you're the size of Microsoft)

      We need to start putting egress filtering in place to prevent these easy attacks, if the networks dropped all packets that didn't have a correct source IP, most DDoS would disappear as an attack (sure you'd still be able to gather lots of people/hacked machines together to instigate a DDoS but the attacker would be able to tell who they were and possibly get them fixed/cleaned for future).

      The definition of a correct source IP - its an IP address the ISP owns. Its too easy to just create packets that have a random source IP or the IP of the target. We should be fixing this aspect of the internet years ago.

    9. Re:They're assholes. by jtwiegand · · Score: 2

      I think the reason companies include the nuclear, always-online, DRM model, is because they are under the mistaken assumption that 1 pirated game = 1 lost sale. This is almost certainly not the case, or even close. I'd wager it's more like 1 pirated game = .01 lost sale.

    10. Re: They're assholes. by Anonymous Coward · · Score: 3, Informative

      Hi. You are dumb. Very dumb. Now, being a moron, you probably don't realize just how dumb you are, so I won't hold it against you. But now that I have informed you that you are stupid, you now have a responsibility to not go around talking about things you are ignorant about (likely everything).

      Simply because something is not physical does not make it not real. And, in actuality this "attack" was as physical as a door. Routers are physical, switches are physical, computers are physical even if their OS has been virtualized. And the services they provide are just as real as the doctors' services behind a door at the physician's office.

      So distinguishing between a DDOS attach and blocking a door is rather stupid and you should feel shame by bringing up such a ridiculous argument. Go stand in the corner, child.

    11. Re:They're assholes. by Penguinisto · · Score: 5, Insightful

      Or maybe they are more like Snowden and Assange and just egotistical assholes but on a smaller scale.

      Need to take a bit of exception here, but mostly because of degree and motive:

      * You can agree or disagree with what Snowden did, but you cannot deny that the man acted on principle - more importantly, he put his name and his ass on the line for what he did. Note that he also could have just as easily just anonymously *sold* the info viz. Silk Road/BTC and quietly retired as a zillionare in Ecuador.

      * Assange? IMHO he's a narcissistic asswipe (I base this mostly on Cryptome's assessment of Wikileaks' early dealings with them), but again, he put his name and ass out there for better or worse.

      * These "lizard" guys? Script kiddies who wanted a 'rep and managed to get paid, then tried to cover it up with some nobility bullshit. Perhaps a smaller-scale version of Assange in the aspect that they wanted a reputation, but unlike Assange, they weren't willing to stick their necks out.

      --
      Quo usque tandem abutere, Nimbus, patientia nostra?
    12. Re:They're assholes. by Chaos+Incarnate · · Score: 2

      These systems don't need network access to play a game bought on a disk.

      The Xbox One at least used to need Internet access for first-time setup (it didn't include a final firmware image out-of-the-box) - don't know about PS4. But once that's done, you can play offline in single player or local multiplayer to your heart's content.

      --
      Benford's Corollary to Clarke's Law: "Any technology distinguishable from magic is insufficiently advanced."
    13. Re:They're assholes. by Anonymous Coward · · Score: 2, Informative

      The games CAN be played offline. But unfortunately, the systems (and many of the games) needed an initial patch, which they couldn't get.

      My son was lucky in that he received his Xbox One on xmas eve and the updates downloaded fine. Come Xmas day, we just popped in the game disc and it ran just fine once we told the Xbox to go to offline mode.

      The reason these guys are ASSHOLES is because of all those excited kids that opened their BIG present and couldn't do anything with it because the update patches couldn't be downloaded. If these guys came through and took a toy from a kid's hand, you wouldn't be saying they aren't assholes because they COULD have beat people with bats at the same time.

    14. Re: They're assholes. by ScentCone · · Score: 4, Insightful

      A door and windows are real.

      It's idiots like you, who think that businesses, networks, people's entertainment time, and the like "aren't real" that give comfort and encouragement to idiots like the guys who pulled this. They did it to be dicks, just like other dicks might throw a rock through your window and nail your TV right before you were going to watch the World Cup match you've been waiting weeks to watch with your friends. Or, in a closer analogy, waiting until moments before the game starts, and then cutting the cable that services your house or apartment building.

      Let me guess: that soccer game's not real! They're not at the stadium in person, so denying them the chance to watch it as they planned isn't actually harmful! Destruction of the time someone plans to use in a certain way is a theft more real, in many ways, than stealing physical objects. You'll never be able to replace the time. Which is one of the reasons these guys are dicks. Deliberate, purposeful, not noble in any way, dicks.

      --
      Don't disappoint your bird dog. Go to the range.
    15. Re:They're assholes. by ScentCone · · Score: 4, Insightful

      The only victims here are the users who bought into a DRM'ed, locked down platform.

      You're right, all those people should have chosen to buy fun, well-developed, richly supported gaming platforms from one of the many providers who offer open source, freedom-minded, anti-IP, systems that have a large selection of really cool massive multiplayer games with giant networks supporting all of that activity. There are so many to choose from that I'm sure it's why you just didn't have time to list them.

      --
      Don't disappoint your bird dog. Go to the range.
    16. Re:They're assholes. by DarkOx · · Score: 4, Insightful

      This is true, but the issue is that is dumb! You really should be able to unbox a toy on Christmas morning have it work without going out the Internet and connecting to some account.

      Maybe not all the functionality can be there, but functions that don't naturally require network access should not require network access.

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
    17. Re:They're assholes. by Casualposter · · Score: 4, Insightful

      Ok, here are a few points:

      (1) Distributed Denial of Service (DDOS) is not a security issue for the victim. It is a security issue for the thousands of computers illegally used in the attack - think thousands of illegally accessed computers, theft of the electricity and network access required to run a bot net sufficient to impact a large network like Microsoft or Sony's.
      (2) Nothing the Victims security team could do would prevent a DDOS from occurring. That Microsoft or Sony's security was bad, is irrelevant to any DDOS. DDOS is like having a group of people drive bumper to bumper around your block. You can't get out, and that fancy home security system isn't going to stop the cars in the street.
      (3) They were apparently in it for something other than principle as it has been pointed out that they tweeted that they received compensation to stop the DDOS. So extortion? That's not a protest at all. That's like someone getting out of one of those cars and asking you for money to make the artificially created traffic jam go away. Which is very similar to an arsonist selling protection from him burning your house down.
      (4) Anyone who wanted to access the affected networks was denied access because of the DDOS. They paid for access to that network and their time on the network was essentially stolen from them. The customers who are adversely affected here are not mentioned - they are just as much victims as the corporate network. Consider for a moment that many of these people may not have much time to access the DDOS's networks due to other constraints upon their time (work, school, etc.) and were looking forward to enjoying some play time. Those plans were cancelled without recourse by the Lousy Lizard Squad and their army of stolen computers. I say stolen computers because I am pretty sure that any DDOS was not done using thousands of willing participants who signed upon on someone's website to allow the Lousy Lizard Squad to DDOS Microsoft. They are accessing other peoples property and spending other peoples resources in electricity and network access to run the DDOS attacks and that is theft of services plain and simple.

      So there are four decent reasons to call these people thieves and that makes them assholes.

      --
      Creative Spelling Copyright (2002). May use without Persimmons
    18. Re:They're assholes. by BarbaraHudson · · Score: 3, Interesting

      Perhaps because they are not those assholes, as you imply?

      They could have done much more harm with access to credit card information, like transfering money to many dubious locations.

      So they just gave you time to think about your game consumption, and the opportunity to think about the "silent" in silent night.

      They ARE assholes. Their excuse is as nonsensical as someone saying that they're justified in walking into my home and taking some of my stuff because I don't lock my door - or I don't have "enough" locks. Attention-seeking assholes. (and no, this DDoS does not affect me - I don't own either a sony or a microsoft console).

      I can just see it - "Judge, I only held up the bank to show that they need to add more security."

      If they're so concerned, why don't they work on solutions to these problems instead of acting like Santa didn't give them a pony.

      BTW, they wouldn't have been able to get CC numbers just from a plain vanilla DDoS. They're not actually hacking into the servers.

      --
      "Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
    19. Re:They're assholes. by BarbaraHudson · · Score: 5, Insightful

      Another mitigation strategy would be to allow players to directly connect to each other rather than go through a central server. We were able to do this a couple of decades ago, but now we can't? Or rather, it's because the companies want to continue to control what you do after the sale, to sell you the parts of the game they "forgot" to put on the disk.

      And when the servers no longer support that game that you and your friends really love because it's become a classic, you're hosed.

      --
      "Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
    20. Re:They're assholes. by BarbaraHudson · · Score: 2

      It's the old version of "batteries not included," but now on the INTERNET so somehow it's okay.

      --
      "Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
    21. Re:They're assholes. by Anonymous Coward · · Score: 2

      Plus their benefit vs harm ratio is kinda crap. Any idiot knows that online game stuff is vulnerable to DDOS. It's normally not a big problem because there doesn't seem to be enough money for most attackers to DDOS such stuff regularly. Most of them probably want more than vouchers from Kim Dotcom. So you cause a problem now and you don't really reduce future problems.

      Whereas it seems lots of people actually didn't know the bad and evil things their governments were doing, and Assange and Snowden opened at least some of their eyes. Greater awareness of that is a step towards eventually reducing the bad stuff. It may not actually fix stuff (people might still not care), but what other better options and paths are there?

    22. Re: They're assholes. by BarbaraHudson · · Score: 2

      Also those "bastards" did not impede on basic human rights, even the right to "commerce" is only slightly restricted now (it will be up and running quickly), no company will be bankrupt.

      Bringing in the term "human rights" to attempt to say "well, since they didn't violate basic human rights, it's okay that they did a DDoS to point out the problems with security. That's like saying "I killed your therapy dog, but owning a dog isn't a basic human right, and I did it to point out that you need better security for your dog, so instead of getting upset you should be thanking me."

      And your reference to Kim DotCom is just another red herring. Even if the handling of that case was wrong, the last time I looked two wrongs don't make a right.

      --
      "Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
    23. Re:They're assholes. by Penguinisto · · Score: 3, Informative

      Plus their benefit vs harm ratio is kinda crap. Any idiot knows that online game stuff is vulnerable to DDOS. It's normally not a big problem because there doesn't seem to be enough money for most attackers to DDOS such stuff regularly. Most of them probably want more than vouchers from Kim Dotcom. So you cause a problem now and you don't really reduce future problems.

      Whereas it seems lots of people actually didn't know the bad and evil things their governments were doing, and Assange and Snowden opened at least some of their eyes. Greater awareness of that is a step towards eventually reducing the bad stuff. It may not actually fix stuff (people might still not care), but what other better options and paths are there?

      Quoted complete for greater exposure. You should have posted this under a 'nym or login, because it needs to be modded way the fuck up. :)

      --
      Quo usque tandem abutere, Nimbus, patientia nostra?
    24. Re:They're assholes. by Krojack · · Score: 3, Interesting

      Being able to directly connect to other players is fine but you need to already know a buddy and their IP address first. You would no longer be able to connect to a random game with random people. I loved playing Doom 2 & Warcraft 2 with others but could only do it with my friend when he was home and online or we packed up our computer and took it to the other persons house.

      That COULD be an option but very few people would use it today.

    25. Re:They're assholes. by BarbaraHudson · · Score: 3, Informative

      True, but they can always send their current ip address to their friend via email, chat, text, or a phone call. Or run a small server that people can join up to independent of the game companies, just to get the other players IPs.

      --
      "Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
    26. Re:They're assholes. by jader3rd · · Score: 2

      The real assholes here are MS and Sony for knowingly maintaining insecure networks even after Lizard Squad already took them down and publicly warned that it was but a taste of what was to come on Christmas.

      A very secure system can still be overwhelmed by an attacking system. It's a more secure design to safely shut down when being over whelmed than to "turn off" security and just let the information flow. So being taken down by a DDoS does not an insecure network make.

    27. Re:They're assholes. by Anonymous Coward · · Score: 3, Insightful

      There's a secondary (or maybe it's the primary?) bonus to this tactic as well: Shut down the servers in the future and those games just stop working. They cease to be competition for the new games they're trying to sell to you.

      This is the other edge of the copyright sword as well, as seen in the movies and music industry. Distribution of digital works is fast and nearly free. With thousands of years of art and entertainment available at your fingertips, why cough up hard-earned dough for rehashed crap anymore?

    28. Re:They're assholes. by ShaunC · · Score: 2

      I'd say it's worse than "batteries not included." If I give or receive a gizmo that needs batteries, and I didn't get them ahead of time, even on Christmas morning there were several options. Walgreens, CVS, and most gas stations were open and they all sell batteries, so I could go remedy the problem if need be. With this DRM always-online nonsense, there aren't any options.

      --
      Thanks to the War on Drugs, it's easier to buy meth than it is to buy cold medicine!
    29. Re:They're assholes. by im_thatoneguy · · Score: 2

      Total bullshit. They DDOS'ed the gaming servers. That's not "insecure" that's just overwhelmed. That's like saying that your bank account is insecure because protesters can chain themselves to the door handles and prevent you from entering the building. It is far more expensive to secure your servers against random bursts of demand because they shouldn't and can't really protect against it. It would be like saying "well I shot up your house to prove how weak your walls and windows are." No shit. I'm not going to install ceramic plating costing millions of dollars throughout my exterior siding nor am I going to sacrifice my nice large windows and replace them with 3" bullet proof glass because somebody might at some point shoot a gun at my house.

    30. Re:They're assholes. by im_thatoneguy · · Score: 2

      If game developers build against a specific library and your console has an older version (because manufacturers have to get a firmware build to install months before launch) then it's not easy to release a game that uses both the newer, more stable, higher performance library and the older one sent months ago to get something into the manufacturer's hands.

      I imagine that newer consoles all have sufficiently new firmware/libraries to allow games to run out-of-the-box but I don't think expecting launch-day hardware to for instance to be up to date is realistic. Especially since the only way to keep up with demand is to start manufacturing so much earlier than shipping.

  2. Rubbish by JaredOfEuropa · · Score: 5, Insightful

    If you want to prove these companies' inability to protect their customers, you hack into their systems and publish some anonymized but verifiable data. This is just petty vandalism; DDOSing game companies does not endanger customers or their privacy, it just denies them a service they paid for. It's like parking your truck across the entrance to the parking lot, in order to "prove that the mall has poor security".

    --
    If construction was anything like programming, an incorrectly fitted lock would bring down the entire building...
    1. Re:Rubbish by funkymonkjay · · Score: 4, Insightful

      Not quite. It wouldn't be a truck. It would be other people's trucks, stolen, owners unaware, repeatedly circling the parking lot, maybe takes a ticket but backs out and go around for more.

    2. Re:Rubbish by Tom · · Score: 3, Insightful

      Nonsense. On their gaming systems you are unlikely to find any data that the companies would consider valuable. And 10+ years of experience show that "oops, we leaked customer data" isn't really a game-changer.

      But cries from customers can be. Denying them the joy of their freshly gifted gaming console can be very powerful. It's not the nice way, definitely not, but it makes headlines.

      I doubt it's going to change anything, because customers are too used to computers not working. That is the real damage that 30 years of Microsoft dominance have done to the world.

      --
      Assorted stuff I do sometimes: Lemuria.org
  3. Such nobility by Anonymous Coward · · Score: 5, Funny

    Given such lofty and noble intentions I'm sure they will be making their names known any day now so that the public can thank them for thei civil service...

  4. Consoles are worthless offline by ahotiK · · Score: 2, Interesting

    This actually shows how worthless consoles are now days without an Internet connection wich has been accepted by the masses. Most of the PC games are now unplayable without a connection too (in some cases even for single player mode!!!) which I find completely unacceptable.

    1. Re:Consoles are worthless offline by tompaulco · · Score: 2

      Consoles aren't worthless offline. I didn't play any games yesterday, but if I had, I would have been unaware of the outage. Instead, I used my console to play some movies, and it worked just fine for that, even though part of that was technically online as well. It is only games that require an online connection that are worthless offline. Which is why I own zero of said genre.

      --
      If you are not allowed to question your government then the government has answered your question.
    2. Re: Consoles are worthless offline by CronoCloud · · Score: 2

      That's because Destiny is an MMO-shooter.

  5. Security is NOT the issue here. by Anonymous Coward · · Score: 5, Insightful

    These companies were not hacked, there was no data breach or loss of customer or employee information. These were simple DoS attacks. It doesn't take much knowledge or skill. As far as I can tell, their security functioned as intended.

  6. Bullshit by Lunix+Nutcase · · Score: 4, Insightful

    So they wouldn't mind if someone broke into their houses? Since, you know, it was just to force them to upgrade their security.

    Denying people access to these services repeatedly is about being griefers not caring about the users' security.

  7. Glad to hear it's not their just pathetic jerks by blahbooboo · · Score: 5, Insightful

    So they ruin the day both for thousands of kids with new consoles and the tech support/security teams for the companies who now have to come in to work on Christmas. I have another theory why they do this on Christmas -- this group of hackers (at a psychological level) are just sad and lonely people who are angry with the world and want to ruin the joy/fun for others.

    1. Re:Glad to hear it's not their just pathetic jerks by Lunix+Nutcase · · Score: 2

      They are jerks. This is just post hoc bullshit to try to paint themselves as white knights.

  8. Accidental infringement by tepples · · Score: 2

    Would copyright infringement be a valid form of protest if the incumbent music publishers start suing indie songwriters on trumped-up charges of creating a derivative work by accident? (For example, Bright Tunes Music v. Harrisongs Music)

  9. For that, you'd have to do a different attack by Opportunist · · Score: 4, Insightful

    All a DoS does is prove one thing: That you can field more bandwidth than your target. Unless of course it's one where you exploit the weakness of a target system (e.g. by shutting down a service deliberately using an exploit). Else, a DoS proves little.

    If a DoS exposes any kind of security issue, then a global one: That there are techniques that allow you to use little bandwidth on your end to cause the other end to drown in traffic. There are a few documented ways how you could pull this off, the most trivial one would be to spoof the IP address of your target system with some server that sends back a ton of info for a tiny request. E.g, DNS. Such an attack doesn't prove that the target system is vulnerable, it proves that the DNS protocol itself is beyond repair (and yes, it is, and there are secure replacements but ... you know, it's the internet... it works, changing stuff costs money, so...).

    So what does the attack prove? Well, I wish I could say it proves without a doubt that MS and Sony have a security that matches the opaqueness of an erotic dancer's dress and should up their security (well, they do, and they should, but this attack doesn't prove that). It proves that we use technology that makes such an attack not only possible but actually trivial. And that EVERY company on the net is susceptible to something like that because unlimited bandwidth does not exist.

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    1. Re: For that, you'd have to do a different attack by beanpoppa · · Score: 3, Informative

      I don't think you understand how amplification attacks work. Anti-spoofing measures don't do anything. The spoofed messages don't come into your network. The very large responses do. And by the time they reach your filters, the damage is done; they've already filled your pipes. As the patent said, it's not exposing a weakness on your system. It's exposing a weakness on third party DNS servers, and the hundreds/thousands/millions of peoples' PCs that have been controlled via botnet.

  10. Oh christ, this again? by goodmanj · · Score: 4, Insightful

    "We're trying to get shopkeepers to install stronger windows", said the kid throwing bricks.

  11. Modern day bullies by Atrox+Canis · · Score: 2

    These kids get picked on in school and they are ill equipped to figure out how to handle it. So, they dump their teenage angst by being bullies themselves. As others have already stated, this was no "hack". It was a DDoS and it will likely never compel the affected companies to modify their "security". And their actions gain no sympathy amongst the end users. Few people are likely to take their new consoles back to the store and trade them in for (insert non-electronic somethingsomething here). And the attacked companies are not going to violate the 80/20 rule to increase capacity.

    I don't own a console and currently am not playing any games that would have been affected if there are PC versions in the target list. But, this kind of attack irritates me anyway and I think I would enjoy seeing a few of these worthless turds being skull fucked by a horde of hedgehogs, or forcing them to watch something on the Lifetime channel.

    --
    Charter Member of The Committee Group For The Elimination And Eradication Of Repetitive Redundancy
  12. Re:It would be nice... by tompaulco · · Score: 3, Interesting

    Yeah, that would be like yanking a movie out of a movie theater just based on some threats from terrorists. Nobody would do that.

    --
    If you are not allowed to question your government then the government has answered your question.
  13. Funniest part for me: The error message in the PS3 by jbssm · · Score: 4, Insightful

    The greatest part of this is the error message I got when trying to do the update for PS Home in my PS3.

    The possible errors where: My ISP, my internet connection, my router.

    Funny how they never admit the problem could come from their side, it reminds me exactly the process I have to go trough about every time I need to go to my lab's IT office to get something fixed... now, it obviously can't be their system's fault. The system put in place by the IT department is obviously perfect, it's us - the lousy users - that are obviously doing something wrong.

  14. Ddos doesn't demonstrate security issues by Virus+Hunter · · Score: 4, Insightful

    This was a ddos attack. There's essentially no way to protect yourself from a ddos attack. It doesn't demonstrate a security issue with Xbox live or PSN. It just demonstrates that any cluster of servers anywhere can eventually be overloaded.

  15. Ways to protect vs DDoS by Anonymous Coward · · Score: 2, Informative

    Per my subject vs. many kinds of DoS/DDoS - Defensive measures that work:

    Microsoft Windows NT-based OS settings vs. DDoS/DoS:

    Protect Against SYN Attacks

    FROM -> http://msdn.microsoft.com/en-u...

    A SYN attack exploits a vulnerability in the TCP/IP connection establishment mechanism. To mount a SYN flood attack, an attacker uses a program to send a flood of TCP SYN requests to fill the pending connection queue on the server. This prevents other users from establishing network connections.

    To protect the network against SYN attacks, follow these generalized steps, explained later in this document:

    Enable SYN attack protection
    Set SYN protection thresholds
    Set additional protections

    Enable SYN Attack Protection

    ---

    The named value to enable SYN attack protection is located beneath the registry key:

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TcpIp\Parameters.

    Value name: SynAttackProtect

    Recommended value: 2

    Valid values: 0, 1, 2

    Description: Causes TCP to adjust retransmission of SYN-ACKS. When you configure this value the connection responses timeout more quickly in the event of a SYN attack. A SYN attack is triggered when the values of TcpMaxHalfOpen or TcpMaxHalfOpenRetried are exceeded.

    ---

    Set SYN Protection Thresholds

    The following values determine the thresholds for which SYN protection is triggered. All of the keys and values in this section are under the registry key

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TcpIp\Parameters

    These keys and values are:

    Value name: TcpMaxPortsExhausted

    Recommended value: 5

    Valid values: 0?65535

    Description: Specifies the threshold of TCP connection requests that must be exceeded before SYN flood protection is triggered.

    Value name: TcpMaxHalfOpen

    Recommended value data: 500

    Valid values: 100?65535

    Description: When SynAttackProtect is enabled, this value specifies the threshold of TCP connections in the SYN_RCVD state. When SynAttackProtect is exceeded, SYN flood protection is triggered.

    Value name: TcpMaxHalfOpenRetried

    Recommended value data: 400

    Valid values: 80?65535

    Description: When SynAttackProtect is enabled, this value specifies the threshold of TCP connections in the SYN_RCVD state for which at least one retransmission has been sent. When SynAttackProtect is exceeded, SYN flood protection is triggered.

    ---

    Set Additional Protections

    All the keys and values in this section are located under the registry key

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TcpIp\Parameters. These keys and values are:

    Value name: TcpMaxConnectResponseRetransmissions

    Recommended value data: 2

    Valid values: 0?255

    Description: Controls how many times a SYN-ACK is retransmitted before canceling the attempt when responding to a SYN request.

    Value name: TcpMaxDataRetransmissions

    Recommended value data: 2

    Valid values: 0?65535

    Description: Specifies the number of times that TCP retransmits an individual data segment (not connection request segments) before aborting the connection.

    Value name: EnablePMTUDiscovery

    Recommended value data: 0

    Valid values: 0, 1

    Description: Setting this value to 1 (the default) forces TCP to discover the maximum transmission unit or largest packet size over the path to a remote host. An attacker can force packet fragmentation, which overworks the stack.

    Specifying 0 forces the MTU of 576 bytes for connections from hosts not on the local subnet.

    Value name: KeepAliveTime

    Recommended value data: 300000

    Valid values: 80?4294967295

    Description: Specifies how often TCP attempts to verify that an idle connectio

    1. Re:Ways to protect vs DDoS by greg1104 · · Score: 2

      Let me see if I've got this right: did you really just suggest the DDOS attacks against Microsoft's Xbox Live would be mitigated if only they follow the recommendations of Microsoft? (Slow clap) Now that's some top grade shilling.

    2. Re:Ways to protect vs DDoS by DavidRawling · · Score: 5, Interesting

      None of these protect against a volume-oriented DDoS. Many are DoS only (single / few sources) and do not apply when every IP on the Internet appears to be sending thousands of requests, or more likely, responses. Further, you've completely ignored spoofing of addresses combined with amplification attacks (send out a 64 byte DNS request pretending to be the DDoS target, get 4kB sent to the target). Finally, regardless of the 50-100Gbps pipes MS, Sony and Amazon no doubt have, they're useless when there's 1Tbps of amplified crap directed down the pipes. With the example above, you'd only need about 4Gbps of bandwidth total (40 cheap VPS on "100Mbps" connections) to generate 256Gbps of DDoS.

      When 256Gbps of rubbish arrives at your servers or firewalls ... registry settings and kernel tweaks do jack (note that CloudFlare was hit 11 months ago with more than 400Gbps of DDoS, so this is not implausible!)

      And since it seems it was apk I'm replying to ... I'm actually half surprised you didn't try to claim that a HOSTS file would magically help.

  16. Re:Funniest part for me: The error message in the by Higaran · · Score: 3, Interesting

    I tried to get on XBOX Live yesterday, and was having trouble connecting. I figured it was because it was the afternoon and their servers got overloaded with all the people who opened their new systems and tried to get online, and it overloaded the servers. That wouldn't be the first time the xbox servers got overloaded on Christmas. I did a test and it gave me a message right away that it was not my network or isp, it said it was an issue on microsofts side. I tried again like 10 minutes later and it was fine.

  17. Ahh ok by Sycraft-fu · · Score: 2

    Well since you are clearly a network security expert, please tell us how to secure a network against being taken out be a DDoS attack. Then post your IP, we'll see how you fair. Remember, you are the asshole and deserve Legal Penalties with Scary Caps if you can't stop it.

    Here's a hint: There is no security against a DDoS attack. That's why assholes like Lizard Squad use them.