Anonymous attacks and cybersecurity threats

Terrorist Attack

What type of attack was launched on DOJ?

The attack was a distributed denial of service attack (DDOS). This attack attempts to overload a websites server in an attempt to disrupt overall service to the website. The hackers used a coordinated attack in response to action taking by the Department of Justice against the website Mega upload. The site, which at the time had over 50 million users, was taken off line by the department of justice. As a result, the hacker group named Anonymous struck the DOJ website using a DDOS technique. The method of attack involves saturating the target machine with external communications requests. In this instance, the group used DDOS messages to halt and overload popular servers. Through the use of DDOS messages the victim website will be unable to respond to legitimate traffic or responds so slowly as to be rendering the website essentially unavailable. Such attacks often lead to server overload which results in a further denial of service. Anonymous implemented the DDoS attacks by forcing targeted computers to reset. It also used a method of consuming the target websites resources so that it can no longer provide its intended service. Finally, the attack obstructed the communication link between website users and the overall website so that they can no longer communicate in an effective manner (Susan, 2010).

What was compromised or breached?

At this point, files from the Department of Justice have been supposedly breached. The files however are locked and can not be seen by the general public. The group anonymous however, claims that they have the key in which to unlock the private DOJ files. The group intends to leverage this key in an attempt to persuade action on the part of the DOJ. During the attack, other websites were subsequently breached as well. These websites include Universal Music, RIAA, Warner Music Group, and the FBI. The attacks on these websites did not breach any private material or customer information.

How was the attack accomplished if known?

The attack was accomplished through a coordinated effort to overload servers and website through denial of service. As mentioned earlier, a DDOS attack directs a flood of traffic to a website and temporarily crashes it by overwhelming its servers. According to an Anonymous representative, over 5600 individuals using a networking tool called a "low orbit ion cannon" created the crash. A LOIC is software tool that aims a massive flood of traffic at a targeted site. This "weapon" disrupts communication or access, which renders the website useless (Moore, 2005).

Your own analysis and feedback about the attack?

The attack by Anonymous highlights the growing threat of cybercrime and the need to subsequently defend against it. Fortunately this attack didn't compromise private consumer information and files. However, as technology continues it rapid advancement, the possibility of a devastating attack increases. Technology, in regards to risk management, has created very unique circumstances by which companies must account for. This recent attack from Anonymous proves as much. Threats of cyber attacks, identity theft, hacking, and the spreading of computer viruses can all can adversely effect business. As such, prudent risk managers must account for these threats as they enter into a more global environment. In particular cyber attacks will become a serious problem over time. Attacks on servers and financial institutions are now becoming more common. As the proficiency of hackers becomes more adept and infringing on consumer rights, the threat of attack becomes more apparent. Over time, and as technology advances, the threat of cybercrime will grow exponentially. Businesses must therefore be proactive in their prevention of cybercrime as it relates to their overall business operations.