 |
|
|
July 22, 2008Georgia's President Subject of DDoS AttackShadowserver Foundation is reporting that the website of President Mikhail Saakashvili of Georgia has been under attack from a distributed denial of service (DDoS) for over 24 hours.  served by picapp.com The server [62.168.168.9] which houses the website has been largely offline since the attack started. Passive DNS records show the system houses several other websites which are mostly unrelated to the Georgian government. However, the server does also host the Social Assistance and Employment State Agency website (www.saesa.gov.ge). This website along with the others on the host have been rendered inaccessible.
Is the attack political or perhaps nationalistic in nature? Your guess is as good as ours but it doesn't take much to come to this possible conclusion. Recent DDoS attacks against various other neighbors of Russia to include Estonia have been quite popular in the last few years. We do not have any solid proof that the people behind this C&C server are Russian. However, the HTTP-based botnet C&C server is a MachBot controller, which is a tool that is frequently used by Russian bot herders. On top of that the domain involved with this C&C server has seemingly bogus registration information but does tie back to Russia.  served by picapp.com Earlier this month over 300 web sites were reported to be defaced in Lithuania after a law was passed banning the public display of Soviet symbols and the playing of the Soviet national anthem. Earlier in the summer Estonia web sites were allegedly attacked by Russians after moving a Soviet World War III monument to a less prominent location. [The Website for the President of Georgia Under Attack - Politically Motivated?]
Posted in Tech News
by #!/usr/bin/geek at 2008-07-22 18:52 Eastern
Tags: botnet irc computersecurity coporatesecurity datasecurity hacker hackers hacking
Comments
Post a comment
|
