Anonymous Supposedly Plans to "Kill" the Internet on March 31
March 27, 2012 11:59 PM
comment(s) - last by
Planned DDOS campaign against DNS is meant to highlight piracy legislation issues
Al Gore may have finally met his match. While members of
aren't planning on inventing the internet, they are planning on destroying it -- supposedly.
The tricky thing about
is that they're
, so it's hard to differentiate fact from fictional prank, even if you want to. But a Pastebin has been posted dubbed "
Operation Global Blackout
", which claims that the Anons are going to test the limits of their distributed denial of service attacking capabilities at the end of March.
The DDOS campaign is expected to target the world's 13
domain name servers
(DNSs), that allow the public to use the internet by translating human legible text-string URLs into machine-readable IP addresses. If the attack indeed materializes and if the DNS servers are all taken down, the Mayan apocalypse could come early -- the internet could blink offline.
The Pastebin describes:
By cutting these off the Internet, nobody will be able to perform a domain name lookup, thus, disabling the HTTP Internet, which is, after all, the most widely used function of the Web. Anybody entering "http://www.google.com" or ANY other url, will get an error page, thus, they will think the Internet is down, which is, close enough. Remember, this is a protest, we are not trying to 'kill' the Internet, we are only temporarily shutting it down where it hurts the most.
In other words "we're not trying to kill the internet, but we're trying to kill it for a little bit," implies
The posting goes into the planned attack in explicit detail. The tool use will be the Reflective DNS Amplification DDoS tool. By spoofing the DNS server with small UDP packets which appear to have orginated from the DNS server itself, the attacker tricks the DNS server into sending messages to itself creating a cascade of failures. The "amplified" part comes from the fact that the sent packets are small, but they trigger a large barrage of data.
will reportedly try to shut down DNS servers worldwide at the end of the month.
[Image Source: Renjus Blog]
So what's the point of this planned attack? According to
To protest SOPA, Wallstreet, our irresponsible leaders and the beloved bankers who are starving the world for their own selfish needs out of sheer sadistic fun, On March 31, anonymous will shut the Internet down.
Again, there's no confirmation this post is real -- it could simply be the work of a clever security researcher trying to scare the DNS servers into beefing up their security. Also, given that the Anons have explained their reported attack vector, it may be easier to block.
It's a bit hard to believe that they could actually take down the internet.
Past attacks on DNS servers
have failed to accomplish the unthinkable -- worldwide internet outage. And
's purported past claims -- such as a threat that
Facebook would be taken down
(a claim later denied by some members), an
attack on the NYSE
, and a
DDOS attack on BART
all failed to have the intended level of service disruption. On the other hand
help take down Sony
) digital properties as well as the
U.S. Central Intelligence Agency
Thus it's a bit premature to start panicking, but it couldn't hurt to grab a few IP addresses of your favorite sites, just in case things get anywhere close to as crazy as the post promises.
This article is over a month old, voting and posting comments is disabled
3/28/2012 3:52:23 AM
Correct me if I'm wrong (flame if you must) but that goes against all I was tought and read about how the DNS name system works.
I was told and read that various ISP's and others keep their own servers for DNS lookups. If there is a request for a site that has not been visited then the request keeps going up the chain with the last resort being the actual root name servers. This was also the explanation for the DNS change propagation delay as each proxy had to get the new IP for the new or changed domain name/IP.
If that is true, wouldn't their attack and planned outage only affect new or changed domains that are still within the propagation delay or obscure, rarely requested sites?
RE: DNS Proxies
3/28/2012 4:35:43 AM
So my ISP or OpenDNS can't update their DNS for a week, big deal, I'm pretty sure most sites I visit don't change their IP addresses every 4 minutes.
RE: DNS Proxies
3/28/2012 2:51:34 PM
Each record they hold has a TTL associated with it, the record governs how long the recursive server holds it not the other way around so your ISP would not last weeks....
TTL can vary between 5 minutes and a day (for the majority of records). We use 1 to 4 hours depending on the function of the server. So, after that period of time the recursive server asks the next upstream server for a refresh if the record is requested and so on up to the root servers. A lower level server could override that setting but it could potentially set up some very interesting results where an IP/Domain changes quickly (not unusual to have some 300 second records where DR is a concern).
The last time someone seriously tried to take out the root servers was about 4 or 5 years ago, they managed to take down six out of thirteen servers (it was actually two attackers where the attacks coincided), two were actually taken off-line. The DNS system never blinked and very few people noticed, taking out all thirteen servers would be a significant task, and although I am not saying it could not be done... it would be tough.
You would also have to maintain the attack for a prolonged period of time to keep the downed servers supressed while you take down the remaining servers, although at some point the normal traffic from the downed servers would cause a snowball effect on the remaining servers. Be interesting to see at what point that occurred.
"This is about the Internet. Everything on the Internet is encrypted. This is not a BlackBerry-only issue. If they can't deal with the Internet, they should shut it off." -- RIM co-CEO Michael Lazaridis
FCC, ISPs Join Forces to Fight Routing Hijacks, Botnets
March 26, 2012, 1:51 PM
New York Stock Exchange Hack Attack Fizzles
October 11, 2011, 9:35 AM
Anonymous Targets California's Infamous BART, Hurts Citizens in the Process
August 15, 2011, 9:53 AM
Anonymous Allegedly Threatens to Destroy Facebook on November 5th
August 10, 2011, 10:42 AM
LulzSec Downs CIA's Public Site, Appears to be Subject of Framing Attempt
June 15, 2011, 7:20 PM
Netflix Announces 7-to-1 Stock Split, Eyes Explosive Overseas Growth
June 23, 2015, 8:18 PM
Sources: Hack on Fed. Database Lost 4.1M Social Security Numbers, Personal Info
June 11, 2015, 9:11 PM
The Big One: Chinese Hackers Steal Records of 4 Million U.S. Gov. Employees
June 4, 2015, 8:13 PM
Tutorial: Here's How to Force YouTube or Vimeo VIdeos to Embed as HTML5
June 3, 2015, 10:14 PM
Google Finally Fixes Maps Bug That Was Giving Racist, Profane Results
May 21, 2015, 1:43 PM
The Pirate Bay Loses Its Iconic Swedish Dot SE Domains
May 20, 2015, 6:31 PM
Most Popular Articles
F-16 Schools Trillion-Dollar F-35 in Mock Combat, Fleeing is Best Option Pilot Admits
July 1, 2015, 5:53 PM
Apple Music: The Money, The Launch Hiccups, and the Nitty Gritty Details
June 30, 2015, 5:09 PM
Quick Note: Lumia 940 XL "Cityman" Phablet Gets Teased Via Tests
June 29, 2015, 5:51 PM
SpaceX Falcon 9's Seventh Supply Mission to ISS Ends w/ Fiery Stage 1 Explosion
June 28, 2015, 1:10 PM
Windows XP, Vista Users Can Get Free Windows 10 Upgrade Thanks to Loophole
June 23, 2015, 2:23 PM
Latest Blog Posts
Sceptre Airs 27", 120 Hz. 1080p Monitor/HDTV w/ 5 ms Response Time for $220
Dec 3, 2014, 10:32 PM
Costco Gives Employees Thanksgiving Off; Wal-Mart Leads "Black Thursday" Charge
Oct 29, 2014, 9:57 PM
"Bear Selfies" Fad Could Turn Deadly, Warn Nevada Wildlife Officials
Oct 28, 2014, 12:00 PM
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
More Blog Posts
Copyright 2015 DailyTech LLC. -
Terms, Conditions & Privacy Information