Cyber Attacks May Have Originated in U.K.
A security firm is reporting that last week's attacker weren't from North Korea after all.
Nguyen Minh Duc, senior security director at Bach Khoa Internetwork Security (Bkis) in Vietnam, is claiming that last week's cyber attacks on the United States and South Korea originated in Britain, not North Korea. His analysis is based on data collected that actually contradicts the findings of South Korea and the U.S. It was also reported over the weekend that an IP address originating in Britain was blocked by the Korea Communications Commission. Coincidence? Probably not.
According to Mr. Duc, the infected computers comprising the malicious army flooding websites such as the White House, the Treasury, the FTC, and the National Intelligence Services broadcasted requests every three minutes to one of eight servers. Mr. Duc said that Bkis gained control of two servers that in turn were used to hunt down the master server using an IP range 195.90.118.x. He said that the IP is registered to the Global Digital Broadcast in the U.K.
"Having located the attacking source in UK, we believed that it is completely possible to find out the hacker," he told Daily Tech.
The data collected from the master server indicated that 166,908 PCs in 74 countries were infected. Most of those resided in South Korea, followed by Australia, China, the U.S., Vietnam, and five other countries.
- Google Launches Labs for Google Calendar
- UFC Blacklisting Fighters Signing with EA
- Last Week's Cyber Attacks Exposed Data
- IBM Masking Technology Hides Data
- NASA Says ISS Coming Down in 2016
- This is What the Black Wii Box Looks Like
- Shares of Amazon, Netflix Rise From Rumors
- RIM To Launch Social Network for BB Users
- Verizon to Launch Own App Store, Eyes Apple
- State Department: FireFox Costs Too Much
- Microsoft Stores Coming This Fall, Near Apple
- $23 Quadrillion Charged on Visa Statements
- WoW Player Threatens To Blow Up Plane
- Facebook Hits 250 Million Members
- Pictured: The Guitar Hero 5 Drum Kit
- Hulu Explains its Cease in PS3 Streaming
- Music Industry Wants Money from TPB Sale
- Report: Microsoft Security is Unexceptional
- Sony Removes Content Approval for PSPgo
woohooo, australia is way up there, great effort considering our population
woohooo, australia is way up there, great effort considering our population
well we are the same country that thinks filtering the internet is a good idea that will work, and thinks an r18+ rating for games is witchcraft. clearly not the most tech/security savvy ppl...
Mr. Nguyen... The family name comes first in Vietnam.
yawn....
IM BEHIND 7 PROXIES
Or the IP was spoofed
If its taking this long to find out they might as well give up...they probably won't find the dude.
Or the IP was spoofed
Or they were using someones unsecured wireless interweb connection.
Ok, the first installment of this saga was "Attacks came from North Korea", and then we had "Attacks actually came from United States". Now we have "Attacks really really came from UK".
Let's just cut to the chase...
"We have no f'ing idea where the attacks came from"