Today’s denial of service (DOS) attack on Twitter is the latest in a series of electronic attacks this year on major Internet properties, which have targeted large web hosts and domain registrars, and more recently have expanded to prominent social media sites.
The attacks knocked Twitter offline for most of the morning, with both
Netcraft [1] and
Pingdom [2] reporting about three hours of downtime. Twitter co-founder Biz Stone
confirmed [3] that the outage was caused by a denial of service attack, which affected both the Twitter web site and the services that access Twitter data via API calls, according to the Twitter
status page [4].
UPDATE: Facebook is now confirming that its performance problems this morning were caused by a similar attack. “Earlier this morning, Facebook encountered network issues related to an apparent distributed denial of service attack, that resulted in degraded service for some users,” the company said in a statement. “No user data was at risk and we have restored full access to the site for most users.”
UPDATE 2: Sources at Facebook tell
CNet’s Elinor Mills [5] that today’s attacks targeted the profile of a single user on multiple social media sites, including Twitter, Facebook,
LiveJournal [6], Blogger and YouTube. ”It was a simultaneous attack across a number of properties targeting him to keep his voice from being heard,” said Max Kelly, chief security officer at Facebook.
While Twitter has a history of uptime challenges, other recent attacks have disrupted service at some of the largest hosting providers, including companies who are experienced in defending against these type of attacks. Here’s a review of the major attacks seen in 2009:
- Aug. 2-3: Sites in the Gawker Media [7] network, which includes some of the most ppopular blogs, were offline for extended period due to a denial of service attack. (More from the New York Times [8]).
- July 28: Dedicated server provider SoftLayer Technologies [9] and domain registrar Dotster [10] are each hit with a large denial of service attacks targeting their domain name servers. The attack on SoftLayer caused availability problems for TechMeme and TwitPic, while thousands of web sites hosted at Dotster were down.
- April 6-7: Customers of The Planet [11] are hit by web site outages as a result of a DDoS aimed at the huge hosting company. “We will be updating DNS to mitigate attack risks further, but the attack volume was massive,” The Planet said on its Twitter stream [12]. “Given the volume of the attack, our network operations team rerouted all name server traffic through our DDoS mitigation capabilities.” The Planet hosts more than 48,000 servers.
- April 2-5: Domain registrar Register.com is hit with a DDoS [13] that causes several days of disruptions for its customers. Register.com is the eighth-largest registrar, managing 2.7 million domains.
- March 30-April 1: Cloud computing provider GoGrid [14] is hit by a “large, distributed DDoS attack,” which disrupts service to about half [15] of its 1,000 customers. “We’ve been in the hosting business for over 8 years now, and have generally been able to prevent most incidents from impacting customers as heavily as this attack did,” GoGrid said on its blog.
- March 31: A DDoS attack knocks UltraDNS offline [16] for several hours. UltraDNS, which is owned by NeuStar, runs high-availability DNS services for online retailers and companies including Oracle and Juniper. Successful attacks on DNS providers are not unprecedented, but these services are designed to be more resilient than standard provider DNS servers.
- Jan. 23-24: An denial of service attack on the DNS servers for large web host and registrar Network Solutions [17] caused downtime or poor performance for hundreds of thousands of web sites.
Denial of service attacks use large networks of computers (often compromised desktop computers) to generate traffic that overwhelms a web site or network. These attacks have become more powerful in recent years as these “botnets” have grown in size.
Obviously, there’s no way to know whether any of these attacks are connected. But a worrisome common thread is that these were all large-scale attacks that disrupted service for large providers.
Rich Miller is the founder and editor-in-chief of Data Center Knowledge, and has been reporting on the data center sector since 2000. He has tracked the growing impact of high-density computing on the power and cooling of data centers, and the resulting push for improved energy efficiency in these facilities.
Article printed from Data Center Knowledge: http://www.datacenterknowledge.com
URL to article: http://www.datacenterknowledge.com/archives/2009/08/06/twitter-is-latest-victim-in-series-of-attacks/
URLs in this post:
[1] Netcraft: http://uptime.netcraft.com/up/performance?site=www.twitter.com
[2] Pingdom: http://www.pingdom.com/reports/vb1395a6sww3/month/?name=twitter.com%2Fhome&month=8&year=2009
[3] confirmed: http://blog.twitter.com/2009/08/denial-of-service-attack.html
[4] status page: http://status.twitter.com/post/157191978/ongoing-denial-of-service-attack
[5] CNet’s Elinor Mills: http://news.cnet.com/8301-27080_3-10305200-245.html
[6] LiveJournal: http://community.livejournal.com/lj_maintenance/125027.html
[7] Gawker Media: http://gawker.com/
[8] New York Times: http://www.nytimes.com/2009/08/05/technology/companies/05gawker.html
[9] SoftLayer Technologies: http://www.softlayer.com
[10] Dotster: http://www.dotster.com
[11] The Planet: http://www.theplanet.com
[12] Twitter stream: http://twitter.com/theplanetdotcom
[13] hit with a DDoS: http://voices.washingtonpost.com/securityfix/2009/04/web_sites_disrupted_by_attack.html?wprss=securityfix
[14] GoGrid: http://blog.gogrid.com/2009/03/31/message-from-gogrid-founders-regarding-denial-of-service-attack/
[15] about half: http://news.cnet.com/8301-1009_3-10208732-83.html
[16] knocks UltraDNS offline: http://www.theregister.co.uk/2009/04/01/ultradns_ddos/
[17] Network Solutions: http://www.networksolutions.com
[18] Rich Miller: http://www.datacenterknowledge.com/archives/author/richm/
Click here to print.
