Looking up for Jesus

Thursday, April 11, 2013

More then 30 MMORPG companies targeted in ongoing malware attack

In at least two cases, malware was planted on update servers and spread to fans.

Researchers have uncovered an ongoing cyberespionage campaign targeting more than 30 online video game companies over the past four years.

The companies infected by the malware primarily market so-called massively multiplayer online role-playing games. They're mostly located in South East Asia, but are also in the US, Germany, Japan, China, Russia, Brazil, Peru, and Belarus, according to a release published Thursday by researchers from antivirus provider Kaspersky Lab. The attackers work from computers with Chinese and Korean language configurations. They used their unauthorized access to obtain digital certificates that were later exploited in malware campaigns targeting other industries and political activists.

So far, there's no evidence that customers of the infected game companies were targeted, although in at least one case, malicious code was accidentally installed on gamers' computers by one of the infected victim companies. Kaspersky said there was another case of end users being infected by the malware, which is known as "Winnti." The company didn't rule out the possibility that players could be hit in the future, potentially as a result of collateral damage.

"Having infected gaming companies that do business in MMORPG, the attackers potentially get access to millions of users," the researchers wrote. "So far we don't have data that the attackers stole from common users but we do have at least two incidents when Winnti malware had been planted on an online game update server and [this] malicious executable was spread among large number of the game fans. The samples we have observed seemed not to be malware targeted for the game fans but a malware module which accidentally got into [the] wrong place. But a potential of attackers to misuse such access to infect hundreds of millions of Internet users creates a great risk."

Digital certificates stolen in some of the heists have been used to sign malware that targeted Tibetan and Uyghur activists. The cryptographic certificates have also been exploited in attacks that have hit companies in the aerospace industry. Attackers frequently abuse stolen certificates to prevent the malware they're spreading from being detected by various security protections.
In addition to stealing digital certificates, the Winnti gang's campaign appears to be motivated by the desire to manipulate in-game currency, such as "runes" or "gold," that can in many cases be converted into real currency. The attackers may also want to use source code stolen from the game companies so it can be deployed in rogue servers offering pirated versions of the games.

View: Original Article

Firefox readies tougher stance on cookies

A future release of the browser blocks third-party cookies by default on desktops, ignoring advertiser complaints, while both desktops and Android Firefox get several under-the-hood improvements.

Firefox 22 blocks third-party cookies by default.

Up until now, only Apple's Safari browser had blocked third-party cookies by default. Last week's release of Firefox 22 to its developer's channel also came with the feature, indicating that the option will soon make it to all Firefox users.

Firefox 22 Aurora (download for Windows, for Mac, and for Linux) blocks third-party cookies by default, putting the ad industry on notice that browsers are about to start looking askance at them. While Safari has had the feature for a long time, no other major browser has supported it until now.

Mozilla first announced in February that it was changing its third-party tracking cookie policy.

The browser vendor cited "many years of observing Safari's approach to third-party cookies, a rapidly expanding number of third-party companies using cookies to track users, and strong user support for more control" as the reasons why Firefox will soon block third-party cookies by default.

While Google isn't likely to adopt the stance anytime soon, given that it was the last to include the Do Not Track header, Microsoft may jump on quickly. It was the first major browser maker to offer built-in tracking-protection lists, back in Internet Explorer 9, and has the Do Not Track header activated by default.

Other Firefox improvements include better memory management and faster load times on sites heavy with images; automatically word-wrapping plain-text files displayed in the browser; changes to make otherwise broken sites more compatible; and support for the HTML5 < time > and < time > elements.

Meanwhile, Firefox 22 Aurora for Android includes mostly code support changes. Like the desktop version, CSS3 Flexbox, the new Web Notifications API, and improved WebGL rendering performance through asynchronous canvas updates are in the new Aurora build.

The full changelog for Firefox 22 Aurora on desktops can be read here, and the Android release notes are here.

View: Original Article

Vice President of the USA Calls For a New World Order

Little was talked about in the media when vice President Joe Biden called for a New World Order on the 5th of April 2013 and so here I am reporting it to you. Although mainstream media attempted to cover this news, calling those who believe in a new world order "conspiracy theorists", the truth is becoming evident that a world domination plan is indeed taking place.

Have you been affected by all of the recent things happening in the world? Multiple different file sharing websites have been swiped away under the clause of being protected by copyright when in reality this is all about training the people to have a slave like mentality: never oppose the powers that be. Country after country, you can see wars and other terrible things happening. Every day you hear bad news and wonder "when is this going to end". The world elite don't plan on ending it, at least not peacefully.

In the documentary "ENDGAME: Blueprint For Global Enslavement", it is explained in detail how the world elite came to power many years ago and what their plan is for the future. The point of reporting here on nsanedown forums is to enlighten those who read and know what I say is true. I have been a happy member of nsanedown way back even before it was nsanedown, back then it was nsaneproductions, and one thing I have harped on for quite some time is that the new world order system is real and is being erected. Now it is fully operational.

http://www.youtube.com/watch?feature=player_detailpage&v=b1AMYHHAXhI

Now, it is here in our face yet it is hard for many to come to terms with the hard cold truth. This is scary stuff...who wants to even see this information!? The reason I am here now is because people are awake now and we can see the brazen crimes that are happening in high places. The next phase of the world elite includes a world depopulation program which will attempt to kill off 85 percent of all people at least. So I guess the question is, will you stand up for what is right and defy this new world order system or will you comply and allow the deaths of millions of people?

The new world order isn't a new idea, it's an old idea. You can see the former President of the United States George H. W. Bush call for a new world order in his speech which he gave on September 11th 1990.

http://www.youtube.com/watch?feature=player_detailpage&v=VtlO39wIRWs

The plan seems flowery at first but I assure you, the people in charge of this plan actually believe that they are bringing about a new world order for Lucifer, also known as Satan. I'm not telling you what I think; I’m telling you what THEY think. The world elite actually believe that Satan is their master and all of these wars, these dominations, these envisions, it is all for the purpose of setting up global government. You can see in detail all of the information about the plans for a new world order in this Bibliography which is free to view.

It's not just the USA which is calling for a New World Order; in fact it is a lot of other countries calling for it as well. In these videos, you will see world leaders call for a new world order, this makes for little room for those who would call this a conspiracy theory...unless of course you can't believe your own ears and eyes.

Gordon Brown New World Order Speech
Uploaded on May 18, 2007
Gordon Brown New World Order Speech
Britain’s new Prime Minister Gordon Brown talks about the Elite's Plan for a One World Totalitarian Socialist State, the Globalization Agenda for a New World Order.

New EU president confirms New World Order desire (19Nov09)
Uploaded on Nov 19, 2009
As plain as it comes, the newly "elected" cnut that is the EUSSR president confirms the desire for a one world government, a New World Order of worldwide oppression and the spread of worldwide Communism. If it didn't hit you what the EU project is all about, the new EU "president" confirms it for you in this clip.
Recorded from BBC News 24, 19 November 2009.

New Kissinger NWO : New World Order & Obama Worship
Uploaded on Jan 5, 2009
Kissinger says an Obama presidency is a great opportunity to set up a New World Order.

For those of you who know what is happening, I urge you to fight back with the truth. People MUST be informed of this and they MUST know that it is 100% true and not a conspiracy theory. No amount of proof is good enough for those who are damaged by the systems lies. The whole world now waits for the big event which will suddenly send us all into war and chaos.

Learn as much as you can now and cherish the Internet as it stands now because soon it won't be as free or even available for countless millions of people. Once the big event happens (it could be anything) there won't be any more time left to learn and grow in solid knowledge which will help you to survive the coming storm of outright evil. Much like you would prepare for a massive storm, tyranny must too be prepared for because unlike a storm, it is organized and frothing at the mouth.

You must understand, it is about to begin. I wrote an article a while back where I asked people to save as much stuff as they could from the Internet because it really looks like they want to shut it down. Since then we have seen a DDoS attack which literally slowed down the whole Internet on March 28th 2013! Now are you concerned a little bit? As before, I ask you to please preserve as much as you can because soon, it’s not going to be here, not like it is now anyways.

And last but certainly not least, stay strong! Support each other's rights and stand up for each other’s liberties! Know that you will have to one day understand things with clarity so you can be able to make wise choices which will determine your very survival. Care about each other and DO NOT let this world eat your spirit (so to speak).

Now, it is here in our face yet it is hard for many to come to terms with the hard cold truth. This is scary stuff...who wants to even see this information!? The reason I am here now is because people are awake now and we can see the brazen crimes that are happening in high places. The next phase of the world elite includes a world depopulation program which will attempt to kill off 85 percent of all people at least. So I guess the question is, will you stand up for what is right and defy this new world order system or will you comply and allow the deaths of millions of people?

The new world order isn't a new idea, it's an old idea. You can see the former President of the United States George H. W. Bush call for a new world order in his speech which he gave on September 11th 1990.

The plan seems flowery at first but I assure you, the people in charge of this plan actually believe that they are bringing about a new world order for Lucifer, also known as Satan. I'm not telling you what I think; I’m telling you what THEY think. The world elite actually believe that Satan is their master and all of these wars, these dominations, these envisions, it is all for the purpose of setting up global government. You can see in detail all of the information about the plans for a new world order in this Bibliography which is free to view.

It's not just the USA which is calling for a New World Order; in fact it is a lot of other countries calling for it as well. In these videos, you will see world leaders call for a new world order, this makes for little room for those who would call this a conspiracy theory...unless of course you can't believe your own ears and eyes.

Gordon Brown New World Order Speech
Uploaded on May 18, 2007
Gordon Brown New World Order Speech
Britain’s new Prime Minister Gordon Brown talks about the Elite's Plan for a One World Totalitarian Socialist State, the Globalization Agenda for a New World Order.

New EU president confirms New World Order desire (19Nov09)
Uploaded on Nov 19, 2009
As plain as it comes, the newly "elected" cnut that is the EUSSR president confirms the desire for a one world government, a New World Order of worldwide oppression and the spread of worldwide Communism. If it didn't hit you what the EU project is all about, the new EU "president" confirms it for you in this clip.
Recorded from BBC News 24, 19 November 2009.

New Kissinger NWO : New World Order & Obama Worship
Uploaded on Jan 5, 2009
Kissinger says an Obama presidency is a great opportunity to set up a New World Order.

For those of you who know what is happening, I urge you to fight back with the truth. People MUST be informed of this and they MUST know that it is 100% true and not a conspiracy theory. No amount of proof is good enough for those who are damaged by the systems lies. The whole world now waits for the big event which will suddenly send us all into war and chaos.

Learn as much as you can now and cherish the Internet as it stands now because soon it won't be as free or even available for countless millions of people. Once the big event happens (it could be anything) there won't be any more time left to learn and grow in solid knowledge which will help you to survive the coming storm of outright evil. Much like you would prepare for a massive storm, tyranny must too be prepared for because unlike a storm, it is organized and frothing at the mouth.

You must understand, it is about to begin. I wrote an article a while back where I asked people to save as much stuff as they could from the Internet because it really looks like they want to shut it down. Since then we have seen a DDoS attack which literally slowed down the whole Internet on March 28th 2013! Now are you concerned a little bit? As before, I ask you to please preserve as much as you can because soon, it’s not going to be here, not like it is now anyways.

And last but certainly not least, stay strong! Support each other's rights and stand up for each other’s liberties! Know that you will have to one day understand things with clarity so you can be able to make wise choices which will determine your very survival. Care about each other and DO NOT let this world eat your spirit (so to speak).

Now, it is here in our face yet it is hard for many to come to terms with the hard cold truth. This is scary stuff...who wants to even see this information!? The reason I am here now is because people are awake now and we can see the brazen crimes that are happening in high places. The next phase of the world elite includes a world depopulation program which will attempt to kill off 85 percent of all people at least. So I guess the question is, will you stand up for what is right and defy this new world order system or will you comply and allow the deaths of millions of people?

The new world order isn't a new idea, it's an old idea. You can see the former President of the United States George H. W. Bush call for a new world order in his speech which he gave on September 11th 1990.

The plan seems flowery at first but I assure you, the people in charge of this plan actually believe that they are bringing about a new world order for Lucifer, also known as Satan. I'm not telling you what I think; I’m telling you what THEY think. The world elite actually believe that Satan is their master and all of these wars, these dominations, these envisions, it is all for the purpose of setting up global government. You can see in detail all of the information about the plans for a new world order in this Bibliography which is free to view.

It's not just the USA which is calling for a New World Order; in fact it is a lot of other countries calling for it as well. In these videos, you will see world leaders call for a new world order, this makes for little room for those who would call this a conspiracy theory...unless of course you can't believe your own ears and eyes.

Gordon Brown New World Order Speech
Uploaded on May 18, 2007
Gordon Brown New World Order Speech
Britain’s new Prime Minister Gordon Brown talks about the Elite's Plan for a One World Totalitarian Socialist State, the Globalization Agenda for a New World Order.

New EU president confirms New World Order desire (19Nov09)
Uploaded on Nov 19, 2009
As plain as it comes, the newly "elected" cnut that is the EUSSR president confirms the desire for a one world government, a New World Order of worldwide oppression and the spread of worldwide Communism. If it didn't hit you what the EU project is all about, the new EU "president" confirms it for you in this clip.
Recorded from BBC News 24, 19 November 2009.

New Kissinger NWO : New World Order & Obama Worship
Uploaded on Jan 5, 2009
Kissinger says an Obama presidency is a great opportunity to set up a New World Order.

For those of you who know what is happening, I urge you to fight back with the truth. People MUST be informed of this and they MUST know that it is 100% true and not a conspiracy theory. No amount of proof is good enough for those who are damaged by the systems lies. The whole world now waits for the big event which will suddenly send us all into war and chaos.

Learn as much as you can now and cherish the Internet as it stands now because soon it won't be as free or even available for countless millions of people. Once the big event happens (it could be anything) there won't be any more time left to learn and grow in solid knowledge which will help you to survive the coming storm of outright evil. Much like you would prepare for a massive storm, tyranny must too be prepared for because unlike a storm, it is organized and frothing at the mouth.

You must understand, it is about to begin. I wrote an article a while back where I asked people to save as much stuff as they could from the Internet because it really looks like they want to shut it down. Since then we have seen a DDoS attack which literally slowed down the whole Internet on March 28th 2013! Now are you concerned a little bit? As before, I ask you to please preserve as much as you can because soon, it’s not going to be here, not like it is now anyways.

And last but certainly not least, stay strong! Support each other's rights and stand up for each other’s liberties! Know that you will have to one day understand things with clarity so you can be able to make wise choices which will determine your very survival. Care about each other and DO NOT let this world eat your spirit (so to speak).

Samsung Galaxy Mega announced - 6.3 & 5.8 inches

It's confirmed: the Galaxy Note II is now Samsung's third-largest smartphone.

Last week, we heard our first rumors about Samsung's Galaxy Mega line, which would introduce phones with 6.3-inch and 5.8-inch screens to Samsung's ever-growing Galaxy family. Today, Samsung made them both official: the phones are real, and they're coming to Europe and Russia in May. The phones will be available "globally," but "availability varies by market" and the phones will be "rolled out gradually" to other territories.

While the phones have large screen sizes, there's otherwise nothing particularly high-end about them. The 6.3-inch model comes with a 720p display (Samsung lists it only as "HD," but uses "Full HD" to indicate a 1080p display), a 1.7GHz dual-core processor from an unnamed manufacturer, 1.5GB of RAM, and 8 or 16GB of storage. The 5.8-inch model steps down to a 960×540 display, a 1.4GHz dual-core processor, 1.5GB of RAM, and only 8GB of storage. Both include Android 4.2, the latest version of Android.

We don't yet have pricing information for the phones, but given the specifications, we expect them to be a bit cheaper than handsets like the Galaxy S 4—there's probably a market for people who want a large, inexpensive phone but don't necessarily care about pixel density. Otherwise, it seems like a step backward to offer these comparatively low-resolution displays on these large-and-in-charge phones just weeks after introducing a 5-inch, 1080p flagship.

While ever-inflating screen sizes are the norm for Android phone manufacturers, Samsung in particular seems determined to make a phone for every hand size on the Earth. The Galaxy Mega, the Galaxy Note, and the Galaxy S lines are all good options if you've got big hands, but the 4-inch Galaxy S II Mini and the 3.2-inch Galaxy Young (which we saw at MWC among its larger brethren) have tiny hands covered, too.

View: Original Article

iPhones to be banned to protect the children

Encryption used in Apple's iMessage chat service has stymied attempts by federal drug enforcement agents to eavesdrop on suspects' conversations, an internal government document reveals.

@ http://news.cnet.com...s-surveillance/

Tuesday, April 2, 2013

European regulators blast Google for continued EU privacy violations

Task force gives green light to EU states to conduct "further investigations."

On Tuesday, six European data protection authorities (DPAs) lambasted Google for continued violations of European privacy rules.

Under Google's new unified privacy policy, which was put into place last year, European authorities argue that it's nearly impossible for users to understand what personal data is being used for what purpose. As a result of investigations by DPAs in France, Spain (PDF, Spanish), the Netherlands, the United Kingdom, Germany, and Italy, all EU countries are now free to “carry out further investigations” based on their own national law.

However, for the time being, none of the data protection authorities (DPAs) in those six countries have specifically said what such investigations will entail, if Google is being charged with any crimes, or if the firm will be forced to pay any fines.

“The members of the EU Task Force will now be reviewing this in accordance with the criteria of the various national statutory stipulations,” wrote Johannes Caspar, the Hamburg commissioner for Data Privacy and Freedom of Information, in a statement sent to Ars. “Should the data protection concerns be confirmed, appropriate supervisory measures may be taken in the individual member states.”

In a statement to Ars, a Google spokesperson wrote, “Our privacy policy respects European law and allows us to create simpler, more effective services. We have engaged fully with the DPAs involved throughout this process, and we’ll continue to do so going forward."

EU fines have been relatively minimal for a company the size of Google, but the EU has proposed strengthening these penalties. Penalties for WiFi snooping via Google Street View only amounted to €100,000 ($130,000) in France. By comparison, Google had a profit of nearly $11 billion in 2012.

France's National Liberties and Information Commission (CNIL) said that Google’s new policy was in direct violation of the European Data Protection Directive, and that CNIL would conduct an investigation.
"Google's online services are numerous and differ greatly both with regard to purposes and types of data they process," the February 27, 2012 CNIL letter (PDF) states.

"The new privacy policy provides only general information about all the services and types of personal data Google processes. As a consequence, it is impossible for average users who read the new policy to distinguish which purposes, collected data, recipients, or access rights are currently relevant to their use of a particular Google service.”

View: Original Article

Can a DDoS break the Internet? Sure… just not all of it

Last week's DDoS attack caused big problems for some, went unnoticed by others.

We reported last week on a massive distributed denial of service attack that was intended to take anti-spam organization Spamhaus offline.

We described the scale of the attack as "Internet-threatening," elaborating further that the attack, peaking at more than 300 gigabits per second, "is the kind of scale that threatens the core routers that join the Internet's disparate networks."

Subsequently, posts on Gizmodo and The Guardian called into question these assessments, with Gizmodo casting doubt on the description by asking some "simple questions" and The Guardian specifically claiming that it was "shoddy journalism."

We stand by our original description and reporting. Here's why.

A network of networks

Before looking at the anti-Spamhaus attacks specifically, it's important to know a little about how the Internet is constructed. The Internet is often described as a "network of networks." Organizations around the world have their own independently owned and operated networks—university campuses, the retail Internet Service Providers (ISPs) that provide DSL, cable, and more exotic connections to homes and businesses, corporations, government departments, and so on and so forth.

All of these are useful networks in their own right, but they become enormously more useful when they're joined up. Joining up networks creates an internetwork. The first internetwork infrastructure came from the US government, and the first internetwork, ARPANET, joined a number of US universities in the 1970s.

Through the development of a series of other internetworks—both academic and commercial—and the establishment of international internetworks, we came to the situation we have today.

A small number of companies (about a dozen, though it's hard to know with absolute certainty) own and operate high-speed, transnational networks. These companies, called Tier 1 providers, pass traffic between one another freely, providing transfers between smaller networks. This free traffic transfer is called peering.

They provide the thing that's closest to the Internet's "backbone" (though the term isn't really accurate: there's no single fragile spine, but rather a complex mesh of redundant, interconnected networks): from a Tier 1 provider, it's possible to send traffic to any public IP address.

Purchasing connectivity from the Tier 1 providers are the Tier 2 providers. Tier 2 providers buy Internet connectivity from Tier 1 providers, which is called transit. However, they also connect directly to other Tier 2 providers, with peering relationships. Tier 2 providers can be regional, but they can also be large transnational networks.

How customers connect to ISPs and ISPs connect between tiers.

Large Tier 2 providers can peer with many, many other Tier 2 providers, with the result that Internet traffic from that provider only infrequently has to use the Tier 1 connectivity. The distinction between Tier 1 and Tier 2 is not size or scale as such; it's simply that Tier 1 networks only use peering. Tier 2 networks have to buy at least some transit.

Tier 1 providers generally sell only to Tier 2 providers. Tier 2 providers may sell directly to end users, or they may sell to Tier 3 providers: ISPs who only buy transit and don't have any peering.

Tier 2 and 3 providers fall into two further categories. They can be multi-homed, with multiple transit connections to different networks, or they can be single homed, with just one transit link.

When two providers want to connect to one another, whether for peering or for transit, they obviously need a physical link of some kind. For providers with only a few connections, one-off point-to-point connections known as private network interconnects (PNIs) are used. But if you want to connect with lots of peers, you don't want to build lots of individual expensive optic fiber links. You want to consolidate: bring all the peers together in one place, and then stick a router or a network switch between them all to join them up.

As a result, around the globe are dotted a few hundred Internet Exchanges (IXs). At each IX, there may be hundreds of providers from all three tiers coming together. The IXs generally use Ethernet infrastructure for their internal connectivity. Gigabit and 10 gigabit Ethernet are predominant, but 100 gigabit Ethernet is starting to gain more use, though its cost today prevents it from being used as the standard technology. Longer links may be gigabit, 10 gigabit, 40 gigabit, or 100 gigabit. In principle, faster speeds still are possible through aggregating these 100 gigabit connections, but in practice, today's IXs are mainly 10 gigabit (or aggregated multiples thereof) networks.

IXs are important. Major service providers such as Google, Microsoft, and Facebook connect to IXs. If two Tier 2 operators can send traffic directly to each other, via peering at an IX, that's cheaper and more efficient than going via transit to a Tier 1.

Enter Spamhaus, STOPhaus, and CloudFlare

STOPhaus doesn't care much for Spamhaus.

Spamhaus provides useful services to e-mail administrators wishing to keep junk e-mail out of the servers they own and operate. STOPhaus is an informal group that doesn't like Spamhaus. STOPhaus members wanted to knock Spamhaus off the Internet using a distributed denial of service (DDoS) attack that flooded Spamhaus's systems and drowned out legitimate traffic. They did so by aiming a flood of DNS traffic at Spamhaus's servers.

In response, Spamhaus started using the services of CloudFlare, a company that specializes in providing robust serving that's difficult to take offline with DDoS attacks. CloudFlare does this by replicating content around the globe and using a routing technique called anycast. Anycast allows servers with the same IP address to coexist simultaneously around the globe. Internet providers will generally route traffic to the geographically nearest instance of those anycasted IP addresses.

This does two things. By picking a site that's geographically close, it cuts the latency to access the site, making it react faster. Second, it dilutes the effect of DDoS attacks. Instead of a distributed attack using systems around the world being able to focus its flood on a single IP address in a single location, each attacking system can only focus on a nearby target.

Two attackers on opposite sides of the world may still be aiming at the same victim IP address, but their traffic will go to different computers that are relatively nearby.

For CloudFlare's technology to work well, it needs a high level of distribution. The company currently reports that it has 23 data centers around the world and peers with nearly 70 different Tier 1 and Tier 2 providers around the world; it does this with a mix of PNIs and IXs.

CloudFlare did its job, and Spamhaus remained accessible. Trying to flood the anycasted addresses wasn't working.

So the attackers changed their approach. Rather than attacking CloudFlare's distributed servers, they took aim at the network infrastructure used by CloudFlare's providers: the IXs. Attacks were made on IXs in Frankfurt, Amsterdam, London, and Hong Kong. It's the London IX, LINX, that suffered.

Optical patch panel at the AMS-IX Internet exchange point in Amsterdam, which was targeted by the attackers.

Each provider peering at LINX has its own IP address, through which traffic to that provider is passed. The attackers noticed that LINX's IP addresses were accessible from anywhere in the world. This, in turn, meant that they could be the target of a DDoS attack.

On March 23rd, the attackers used this information to attack specific addresses within LINX. As is typical in IXes, these are addresses that are generally interconnected with 10 gigabit Ethernet. Throwing hundreds of gigabits per second swamped them. The result was that CloudFlare-protected services were, for some people (especially within the UK), slow or inaccessible. LINX also suffered an issue with its traffic monitoring, which showed traffic across its network approximately halved, that may have been related.

LINX subsequently changed its network configuration so that the IP addresses in question weren't reachable from outside LINX's own trusted network. This cut off the attacks, and normal operation was restored soon after.

The fault here was arguably in part LINX's, as it should have been configured in a safer way from the outset (the Amsterdam IX (AMS-IX), for example, explicitly prohibits advertising routes to its internal IP addresses), but it wasn't, and it caused trouble as a result. That said, the IX community does not universally agree with this approach.

Breaking IXs breaks the Internet

IX infrastructure is core to the Internet. It is not the only Internet infrastructure, and there would still be an Internet if an IX blew up or burned down, but it wouldn't be the same Internet. LINX's infrastructure in aggregate has several terabits per second of capacity, and the Internet as a whole has an aggregate of hundreds of terabits per second of capacity, but any one provider within LINX has only a fraction of that capacity; big ISPs have 80-100 Gbps, but few (if any) have more than that. Having lots of bandwidth somewhere else in the world doesn't actually help very much.

Moreover, 300Gbps is well above the level at which it's easy to quickly add extra bandwidth to respond. 100 gigabit Ethernet is expensive: IXs and ISPs don't have an abundance of 100 gigabit network ports lying around waiting for a rainy day, and they certainly don't give every customer peering at the IX an extra few hundreds of gigabits of capacity "just in case." At LINX, for example, 100 gigabit ports are installed on demand. They're too expensive to treat any other way.

Richard Steenbergen, currently CTO for GTT, a large network provider and upstream operator to, among other customers, CloudFlare, wrote in response to Gizmodo's article:

My company, most other large Internet carriers, and even the largest Internet exchange points, all deliver traffic at multi-terabits-per-second rates, so in the grand scheme of things 300 Gbps is certainly not going to destroy the Internet, wipe anybody off the map, or even show up as more than a blip on the charts of global traffic levels. That said, there is absolutely NO network on this planet who maintains 300 Gbps of active/lit but unused capacity to every point in their network. This would be incredibly expensive and wasteful, and most of us are trying to run for-profit commercial networks, so when 300 Gbps of NEW traffic suddenly shows up and all wants to go to ONE location, someone is going to have a bad day.

To make this more concrete: GTT has multiple terabits per second of connection around the world. But its IPv4 connectivity at LINX is reported to be 30Gbps. Send more than 30Gbps of traffic to its LINX IP address and anyone counting on using GTT for peering/transit through LINX is going to have a rough time. CloudFlare appears to have just 10Gbps of connectivity to LINX. The Internet is full of choke points such as this.

Paul Vixie, Internet engineer and co-ounder of the Internet Systems Consortium, concurred, telling Ars via e-mail, "300 Gbps is fatal for some parts of the 'Net, but not all parts. It's when they started going after Internet exchange connections that third parties started losing."

Large providers—both on the demand side, such as ISPs, and the supply side, such as Facebook or Google or the BBC—peer at multiple IXs and have PNIs, so they're not so dependent on the health of any one IX. Small ones, however, do not. Flood the IX's infrastructure and they'll effectively drop off the Internet.

This is breaking the Internet. The "network of networks" reverts to being "disjoint networks," at least for some. For the rest, multihoming should mask any fatal errors. Things may be a little slower, and for ISPs having to switch to transit instead of peering they may be a little more expensive, but disruption shouldn't be too visible.

Similar behavior occurs in other Internet incidents. When undersea cables are cut, it's rare for a national network to be completely isolated, but cut enough cables and the Internet can become disjointed, as it reportedly did in East Africa after four cables were cut simultaneously in 2012. When faced with cable cuts, the global Internet is fine, and the national networks are also fine. They're just not joined up.

Similarly, when Pakistan published routes disabling YouTube to the global Internet, almost every network making up the Internet remained reachable, except one: YouTube's network.

STOPhaus even tried a similar attack of their own on Spamhaus, trying to hijack Spamhaus's IP address range and redirect it to CyberBunker.

The Internet is generally quite resilient to this kind of thing. But problems do happen.

Not that shoddy

If the Gizmodo and Guardian writers were perhaps expecting a broken Internet to mean that the entire thing simultaneously fell apart into a million different networks, then certainly, these attacks (and others, such as hijacking IP addresses or cutting cables) won't "break the Internet."

If that's what you're after, however, nothing really will. Not because the Internet was designed to survive a nuclear attack—it wasn't—but because it has grown to be widely distributed, with lots of redundant links, and few people really care about the entire Internet.

Gizmodo's questions about the attacks were:

Why wasn't my internet slow?
Why didn't anyone notice this over the course of the past week, when it began?
Why isn't anyone without a financial stake in the attack saying the attack was this much of a disaster?
Why haven't there been any reports of Netflix outages, as the New York Times and BBC reported?
Why do firms that do nothing but monitor the health of the web, like Internet Traffic Report, show zero evidence of this Dutch conflict spilling over into our online backyards?

Four of those, at least, are easy enough to answer.

Because you're an American, in America, primarily accessing American sites. The Internet, however, is a global network. Disruption in one area need not lead to disruption in other areas, particularly if the services you are interested in are geographically close. Network security company Arbor Networks noted that the DDoS attack was substantially larger than those that have gone previously, and its Asia Pacific analyst Roland Dobbins wrote that problems were indeed seen by providers in Europe, the Middle East, Africa, and Asia-Pacific.
They did. Quoting Andree Toonk, a network engineer for OpenDNS, "Those who claim there was no impact probably don't run global networks. I've seen Tier1's struggle and had to route around it, EU and Asia! significant packet loss." This corroborates CloudFlare's claim that Tier 1 providers were congested.
People who do not work for CloudFlare are saying that the attack was substantial, that it was disruptive, and that it caused service problems for some people. Indeed, they're annoyed by it, as it rendered other CloudFlare-hosted sites unusable from the UK. For example, Andy Gambles of UK-based SSL provider and CloudFlare customer ServerTastic complained to CloudFlare, "Our sites were dead slow/practically offline for the whole time."
Who knows?
Two reasons. First, because the Internet Traffic Report doesn't monitor Africa at all, has poor coverage of Asia, has European data that's sporadic at best (lots of the systems it tests simply aren't returning any traffic at all), and provides only aggregate graphs for periods longer than 24 hours, making it impossible to see local effects that occurred on the 23rd of March. It's a useful resource, but hardly the final arbiter of whether the Internet is working well or not. Second, because the Internet doesn't work that way. If a network that you don't care about has been cut off from the network of networks, you'll never notice or care.

CloudFlare's blog post, "The DDoS that almost broke the Internet," certainly had a rather hyperbolic title. It's probably not the first blog post to have a hyperbolic title. It almost certainly won't be the last. Shattering the Internet into a billion disconnected hosts will never happen, so in that sense, the Internet is safe. But breaking it into two, or three, or a handful of separate networks? With the right amount of traffic in the right place, that can happen.

View: Original Article