Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Submission + - Another massive DDOS from krebsonsecurity botnet (theregister.co.uk)

Gumbercules!! writes: The same botnet that last week knocked www.krebsonsecurity.com offline and off Akamai with a 620Gbps DDOS has struck again, this time at French hosting company, OVH, with a monumental 990Gbps pummelling. Much of the traffic came from badly configured IoT home cameras.

"The world's largest distributed denial of service (DDoS) attack has been clocked from the same network of 152,463 compromised low-powered cameras and internet-of-things devices which punted a media outlet off the internet."

As badly configured devices stack up, the potential for internet breaking DDOS attacks is becoming much more realistic.

Comment This is a good thing (Score 3, Informative) 172

I know this is Slashdot and it's essentially illegal to say "good" and "Microsoft" in the same sentence but, "good". I don't plan on using Edge any time soon but I still applaud any security based efforts made by mainstream OS vendors, that can help improve things. I know this won't stop idiots downloading "movie.torrent.exe" and running it but at least it will significantly cut down on drive by downloads of malware through hacked ad servers and out of date Flash. That's got to be a good thing.

Submission + - Brian Krebs is back online, with Google Cloud Hosting (krebsonsecurity.com)

Gumbercules!! writes: After the massive 600mbps DDOS on http://krebsonsecurity.com/ last week that forced Akamai to withdraw the (pro-bono) DDOS protection they offered the site, krebsonsecurity.com is now back online, hosted by Google.

Following Brian Krebs breaking an article on vDOS (https://developers.slashdot.org/story/16/09/08/2050238/israeli-ddos-provider-vdos-earned-600000-in-two-years), leading to the arrest of the two founders, his site was hit with a record breaking DDOS. It will certainly be an interesting test of Google's ability to provide DDOS protection to clients.

Comment Good luck to them (Score 1) 259

I see tonnes of scepticism above (which is healthy and fine) and tonnes of sarcasm (which is fine, too). But you know what? I hope they succeed. Good luck to them. We need a cure for cancer, other than cutting it out if it's found early enough.

The difference between Microsoft and many other places trying to cure cancer is Microsoft actually have money. I doubt this will work but why not hope it does?

Comment Here's how the discussion went (Score 1) 284

Jim: "Things are looking bad. We've lost a lot of money. How can we hide it in this presentation?"
Bob: "I don't know. We're so screwed, man! Any ideas, Jill?"
Jill: "Huh? Sorry I wasn't listening. I was watching the iPhone 7 keynote. Did you know they are dropping the headphone jack?".
Bob: "How can you be not paying attention at a time like this! We're screwed! We need to find a way to distract people from .... ummm... hang on. What did you say?"
Jill: "They're removing the headphone jack from the iPhone. I haven't noticed anything else different because that's all I can think about."
Bob: "Perfect! That's the ticket! We'll just include some sensational nonsense in the presentation and no one will notice the terrible news! But what to include...Jim?"
Jim: "Huh? Sorry. I was spaced out watching my Matrix screensaver....".

Comment Don't panic (Score 1) 385

Reading through the comments below, I see a lot of people worrying about this. Can I say, as someone from the "rest of the world" (not America), i.e. a place that's had chip based credit cards for several years, they are far more secure and far less likely to be stolen than magnetic strips. Card skimmers still claim many victims, each day off mag strips, but essentially 0 people get skimmed of a chip. Firstly, you need to be basically on top of the card - the card does not have active power, so the range is very small. Secondly, you can only purchase up to $99 without a PIN and thirdly, the code changes after every use - so even if someone did skim your card with an RFID scanner, they could only use it once - and only for $99. Unlike a mag stipe credit card, which can be used with the same info, over and over.

Since moving to a chip only system, credit card theft of this kind (not including online sales at places that don't require a CCV) has dropped to basically zero. I am sure someone will eventually get good at ripping them off again, but at the moment, card fraud is very low.

Slashdot Top Deals

An inclined plane is a slope up. -- Willard Espy, "An Almanac of Words at Play"