Search This Blog

Showing posts with label DDOS Attack. Show all posts

Popular Video Game Developer Targeted in a DDoS Attack

 

Blizzard Entertainment, an American video game developer and publisher announced on Monday that they are under a massive DDoS attack which may cause significant delay and disconnections for some gamers. The company assured the gamers that it would not affect their system and that a DDoS attack is ‘basically a clogged pipe on the internet.’ 

However, a Twitter user dismissed the claims of the company by responding that the delay is caused due to poor load balancing on the systems rather than a DDoS attack. His position in the game's queue was 2376, and his turn to enter the game was expected to take 54 minutes.

How does a DDoS attack work? 

A distributed denial-of-service (DDoS) attack occurs when multiple systems flood the bandwidth or resources of a targeted system, usually one or more web servers. A DDoS attack uses more than one unique IP address or machine often from thousands of hosts infected with malware.

A distributed denial of service attack typically involves more than around 3–5 nodes on different networks; fewer nodes may qualify as a DoS attack but is not a DDoS attack. These networks consist of computers and other devices (such as IoT devices) which have been corrupted with malware, allowing them to be controlled remotely by an attacker. These individual devices are referred to as bots (or zombies), and a group of bots is called a botnet.

Blizzard on the hit list of the attackers

Blizzard has dealt with similar issues multiple times throughout the last year and in the early part of this year as well. When gamers attempted to play ‘World of Warcraft’ in January this year, they encountered the same issues with high latency and disconnections. Blizzard seems to have a pattern of attributing connectivity troubles to DDoS attacks. Whether the attacks are real or the result of bad system/network administration, gamers are harmed by these issues. 

Threat actors usually target prominent payment gateways and banks for denial-of-service but in recent times competitive gaming networks are also being targeted due to their popularity. The company is responsible for creating some of the popular games which include Overwatch, Diablo, World of Warcraft, StarCraft, and Warcraft.

More Than 200 Belgian Organizations Knocked Offline in a Massive DDoS Attack

 

Belgium's national public sector network Belnet suffered a massive DDoS (distributed denial of service) attack on Tuesday that paralyzed internet access for all institutions linked to the Belnet network, including the federal government and parliament, universities, researchers, and reservations for the country's vaccination program.

The attackers specifically targeted Belnet, a government-funded ISP that provides internet connectivity for Belgian government organizations, such as its Parliament, educational institutions, ministries, and research centers.

According to the local authorities, the incident has impacted the activities of more than 200 Belgian government organizations which includes My Minfin, the government’s official tax- and form-filling portal, but also IT systems used by schools and universities for remote learning applications. In a tweet today, the Belgium Justice Department also reported disruptions but did not go into details. 

"The fact that the perpetrators of the attack constantly changed tactics made it even more difficult to neutralize it. We are fully aware of the impact on the organizations connected to our network and their users and we are aware that this has profoundly disrupted their functioning,” said Dirk Haex, technical director at Belnet.

Parliament and other government activities were also disrupted today because some meetings couldn’t take place as they couldn’t be streamed for remote participants due to the ongoing DDoS attack. The country’s COVID-19 vaccine reservation portal, which is hosted on Belnet’s infrastructure, was also knocked offline as a result of the attack. 

According to the official Twitter account for the Belgian Chamber of Representatives, only the Finance and Foreign Relations committee was able to hold a meeting on Tuesday before others had to be canceled due to the ongoing DDoS attack. Several Belgium politicians and political observers noted today that the attack started around the same time the Belgium Parliament’s Foreign Affairs Committee was supposed to hold a meeting and hear a testimony from a survivor of China’s Uyghur forced labor camps. 

Neither Belnet nor any other Belgium government organization have attributed the DDoS attack to any particular entity and seeing that the attack is still ongoing and would have to be investigated, attribution is currently very far away.

UK Cryptocurrency Exchange EXMO Suffers a 'Massive' DDoS Assault

 

Cryptocurrency exchange EXMO, a British company was targeted in a distributed denial-of-service (DDoS) attack. As a precautionary measure company has shut down its servers temporarily. The company also said in a notification that it suffered a distributed denial-of-service attack on February 15, when its website was offline for two hours.

EXMO’s spokesperson said that the previous DDoS assaults only affected the website but this attack is quite different from previous attacks due to its potency and capability to drive 30 GB of traffic per second affecting the whole network system, including the website, API, Websocket API, and exchange charts. The assault was combated with the help of DDoS protection Qurator and the company has also beefed up the security to avoid any further damage. 

This was the second assault on the company in the last two months, on December 24, threat actors attacked the company and earned 5% of EXMO’s assets from their ‘hot’ wallets. Later, the company confirmed that it has suffered a loss of about $4 million in customer cryptocurrency; currently, there are no proofs to establish the motives behind both the attacks but it is suspected that due to the bitcoin price hit records high, threat actors tried to cash in on the higher value of the stolen assets.

EXMO released an update regarding the developments in an investigation wherein they mentioned, “Our team is currently developing a new infrastructure for hot wallets. Since each blockchain needs a separate server, the process will take some time, once deposits and withdrawals are available, you will have to generate a new wallet address in the ‘Wallet’ section of your account. Our investigation is ongoing, and we are taking all necessary and precautionary measures to prevent such incidents from reoccurring.” 

The company was launched in 2013 and is headquartered in London. Due to Britain’s exit from the European Union, EXMO had chosen to establish their brand into new European bases as part of a contingency plan. The company was registered with the UK Financial Conduct Authority (FCA) for a brief stint as a crypto asset business until July 9th, 2021, following a request submitted back in April 2020. 

EXMO has expanded its reach outside the UK in a very short span of time and the company’s offices are in Kyiv, Barcelona, Moscow, and Istanbul.