• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

MASSIVE DDOS ATTACKS ALL OVER U.S.

Page 4 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.
anyone know how to figure out who is the major carrier in your area?, who is the biggest backbone provider? I live in the tampa bay area.
 
Originally posted by: mcveigh
anyone know how to figure out who is the major carrier in your area?, who is the biggest backbone provider? I live in the tampa bay area.
Click to expand...
It all depends on who the ISP uses. There could be one ISP using UUNet and another using Sprint.

My Wifi router had crashed this morning. As of 12:30 EST last night it was working fine. I'm sure it has nothing to do with the DDOS attacks (it's actually behind another router and just functionng as a WAP), but it's a strange concidence.
 
Actually, according to a Dutch Tech site, it is a massive scan for a vulnerability in Microsoft SQL server.

My ISP already is blocking all MS SQL packets (UDP port 1434), but there are several larger sites which have already received more than 12GB of data purely from these scans.

Edit: There has been a patch for the vulnerability for quite a while now, but a lot of servers haven't been patched yet.
The attacks in the USA are lessening, the ones in Europe are still at full strength.
 
Originally posted by: snooker
I was just now able to reconnect to the net.

My ISP has been down since like 2am EST this morning. It was affecting their login servers (At least it was giving me an invalid UN and PW). It is still running pretty slow..... especially UUNet from what I can tell.
Click to expand...

UUNet looks to have gotten slammed especially hard by this worm (I heard that the UUNet Dallas backbone was completely gone at one point). Around 2am EST is when it kicked into full gear. If your ISP is using UUNet that's probably why you weren't able to connect for so long.

www.internetpulse.net still shows UUNet having terrible response times.

Some of the latest bulletins I've been able to find about it:
Internet Security Systems Alerts
Symantec Security Response - W32.SQLExp.Worm

Some other fun stuff to look at:
Internet Status to Root Name Servers
Internet Average Statistics
 
Don't you just love Microsoft and careless (or just stupid) admins of it's software 🙂 I bet attacs like that will get rather daily in the future unless something changes dramatically...
 
Originally posted by: VBboy
Originally posted by: Insane3D
Originally posted by: VBboy I turned off my DDOS appliance in the kitchen. Service should be restoring as we speak 🙂
Click to expand...
Hey...it took you almost 3 hours to get to your kitchen and turn that thing off??? Damn...you must have a big house! 😛 😉 😀
Click to expand...
Nah, man, I had to please my girlfriend on my way to the kitchen 🙂
Click to expand...

Just because you call your palms Rosie doesn't mean you have a GF VB.🙂
 
Originally posted by: CorporateRecreation
Don't blame microsoft too hard, almost every platform has programs with buffer overflow errors. You only see the Microsoft servers get hit because they are the most popular platform, and they are easy to target. Buffer overflow is a VERY common thing, and it just so happens that MS's SQL is the target this time. If you run a MS Server, look out. Personally I am glad both my servers run unix.
Click to expand...

No I don't blame Microshaft for this. I blame them for making it difficult for me to uninstall Windows Messupinger on my WinXP box. EAT IT MS!

Btw I uninstalled it eventually but what a pain.
 
Originally posted by: element®
Originally posted by: CorporateRecreation
Don't blame microsoft too hard, almost every platform has programs with buffer overflow errors. You only see the Microsoft servers get hit because they are the most popular platform, and they are easy to target. Buffer overflow is a VERY common thing, and it just so happens that MS's SQL is the target this time. If you run a MS Server, look out. Personally I am glad both my servers run unix.
Click to expand...

No I don't blame Microshaft for this. I blame them for making it difficult for me to uninstall Windows Messupinger on my WinXP box. EAT IT MS!

Btw I uninstalled it eventually but what a pain.
Click to expand...

Yes, you download the script, doublecklick it... that is so damn hard to do... :|
 
Originally posted by: KK
Theres a script to do that? Can you provide a linky? Thanks

KK
Click to expand...
Start > Run

Cut and paste: RunDll32 advpack.dll,LaunchINFSection %windir%\INF\msmsgs.inf,BLC.Remove

Press Enter.
 
Maybe MS should be banned from the Internet 😛? I mean, look at the harm their software brings: IIS-servers are routinely hacked and defaced, thanks to MS SQL-server, Internet has slowed to a crawl and several root-servers are offline, Outlook spreads viruses faster than the eye can see, Hotmail is a spam-magnet, Code Red, Nimda etc. etc...
 
I was wondering why everything ws slower than sh!t last night. I just assumed it was my connection and went to bed 🙂

UUNet and Quest got Owned!
 
Originally posted by: Nemesis77
Maybe MS should be banned from the Internet 😛? I mean, look at the harm their software brings: IIS-servers are routinely hacked and defaced, thanks to MS SQL-server, Internet has slowed to a crawl and several root-servers are offline, Outlook spreads viruses faster than the eye can see, Hotmail is a spam-magnet, Code Red, Nimda etc. etc...
Click to expand...

If it wasn't Microsoft, it'd only be someone else's software.
 
Originally posted by: pulse8
Originally posted by: Nemesis77
Maybe MS should be banned from the Internet 😛? I mean, look at the harm their software brings: IIS-servers are routinely hacked and defaced, thanks to MS SQL-server, Internet has slowed to a crawl and several root-servers are offline, Outlook spreads viruses faster than the eye can see, Hotmail is a spam-magnet, Code Red, Nimda etc. etc...
Click to expand...

If it wasn't Microsoft, it'd only be someone else's software.
Click to expand...

Propably. But at least the overall level of security would improve when the weakest link gets removed. I mean, MS-servers are hacked even though they are not the most widely used ones.
 
Originally posted by: pulse8
Originally posted by: Nemesis77
Maybe MS should be banned from the Internet 😛? I mean, look at the harm their software brings: IIS-servers are routinely hacked and defaced, thanks to MS SQL-server, Internet has slowed to a crawl and several root-servers are offline, Outlook spreads viruses faster than the eye can see, Hotmail is a spam-magnet, Code Red, Nimda etc. etc...
Click to expand...

If it wasn't Microsoft, it'd only be someone else's software.
Click to expand...

You mean like the systems that are used twice as often as MS systems today? (only counting servers)

Obviously MS servers are are more vunerable to attacks... (or it's the people who uses the other systems that are more alert)
 
Originally posted by: SnapIT
Originally posted by: pulse8
Originally posted by: Nemesis77
Maybe MS should be banned from the Internet 😛? I mean, look at the harm their software brings: IIS-servers are routinely hacked and defaced, thanks to MS SQL-server, Internet has slowed to a crawl and several root-servers are offline, Outlook spreads viruses faster than the eye can see, Hotmail is a spam-magnet, Code Red, Nimda etc. etc...
Click to expand...

If it wasn't Microsoft, it'd only be someone else's software.
Click to expand...

You mean like the systems that are used twice as often as MS systems today? (only counting servers)

Obviously MS servers are are more vunerable to attacks... (or it's the people who uses the other systems that are more alert)
Click to expand...


Name me 1 product that has never had an exploitable bug? I will give you all the time you need.

SQL has a very good track for being quality software. A patch for this exploit has existed for more than 6 months. This is about clueless admins, not bad software.
 
Did anyone notice that this attack coincided very closely with the addition of the Clown avatar? :Q
 
I still can only get to half of the websites I have wanted to get too 🙁

I was just able to get to get Anandtech a few minutes ago.

Spac3d
 
Originally posted by: mechBgon
Did anyone notice that this attack coincided very closely with the addition of the Clown avatar? :Q
Click to expand...
I thought I was the only one who noticed!!! :Q

 
So this is what happened to the internet... My router has been getting HAMMERED with access requests on port 1434.

Ryan
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top