Lolita C. Baldor
Federal Web sites knocked out by cyber attack
WASHINGTON — A widespread and unusually resilient computer attack that began July 4 knocked out the Web sites of several government agencies, including some that are responsible for fighting cyber crime, The Associated Press has learned.
The Treasury Department, Secret Service, Federal Trade Commission and Transportation Department Web sites were all down at varying points over the holiday weekend and into this week, according to officials inside and outside the government. Some of the sites were still experiencing problems Tuesday evening. Cyber attacks on South Korea government and private sites also may be linked, officials there said.
U.S. officials refused to publicly discuss details of the cyber attack. But Amy Kudwa, spokeswoman for the Homeland Security Department, said the agency’s U.S. Computer Emergency Readiness Team issued a notice to federal departments and other partner organizations about the problems and “advised them of steps to take to help mitigate against such attacks.”
The U.S., she said, sees attacks on its networks every day, and measures have been put in place to minimize the impact on federal Web sites.
It was not clear whether other federal government sites also were attacked.
Others familiar with the U.S. outage, which is called a denial of service attack, said that the fact that the government Web sites were still being affected three days after it began signaled an unusually lengthy and sophisticated attack. The officials spoke on condition of anonymity because they were not authorized to speak on the matter.
Web sites of major South Korean government agencies, banks and Internet sites also were paralyzed in a suspected cyber attack Tuesday. An initial investigation found that many personal computers were infected with a virus ordering them to visit major official Web sites in South Korea and the U.S. at the same time, Korea Information Security Agency official Shin Hwa-su said.
The South Korean sites included the presidential Blue House, the Defense Ministry, the National Assembly, Shinhan Bank, Korea Exchange Bank and top Internet portal Naver. They went down or had access problems since late Tuesday, said Ahn Jeong-eun, a spokeswoman at the Korea Information Security Agency.
Kudwa had no comment on the South Korean attacks.
Two government officials acknowledged that the Treasury and Secret Service sites were brought down, and said the agencies were working with their Internet service provider to resolve the problem.
Ben Rushlo, director of Internet technologies at Keynote Systems, called it a “massive outage” and said problems with the Transportation Department site began Saturday and continued until Monday, while the FTC site was down Sunday and Monday.
Keynote Systems is a mobile and Web site monitoring company based in San Mateo, Calif. The company publishes data detailing outages on Web sites, including 40 government sites it watches.
According to Rushlo, the Transportation Web site was “100 percent down” for two days, so that no Internet users could get through to it. The FTC site, meanwhile, started to come back online late Sunday, but even on Tuesday Internet users still were unable to get to the site 70 percent of the time.
“This is very strange. You don’t see this,” he said. “Having something 100 percent down for a 24-hour-plus period is a pretty significant event.”
He added that, “The fact that it lasted for so long and that it was so significant in its ability to bring the site down says something about the site’s ability to fend off (an attack) or about the severity of the attack.”
Denial of service attacks against Web sites are not uncommon, and are usually caused when sites are deluged with Internet traffic so as to effectively take them off-line. Mounting such an attack can be relatively easy using widely available hacking programs, and they can be made far more serious if hackers infect and use thousands of computers tied together into “botnets.”
For instance, last summer, in the weeks leading up to the war between Russia and Georgia, Georgian government and corporate Web sites began to see “denial of service” attacks. The Kremlin denied involvement, but a group of independent Western computer experts traced domain names and Web site registration data to conclude that the Russian security and military intelligence agencies were involved.
Documenting cyber attacks against government sites is difficult, and depends heavily on how agencies characterize an incident and how successful or damaging it is.
Government officials routinely say their computers are probed millions of times a day, with many of those being scans that don’t trigger any problems. In a June report, the congressional Government Accountability Office said federal agencies reported more than 16,000 threats or incidents last year, roughly three times the amount in 2007. Most of those involved unauthorized access to the system, violations of computer use policies or investigations into potentially harmful incidents.
The Homeland Security Department, meanwhile, says there were 5,499 known breaches of U.S. government computers in 2008, up from 3,928 the previous year, and just 2,172 in 2006.
Associated Press writer Hyung-Jin Kim in Seoul, South Korea, contributed to this report.
On the Net:
Keynote Systems: www.keynote.com/
Transportation Department: www.dot.gov
Treasury Department: www.ustreas.gov
Related News
Homeland Security says it will be 'competitive' in hiring up to 1,000 cyber security expertsOctober 1st, 2009 Homeland Security to hire up to 1K cyber expertsWASHINGTON — The Obama administration has given a green light to the Homeland Security Department to be more competitive and choosey as it hires up to 1,000 new cyber experts over the next three years, the first major personnel move to fulfill its vow to bolster security of the nation's computer networks. The announcement follows a wave of cyber attacks on federal agencies, including a July assault that knocked government Web sites off the Internet and earlier intrusions into the country's electrical grid.
Feds give Homeland Security OK to retain up to 1,000 new cyber security expertsOctober 1st, 2009 Homeland Security to hire cyber expertsWASHINGTON — The Obama administration has given a green light to the Department of Homeland Security to hire up to 1,000 new cyber experts over the next three years, the first major personnel move to fulfill its vow to bolster security of the nation's computer networks. The announcement follows a wave of cyber attacks on federal agencies, including a July assault that knocked government Web sites off the Internet and earlier intrusions into the country's electrical grid.
White House struggles to fill cyber czar post; experts cite diverse responsibilitiesAugust 5th, 2009 White House struggles to fill cyber czar postWASHINGTON — Nearly six months after the Obama administration turned its focus on computer security, the White House is still struggling to name a cyber coordinator, delaying efforts to better organize and manage the nation's increasingly vulnerable digital defense. Experts say it is an almost impossible job to fill, and several executives have already turned it down.
Report: Cyber expert shortage may hinder government in protecting Web sites, internal systemsJuly 22nd, 2009 Report: Shortage of cyber experts may hinder govtWASHINGTON — Federal agencies are facing a severe shortage of computer specialists, even as a growing wave of coordinated cyberattacks against the government poses potential national security risks, a private study found. The study describes a fragmented federal cyber force, where no one is in charge of overall planning and government agencies are "on their own and sometimes working at cross purposes or in competition with one another."
The report, scheduled to be released Wednesday, arrives in the wake of a series of cyberattacks this month that shut down some U.S.
Is this cyber war? Response possibilities limited _ and nobody's talking about bombsJuly 10th, 2009 Is this cyber war? Possible U.S responses limitedWASHINGTON — A lot of people are saying this is cyber war. But if the Internet attack on U.S.
Experts work to untangle US, South Korea cyber attack, disagree over extent of Pyongyang tiesJuly 10th, 2009 Experts work to untangle US, Korea cyber attackWASHINGTON — U.S. authorities trying to unravel the widespread cyber attacks against government Web sites in the United States and South Korea this week are facing a lengthy, complex investigation that may never identify a culprit, at least not one they would be willing to reveal.
Official says 7 SKorean Web sites hacked again after slew of cyber attacks in South, USJuly 9th, 2009 Official says 7 SKorean Web sites attacked againSEOUL, South Korea — South Korean Web sites were attacked again Thursday after a wave of Web site outages in the U.S. and South Korea that several officials suspect North Korea was behind.
Official says 7 SKorean Web sites facing renewed cyber attacksJuly 9th, 2009 Official: 7 SKorean Web sites under renewed attackSEOUL, South Korea — A state official says seven South Korean Web sites are under renewed cyber attack. Ku Kyo-young from the state-run Korea Communications Commission said the latest assault began around 6:30 p.m.
International cyber attack broader than suspected; White House, Pentagon among targetsJuly 8th, 2009 White House among targets of sweeping cyber attackWASHINGTON — The powerful attack that overwhelmed computers at U.S. and South Korean government agencies for days was even broader than initially realized, also targeting the White House, the Pentagon and the New York Stock Exchange.
US suspects North Korea was behind cyber attacksJuly 8th, 2009 WASHINGTON - The US believes North Korea was responsible for a massive cyber attack on government and other websites during the past week, Fox News reported Wednesday. An unnamed US defence official told Fox the attack targeted dozens of websites, including the ones for the US Defence Department and the Department of State.
Officials: Major SKorean, US Web sites hit by suspected cyber attackJuly 8th, 2009 Korean, US Web sites hit by suspected cyber attackSEOUL, South Korea — Suspected cyber attacks paralyzed Web sites of major South Korean government agencies, banks and Internet sites in a barrage that appeared linked to similar attacks in the U.S., South Korean officials said Wednesday. The sites of 11 organizations including the presidential Blue House, the Defense Ministry, the National Assembly, Shinhan Bank, Korea Exchange Bank and top Internet portal Naver went down or had access problems since late Tuesday, said Ahn Jeong-eun, a spokeswoman at Korea Information Security Agency.
Massive cyber attack affects government Web sites in US, SKorea; NKorea suspectedUSJuly 8th, 2009 Government Web sites attacked; NKorea suspectedWASHINGTON — A widespread computer attack that began July 4 knocked out the Web sites of the Treasury Department, the Secret Service and other U.S. agencies, and South Korean government sites also came under assault.
Cyber security agency ties up with British firmJune 23rd, 2009 NEW DELHI - The government agency in charge of cyber security Tuesday signed an agreement with British IT and communication solutions provider BT for enhancing computer security and technology sharing. "This MoU (memorandum of understanding) will help in capacity development, particularly in training our manpower for implementing the best security practices," said Gulshan Rai, director of the Indian Computer Emergency Response Team (CERT-In).
Officials debate how the US should retaliate against cyber criminalsJune 3rd, 2009 US grapples with how to retaliate in cyber attacksWASHINGTON — In the murky world of computer espionage, the U.S. faces hard choices on how to retaliate when government or privately owned networks come under cyber attack, senior military and intelligence officials said Tuesday.
Obama's Day: Obama to address cyber security, attend FEMA hurricane preparedness meetingMay 29th, 2009 Cyber security, FEMA meeting on Obama's agendaWASHINGTON — President Barack Obama is to address a 21st century defense threat — protecting the nation against a cyber attack. Obama is scheduled to deliver remarks Friday morning on how the government plans to better secure the nation's computer infrastructure.
Loading ...