.

New DOS Attack Is a Killer.. (from Dark Reading)

<<

slimjim100

User avatar

EH-Net Columnist
EH-Net Columnist

Posts: 385

Joined: Wed Nov 08, 2006 12:50 pm

Location: Atlanta

Post Wed Oct 01, 2008 9:18 am

New DOS Attack Is a Killer.. (from Dark Reading)

Things are a-brewin’ in Sweden. Sweden is not just home of the infamous bikini team, it is also the home of Outpost 24, an equally sexy software-as-a-service network scanning service, and the employer of my friend Robert E. Lee and his colleague Jack C. Louis. These guys are the inventors of UnicornScan, a user-land TCP stack turned into a port scanner and a new tool "sockstress" anbd it could cause some real issues on the internet!


http://www.darkreading.com/blog.asp?blo ... _id=164939

A new kind of attack that was found by Mr. Lee & Mr. Louis (well back in 2005) and will be demo'ed soon at upcoming T2 conference in Helsinki.

MP3 interview here (Enginsh played 5 minutes in) http://debeveiligingsupdate.nl/audio/bevupd_0003.mp3

The tool's name is "sockstress" and is not going to be released since the vendors of affected TCP stacks have not fixed them yet.

Robert E Lee's Blog: http://blog.robertlee.name/


If this is true and is released there could be sme real issues for all of the internet.

Cheers,

Brian
Last edited by slimjim100 on Wed Oct 01, 2008 9:39 am, edited 1 time in total.
CISSP, CCSE, CCNA, CCAI, Network+, Security+, JNCIA, & MCP
<<

RoleReversal

User avatar

Hero Member
Hero Member

Posts: 929

Joined: Fri Jan 04, 2008 8:54 am

Location: UK

Post Wed Oct 01, 2008 9:43 am

Re: New DOS Attack Is a Killer.. (from Dark Reading)

Brian,

I read this over at DarkReading earlier today. I'm hoping it's more hype than substance as this could be fairly nasty if it lives up to billing. Can't see too much point in worrying at the moment though, as there aren't enough details release to the mainstream to work on a defence, and supposedly there are no work arounds at the moment.

Think I might start panicking if future developments on this go sour...
<<

geekyone

User avatar

Full Member
Full Member

Posts: 180

Joined: Fri Oct 26, 2007 12:45 pm

Location: Peoria, IL

Post Wed Oct 01, 2008 4:03 pm

Re: New DOS Attack Is a Killer.. (from Dark Reading)

I am really glad they are being responsible about disclosure on this one.  If it is as bad as they say things could get bad quick.  I am definitely with you on this one RR, really hope it is just hype.  I am looking forward to finding out the details as soon as it is patched.
CISSP, CEH, GPEN, GCIH, GCFA
<<

$w33p3R

Newbie
Newbie

Posts: 30

Joined: Fri Aug 08, 2008 10:39 pm

Post Wed Oct 01, 2008 9:39 pm

Re: New DOS Attack Is a Killer.. (from Dark Reading)

Well, I have been the victim of Dos attacks before on servers that I had and I can say first hand they are not fun to experience.  But, I don't think I have ever seen a Dos attack that couldn't be defended against at some level on the network.  I am calling hype until I see proof.
MCP, CEH
<<

shednik

Jr. Member
Jr. Member

Posts: 75

Joined: Thu Sep 11, 2008 7:30 am

Post Thu Oct 02, 2008 11:32 am

Re: New DOS Attack Is a Killer.. (from Dark Reading)

Very interesting there....never fails always something new coming out
CCNA, MCP, A+, N+

WIP: Masters of Infosec, CEH, & Mastering C
<<

venom77

User avatar

Hero Member
Hero Member

Posts: 1911

Joined: Mon Dec 11, 2006 3:23 pm

Post Thu Oct 02, 2008 10:18 pm

Re: New DOS Attack Is a Killer.. (from Dark Reading)

<<

RoleReversal

User avatar

Hero Member
Hero Member

Posts: 929

Joined: Fri Jan 04, 2008 8:54 am

Location: UK

Post Fri Oct 03, 2008 4:17 am

Re: New DOS Attack Is a Killer.. (from Dark Reading)

Nice article Bill, thanks for sharing.

It'll be interesting to see how close Fyodor has got once the full details of the 'new' attack are released.

Return to Malware

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software