Cyberattack Against WikiLeaks Was Weak
-
By Kevin Poulsen
- November 29, 2010 |
- 4:35 pm |
- Categories: Bradley Manning, Wikileaks
In the first test of WikiLeaks’ resiliency since a staff rebellion earlier this year, the organization recovered within hours from a distributed denial-of-service attack during its rollout of leaked State Department cables Sunday. But experts who monitored the disruptive traffic say the attack was relatively modest in size.
WikiLeaks’ main web address and its “cablegate” site were unreachable as the organization’s media partners published their first analyses from a massive trove of a quarter-million U.S. diplomatic cables Sunday afternoon. Hours earlier, WikiLeaks wrote on Twitter: “We are currently under a mass distributed denial-of-service attack.”
But Arbor Networks, which analyzes malicious network traffic crossing the internet’s backbones, reports that the DDoS generated between 2 and 4 Gbps of disruptive traffic, slightly above the average for all DDoS attacks, but well below the peak 60 to 100 Gbps consumed by truly massive attacks against other websites over the last year.
“The traffic that we’re looking at going to the network where WikiLeaks was hosted at the time the attack started is 12 to 15 gigs per second, so 2 to 4 gigs on top of that is not much,” says Jose Nazario, a senior security researcher at Arbor.
The DDoS tested WikiLeaks’ mettle in the wake of a staff rebellion earlier this year that cost the organization a key technical volunteer responsible for its complex bulletproof backend. The volunteer had set up a censorship-resistant system that decoupled WikiLeaks’ document archives from its public internet IP addresses, allowing the site to jump back to life within an hour of losing its hosting.
When that volunteer resigned in September, along with spokesman Daniel Domscheit-Berg and other staffers, WikiLeaks’ founder Julian Assange was given two weeks to “prepare an alternative setup,” the volunteer said in an interview last month. After that, “we pulled off all the technology developed for WikiLeaks and handed the remaining people the machines. We only took with us that which was developed by us.”
The volunteer’s account was confirmed by other former WikiLeaks staffers. “No machines that had been donated to WikiLeaks were removed,” says former staffer Herbert Snorrason, an Icelandic university student. Instead, “the software systems and web systems” were taken out of service.
WikiLeaks’ original website with its archive of leaked documents from around the world has remained offline ever since, while WikiLeaks has focused on the high-profile U.S. leaks linked, with varying degrees of certainty, to Bradley Manning, the 23-year-old former intelligence analyst charged with accessing and disclosing diplomatic cables and other classified files. WikiLeaks launched the Iraq war logs and the State Department cable leaks from dedicated web pages with itinerant hosting.
Despite the issues, WikiLeaks was able to recover from Sunday’s DDoS attack relatively swiftly.
The traffic, directed at WikiLeaks’ Swedish hosting provider Bahnhof, began at approximately 10:05 a.m. EST and originated from “a handful of sources,” says Arbor’s Nazario. Though modest in size, the attack was effective because it opened TCP connections to WikiLeaks’ servers and kept them open, like jamming a switchboard.
WikiLeaks responded by redirecting its web addresses to cloud servers in France and Ireland. The organization announced a functional “cablegate” site shortly after 4 p.m. EST, six hours after the attack began. The site launched with 219 diplomatic cables, and WikiLeaks says it plans to release the entire cache “in stages” over the coming months.
A self-described “hacktivist” called Jester has taken credit for the DDoS. Jester has a history of launching similar attacks against websites said to be linked to radical Islam. He wrote on Twitter that he targeted WikiLeaks “for threatening the lives of our troops and ‘other assets.’”
See Also:
- Cyberwar Against Wikileaks? Good Luck With That
- Unpublished Iraq War Logs Trigger Internal WikiLeaks Revolt
- Newspapers Reveal Diplomatic Cables Provided By WikiLeaks
- Suspected Wikileaks Source Described Crisis of Conscience Leading to Leaks
- U.S. Intelligence Analyst Arrested in Wikileaks Video Probe
![](https://webharvest.gov/congress111th/20101203153323im_/http://www.wired.com/threatlevel/wp-content/gallery/biopics/kevin_poulsen.jpg)
Follow @kpoulsen on Twitter.
The attack wasn’t purely a volume of traffic attack. That’s part of why it worked for awhile.
That it failed to stop Wikileaks can lead us to believe 2 different scenarios; one it was initiated by a private hacker with limited resouces or the US Govt’s hackers aren’t up to snuff it their technical skills. lol
finaly someone that expose the real truth, go WL!
Sad to hear an employee responsible for such a cool system felt forced to leave. On one hand I support what Wikileaks does, but on the other hand that Assange guy just seems a tad too sketchy.
Oh and you would think we(the U.S.) had the money to hire some of the best hackers around, but obviously they are just as inept as every other part of the government. What happens when some potato vodka drunk Russian teenager decides he wants to hack the Department of Defense? Obviously our hackers will just roll up into the fetal position and cry while he scrapes our systems up and launches nukes at the moon.
“Cyberattack Against WikiLeaks Was Weak.” Yeah, want to know what else was weak? Anything but the setting on my bullshit detector, that’s what. Wikileaks has “beltway-brainchild” written all over it
I think it is the highest number of attacks till date…
dhrt
╬╬╬╬╬╬╬╬╬╬╬
Yawn…
Operation: Payback is a bitch has been firing the LOIC lazor for weeks now. While their operation has been slightly successful, their attempt to keep the targeted organizations offline has failed.
So yawn. Jester is a pu$$y and a copycat — and pretty unsuccessful at that.
How about having the hacker awarded the Nobel Peace Prize for his efforts to “prevent discomfort” between nations. The Nobel Peace Price committee has a history of picking the right guys from Carter to Arafat to Obama. How about picking someone concerned about protecting the global elite from embarrassment?