Group used 30,000-node botnet in MasterCard, PayPal attacks
IDG News Service - PayPal's website was hit late Wednesday by two botnets as online activists continued their Web attacks on companies that have severed their relationships with WikiLeaks.
The activists have recruited volunteers, who have banded their computers into a distributed denial of service (DDoS) botnet, but they are also using hacked machines to carry out these attacks, said Sean-Paul Correll of threat researcher Panda Security. "Today we observed over 3,000 computers in the voluntary botnet, but we also have knowledge of a 30k node botnet," he said.
This botnet infects computers via peer to peer filesharing systems, but it can spread via Microsoft Messenger and USB sticks as well, he said. Panda is trying to get a sample of the botnet code to analyze.
PayPal was hit late Wednesday afternoon, Pacific time, and the Paypal.com address was unresponsive into early Thursday morning. "There have been attempted DDoS attacks on paypal.com this week," said company spokesman Anuj Nayar. "The attacks slowed the website itself down for a short while, but did not significantly impact payments."
PayPal's blog had been hit earlier in the week, but the main Paypal.com website was down for at least several hours Wednesday, and www.paypal.com was affected too, although less seriously. Unlike Visa and MasterCard, the website is critical to PayPal's business. Customers need the website to send money to other PayPal users.
Paypal wasn't the only company to have some payments affected, however. MasterCard's SecureCode service -- used to add a security code for use in online transactions, similar to a PIN (personal identification number), also suffered a disruption Wednesday, said MasterCard spokesman James Issokson. "There were some operational issues and they have been resolved," he said.
Representatives of the Anonymous group's Operation Payback said that they were responsible for this disruption. They believe that MasterCard's Web servers may have shared resources with the SecureCode system. In a MasterCard advisory,published on the Securetrading blog, MasterCard said that a directory server had failed.
Both MasterCard and Visa also had their public websites knocked offline by a "hive" of as many as 3,000 activists who had downloaded Web-attacking software, which was then turned on different websites.
For several months now, Operation Payback has gone after websites belonging to organizations that have cracked down on unlicensed music and movie copying -- the Motion Picture Association of America (MPAA) and the Recording Industry Association of America (RIAA). This week, the project took up cyber arms against companies that have cut business ties with WikiLeaks, making it harder for the website to raise money and continue operations. They have also hit websites belonging to WikiLeaks critics such as U.S. Senator Joseph Lieberman and former Alaska Governor Sarah Palin.
- Hackers steal user data from the European Central Bank website, demand money
- Arrests made after international cyber-ring targets StubHub
- SQL injection flaw opens door for Wall Street Journal database hack
- Goodwill Industries probes possible payment card breach
- Aloha point-of-sale terminal, sold on eBay, yields security surprises
- The biggest data breaches of 2014 (so far)
- Blue Shield discloses 18,000 doctors' Social Security numbers
- PF Chang's says breach was 'highly sophisticated criminal operation'
- Breaches exposed 1 in 7 US debit cards in 2013
- New malware program targets banking data
- Enable secure remote access to 3D data without sacrificing visual perfomance Design and manufacturing companies must adapt quickly to the demands of an increasingly global and competitive economy. To speed time to market for...
- Virtually Delivered High Performance 3D Graphics "A picture is worth a thousand words." That old phrase is as true today as it ever was. Pictures (i.e., those with heavy...
- Best Practices for Securing Hadoop Historically, Apache Hadoop has provided limited security capabilities. To protect sensitive data being stored and analyzed in Hadoop, security architects should use a...
- Top Tips for Securing Big Data Environments: Why Big Data Doesn't Have to Mean Big Security Challenges Organizations must come to terms with the security challenges they introduce. As big data environments ingest more data, organizations will face significant risks...
- What should I look for in a Next Generation Firewall? SANS Provides Guidance With so many vendors claiming to have a Next Generation Firewall (NGFW), it can be difficult to tell what makes each one different....
- Responding to New SSL Cybersecurity Threat The featured Gartner research examines current strategies to address new SSL cybersecurity threats and vulnerabilities. All Security White Papers | Webcasts
Our new bimonthly Internet of Things newsletter helps you keep pace with the rapidly evolving technologies, trends and developments related to the IoT. Subscribe now and stay up to date!