Another Cyber Attack Hits Europe

Maricelle Ruiz — Wed, 13 Jun 2007 12:15:00 GMT

When Estonia suffered a series of cyber attacks in recent months, US official John Negroponte told the Financial Times: “We need to prepare ourselves because this is likely only to become more of an issue in the future.” Well, the future is here. And the wave of cyber attacks has moved from Eastern to Western Europe. It has recently been disclosed that around the time Estonia was under cyber attack, an important Spanish domain-registration company was also waging a battle against unknown cyber pirates. The Cyber Terrorism Division of the Spanish Police is investigating the incident. If identified, the hackers involved could be prosecuted for blackmailing a company to prevent the disclosure of confidential information.

There seems to be a disagreement regarding the severity of the situation. While some reports claim that the private data of hundreds of thousands of Internet users is in the hands of criminals, the leading Spanish company in the domain registration and web hosting business, Arsys, has issued a statement denying this information. Executives concede the company has experienced what they describe as “a security incident, compromising some client data.” However, they say, none of the data in question involves email, bank account or credit card passwords and therefore, they claim there’s no risk of illegal access into bank or email accounts.

According to Arsys, hackers reportedly stole FTP codes, enabling them to insert a link to an external server containing malicious code, in the web pages of some clients. As soon as the company detected the incident, executives say it eliminated the link from the web pages, notified affected clients and boosted security measures across the board. To comply with legal requirements, executives add the company has reported the incident to the Cyber Terrorism Division of the Spanish Police. They confirm the incident is under investigation and may end up in court.

The attackers reportedly used servers located in the United States and Russia. According to the latest Symantec Internet Security Threat Report, the United States is the top country for malicious threat activity, accounting for 31% of the worldwide total, followed by China (10%), Germany (7%), France (4%), United Kingdom (4%), South Korea (4%), Canada (3%), Spain (3%), Taiwan (3%) and Italy (3%). Meanwhile, law enforcement authorities have detained a Russian teenager suspected of involvement in the Estonian cyber attacks. The youth reportedly called for massive cyber attacks against Estonian servers in Internet forums.

Should We Go To War Over A Massive Cyber-Attack?

Maricelle Ruiz — Mon, 21 May 2007 10:23:00 GMT

Estonia is doing it again. The tiny Eastern European nation – holder of the first Internet election – is pushing the boundaries to set another legal precedent. But this time around, a change in the law could entail serious international consequences.

It all started a few weeks ago. Weary of Russian attempts to reportedly meddle in its internal affairs, the former Soviet satellite state decided to relocate a Soviet war memorial from the center of its capital Tallinn to a cemetery. The action angered Russians living in Estonia and beyond. Among the actions taken against Estonia was a massive cyber-attack, lasting weeks, which Estonian public officials and business executives claim originated at the top levels of the Russian government.

Estonia may be small in territorial size, but when it comes to its former handlers, it’s ready to display a big attitude. The country’s top public officials went straight to the European Union and the North Atlantic Treaty Organization (NATO) to report the attacks, which disabled the sites of ministries and political parties, as well as of some of the largest newspapers, banks and businesses in the country.

“Attacking one member state means an attack against the entire European Union,” Estonian Prime Minister Andrus Ansip alleged. “We have turned to the European Union and we ask them to take immediate action.”

Prime Minister Ansip and other Estonian public officials alluded to Article V of the NATO Treaty, which states that an attack on one of its members shall be considered an attack against all and enables these nations to exercise the right of self-defense recognized by Article 51 of the Charter of the United Nations. Most EU member states – including Estonia – also belong to NATO.

Estonian Defense Minister Jaak Aaviksoo, meanwhile, discussed the situation with NATO officials and later stated the following during an interview with British newspaper The Guardian: “At present, NATO does not define cyber-attacks as a clear military action. This means that the provisions of Article V of the North Atlantic Treaty, or, in other words collective self-defense, will not automatically be extended to the attacked country. Not a single NATO defense minister would define a cyber-attack as a clear military action at present. However, this matter needs to be resolved in the near future.”

NATO cyber-terrorism experts have traveled to the country to assist Estonians in determining the source of the attack and boosting the country’s electronic defenses. The attack has been described as a distributed denial of service attack. A denial of service attack is defined as an attack against a computer or network that attempts to limit access to the Internet by flooding it with requests for a webpage or emails. A more sophisticated variant of this attack is said to be the distributed denial of service attack, where hackers rely on viruses to take over multiple computers to engage in the attack, thus increasing the amount of malicious traffic and decreasing the ability of the owners of the victim machine or network to defend themselves. In the Estonian case, the IT experts prevented foreign Internet addresses from accessing the sites under attack until the situation was under control.

The President of the European Council, German Chancellor Angela Merkel and Commission President José Manuel Barroso, meanwhile, were scheduled to discuss the cyber-attack issue during a recent EU summit with Russia, which judging by their grave faces during the final press conference, did not seem to yield positive results. In the past, Russia and China have been linked to electronic espionage. Now, it may be wise to admit that governments must evaluate measures to effectively handle countries that decide to engage in this novel type of warfare.

IBLS Speaker's Corner : Estonia

Another Cyber Attack Hits Europe

Should We Go To War Over A Massive Cyber-Attack?