Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

'Largest DDoS attack' in GitHub's history targets anticensorship projects

Ms. Smith | March 30, 2015
GitHub has been hammered by a continuous DDoS attack for three days. It's the "largest DDoS attack in github.com's history." The attack is aimed at anti-censorship GreatFire and CN-NYTimes projects, but affected all of GitHub; the traffic is coming from China as attackers are reportedly using China's search engine Baidu for the purpose of "HTTP hijacking."

Back in January, after GreatFire uncovered another 'devious' man-in-the-middle attack by Chinese authorities against Microsoft's Outlook, the anticensorship group urged Microsoft to revoke trust for CNNIC certificate authority.

After announcing it was under the largest DDoS attack in its history, GitHub said it "involves a wide combination of attack vectors. These include every vector we've seen in previous attacks as well as some sophisticated new techniques that use the web browsers of unsuspecting, uninvolved people to flood github.com with high levels of traffic. Based on reports we've received, we believe the intent of this attack is to convince us to remove a specific class of content."

Put another way by Anthr@X at Insight Labs:

Baidu denied any involvement in the attack and released a statement claiming, "We've notified other security organizations, and are working together to get to the bottom of this."

 

Previous Page  1  2 

Sign up for CIO Asia eNewsletters.