Welcome!

Agile Computing Authors: Elizabeth White, Christopher Keene, AppNeta Blog, Liz McMillan, Moshe Kranc

Related Topics: Cloud Security, Release Management , @CloudExpo

Cloud Security: Article

Wiki War Breaks Out

Vigilantes acting in support of Assange's rogue site started unleashing a torrent of punishing denial of service attacks

Even before WikiLeaks mastermind Julian Assange got hauled off to Wandsworth Prison in southwest London Tuesday, vigilantes acting in support of his rogue site started unleashing a torrent of punishing denial of service attacks on the financial institutions that turned the spigot off on the donations WikiLeaks needs to survive and pay Assange's legal bills.

That includes PayPal, MasterCard, Visa and the Swiss Post bank.

Amazon.com, which booted WikiLeaks off its cloud last week, was threatened again Thursday but reportedly the new avenging angel lacked the "forces" given Amazon's EC2-style elasticity. The ruffians pushed on to PayPal. Twitter is also a possible target for not allowing WikiLeaks discussions to "trend" to the top of the heap.

The attacks, which WikiLeaks refused neither to "condemn nor applaud" and which the US government is now investigating, brought down the web sites of Visa, MasterCard and the Swiss Post bank PostFinance.

Authorities apparently don't believe WikiLeaks and its leader aren't responsible for the attack and moved Assange to a segregated part of the prison where there is limited computer access, according to the Guardian Thursday.

PostFinance, which has so far suffered the most, was first hit on Monday and was down most of Tuesday preventing depositors from doing online banking; mastercard.com was still impossible to reach Wednesday but its core business was reportedly unaffected. Ditto Visa whose web site crashed Wednesday.

The attacks, however, have continued with reports of interference with MasterCard payment operations and from our own in-house experience with Visa Thursday that appeared to be true.

PayPal, which pulled WikiLeaks' account last Friday, has reportedly been hit too but seemed to bear up aside from some difficulties with its blog and Thursday with its web site.

The web site of the Swedish prosecutor's office, which is pressing the sex crimes case against Assange, was down Tuesday into Wednesday and then the web site and e-mail system of the law firm for the two Swedish women who brought the complaint were attacked.

So too Sarah Palin's web site and US Senator Joe Lieberman's, both outspoken WikiLeaks critics. At press time, the US Senate web site was a target.

Oddly enough the web site of the hysterically liberal Democratic senator from California Dianne Feinstein, who chairs the Senate Intelligence Committee and suddenly finds herself in Lieberman's company, is so far untouched. Guess the mob doesn't have a subscription to the Wall Street Journal where she wrote an op-ed saying Assange should be hauled into court for violating the Espionage Act of 1917.

Dubbed Operation Payback, the revenge attacks are the work of an army of maybe 1,500-but-swelling self-styled "hacktivists" associated with the so-called Anonymous hacker coalition that has previously attacked the Church of Scientology and RIAA for its anti-piracy moves.

When Operation Payback first started, these modern-day Vikings said, "While we don't have much of an affiliation with WikiLeaks, we fight for the same reasons. We want transparency and counter censorship."

After the marauders downed the Visa and MasterCard web sites Wednesday, Facebook killed an Operation Payback page where it appeared the vandals have been congregating, congratulating each other and getting their marching orders.

Facebook said the page was removed "for violating our Terms of Use," which outlaw hate speech, threats of violence and bullying.

It appears it was an idle gesture since they just regrouped elsewhere on Facebook.

Twitter, where the timing of some of the attacks has been posted, tried to do the same thing after a file appeared that seemed to contain credit card information. MasterCard said it was bogus.

In retaliation Anonymous has been hit and WikiLeaks itself has been under sporadic DDoS attacks since it started releasing stolen US embassy cables.

After WikiLeaks got kicked off Amazon's cloud last week and lost its wikileaks.org domain to DDoS attacks on EveryDNS.net, WikiLeaks borrowed a Swiss web address belonging to the Swiss Pirate Party and reportedly now has DNS servers in 14 countries and a thousand mirror sites.

It also took out an "insurance" policy.

Before turning himself in, Assange claimed he sent a practically biblical army of 100,000 fellow travelers a stockpile of secret national and commercial information that he threatened would be decrypted and released if something happened to him. His lawyers called it a "thermonuclear device."

On Tuesday WikiLeaks said it wouldn't send out the decryption code just yet. A spokesman told the AP it will only be used if "grave matters" take place involving WikiLeaks staff. What that means is unclear.

Indicative of what the file might contain WikiLeaks, in a shot across the establishment's bow Monday, released a list of critical foreign infrastructure assets such as pipelines, mines, trans-Atlantic cables, food sources and pharmaceutical supplies that are important to the security of the United States not to mention its allies. The list is a terrorist's dream.

The AP said British Foreign Secretary William Hague condemned the disclosure, telling the BBC it was a "reprehensible" act committed "without regard to wider concerns of security, the security of millions of people."

The wire service said it decided against publishing the list "due to the sensitive nature of the information." The BBC linked to the list on WikiLeaks and the AP wants to know why. It said the BBC didn't respond.

The list was part of the huge cache of 252,000 stolen diplomatic cables and State Department documents that WikiLeaks started releasing last week to the detriment of international relations. Nothing so far comes close to the dictionary definition of whistle-blowing, just voyeurism and general mayhem.

The Telegraph speculates that the financial giants are acting in lockstep because Assange made the "fatal mistake" of threatening to bring down a major US bank with New Year's revelations supposedly akin to Enron. Fingers pointed at Bank of America.

The paper figures such a thing cuts a little too close to home for all of them especially in the middle of a recession.

WikiLeaks still has a post office box in Australia and bank accounts in Germany and Iceland to accept donations.

Wading into the fray Tuesday, possibly to heighten its non-existent profile, a Philadelphia start-up financial processing service called Xipwire (say Zipwire) has offered to handle WikiLeaks donations via debit and credit cards over cell phones.

It said on its site, "While people may or may not agree with WikiLeaks, we at Xipwire believe that anyone who wishes to support the organization through a donation should be able to do so." It said it is "waiving all fees so that 100 percent of the donations collected will be directly passed on to WikiLeaks." The AP says it holding the money in an escrow account since it hasn't been able to make contact with WikiLeaks.

Of course, if WikiLeaks is declared a terrorist organization, as the incoming chairman of the House Homeland Security Committee wants, US banks would be prohibited from processing payments and it would be a felony to provide the group with "material support or resources."

More Stories By Maureen O'Gara

Maureen O'Gara the most read technology reporter for the past 20 years, is the Cloud Computing and Virtualization News Desk editor of SYS-CON Media. She is the publisher of famous "Billygrams" and the editor-in-chief of "Client/Server News" for more than a decade. One of the most respected technology reporters in the business, Maureen can be reached by email at maureen(at)sys-con.com or paperboy(at)g2news.com, and by phone at 516 759-7025. Twitter: @MaureenOGara

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


@ThingsExpo Stories
For basic one-to-one voice or video calling solutions, WebRTC has proven to be a very powerful technology. Although WebRTC’s core functionality is to provide secure, real-time p2p media streaming, leveraging native platform features and server-side components brings up new communication capabilities for web and native mobile applications, allowing for advanced multi-user use cases such as video broadcasting, conferencing, and media recording.
SYS-CON Events announced today that Venafi, the Immune System for the Internet™ and the leading provider of Next Generation Trust Protection, will exhibit at @DevOpsSummit at 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Venafi is the Immune System for the Internet™ that protects the foundation of all cybersecurity – cryptographic keys and digital certificates – so they can’t be misused by bad guys in attacks...
ReadyTalk has expanded the capabilities of the FoxDen collaboration platform announced late last year to include FoxDen Connect, an in-room video collaboration experience that launches with a single touch. With FoxDen Connect, users can now not only engage in HD video conferencing between iOS and Android mobile devices or Chrome browsers, but also set up in-person meeting rooms for video interactions. A host’s mobile device automatically recognizes the presence of a meeting room via beacon tech...
The cloud market growth today is largely in public clouds. While there is a lot of spend in IT departments in virtualization, these aren’t yet translating into a true “cloud” experience within the enterprise. What is stopping the growth of the “private cloud” market? In his general session at 18th Cloud Expo, Nara Rajagopalan, CEO of Accelerite, explored the challenges in deploying, managing, and getting adoption for a private cloud within an enterprise. What are the key differences between wh...
It’s 2016: buildings are smart, connected and the IoT is fundamentally altering how control and operating systems work and speak to each other. Platforms across the enterprise are networked via inexpensive sensors to collect massive amounts of data for analytics, information management, and insights that can be used to continuously improve operations. In his session at @ThingsExpo, Brian Chemel, Co-Founder and CTO of Digital Lumens, will explore: The benefits sensor-networked systems bring to ...
On Dice.com, the number of job postings asking for skill in Amazon Web Services increased 76 percent between June 2015 and June 2016. Salesforce.com saw its own skill mentions increase 37 percent, while DevOps and Cloud rose 35 percent and 28 percent, respectively. Even as they expand their presence in the cloud, companies are also looking for tech professionals who can manage projects, crunch data, and figure out how to make systems run more autonomously. Mentions of ‘data science’ as a skill ...
Manufacturers are embracing the Industrial Internet the same way consumers are leveraging Fitbits – to improve overall health and wellness. Both can provide consistent measurement, visibility, and suggest performance improvements customized to help reach goals. Fitbit users can view real-time data and make adjustments to increase their activity. In his session at @ThingsExpo, Mark Bernardo Professional Services Leader, Americas, at GE Digital, discussed how leveraging the Industrial Internet a...
Amazon has gradually rolled out parts of its IoT offerings in the last year, but these are just the tip of the iceberg. In addition to optimizing their back-end AWS offerings, Amazon is laying the ground work to be a major force in IoT – especially in the connected home and office. Amazon is extending its reach by building on its dominant Cloud IoT platform, its Dash Button strategy, recently announced Replenishment Services, the Echo/Alexa voice recognition control platform, the 6-7 strategic...
In addition to all the benefits, IoT is also bringing new kind of customer experience challenges - cars that unlock themselves, thermostats turning houses into saunas and baby video monitors broadcasting over the internet. This list can only increase because while IoT services should be intuitive and simple to use, the delivery ecosystem is a myriad of potential problems as IoT explodes complexity. So finding a performance issue is like finding the proverbial needle in the haystack.
There will be new vendors providing applications, middleware, and connected devices to support the thriving IoT ecosystem. This essentially means that electronic device manufacturers will also be in the software business. Many will be new to building embedded software or robust software. This creates an increased importance on software quality, particularly within the Industrial Internet of Things where business-critical applications are becoming dependent on products controlled by software. Qua...
Big Data, cloud, analytics, contextual information, wearable tech, sensors, mobility, and WebRTC: together, these advances have created a perfect storm of technologies that are disrupting and transforming classic communications models and ecosystems. In his session at @ThingsExpo, Erik Perotti, Senior Manager of New Ventures on Plantronics’ Innovation team, provided an overview of this technological shift, including associated business and consumer communications impacts, and opportunities it ...
The 19th International Cloud Expo has announced that its Call for Papers is open. Cloud Expo, to be held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, brings together Cloud Computing, Big Data, Internet of Things, DevOps, Digital Transformation, Microservices and WebRTC to one location. With cloud computing driving a higher percentage of enterprise IT budgets every year, it becomes increasingly important to plant your flag in this fast-expanding business opportuni...
IoT is rapidly changing the way enterprises are using data to improve business decision-making. In order to derive business value, organizations must unlock insights from the data gathered and then act on these. In their session at @ThingsExpo, Eric Hoffman, Vice President at EastBanc Technologies, and Peter Shashkin, Head of Development Department at EastBanc Technologies, discussed how one organization leveraged IoT, cloud technology and data analysis to improve customer experiences and effi...
The Internet of Things will challenge the status quo of how IT and development organizations operate. Or will it? Certainly the fog layer of IoT requires special insights about data ontology, security and transactional integrity. But the developmental challenges are the same: People, Process and Platform. In his session at @ThingsExpo, Craig Sproule, CEO of Metavine, demonstrated how to move beyond today's coding paradigm and shared the must-have mindsets for removing complexity from the develo...
SYS-CON Events announced today that MangoApps will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. MangoApps provides modern company intranets and team collaboration software, allowing workers to stay connected and productive from anywhere in the world and from any device.
The IETF draft standard for M2M certificates is a security solution specifically designed for the demanding needs of IoT/M2M applications. In his session at @ThingsExpo, Brian Romansky, VP of Strategic Technology at TrustPoint Innovation, explained how M2M certificates can efficiently enable confidentiality, integrity, and authenticity on highly constrained devices.
“delaPlex Software provides software outsourcing services. We have a hybrid model where we have onshore developers and project managers that we can place anywhere in the U.S. or in Europe,” explained Manish Sachdeva, CEO at delaPlex Software, in this SYS-CON.tv interview at @ThingsExpo, held June 7-9, 2016, at the Javits Center in New York City, NY.
The IoT is changing the way enterprises conduct business. In his session at @ThingsExpo, Eric Hoffman, Vice President at EastBanc Technologies, discussed how businesses can gain an edge over competitors by empowering consumers to take control through IoT. He cited examples such as a Washington, D.C.-based sports club that leveraged IoT and the cloud to develop a comprehensive booking system. He also highlighted how IoT can revitalize and restore outdated business models, making them profitable ...
Internet of @ThingsExpo, taking place November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with the 19th International Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world and ThingsExpo Silicon Valley Call for Papers is now open.
We all know the latest numbers: Gartner, Inc. forecasts that 6.4 billion connected things will be in use worldwide in 2016, up 30 percent from last year, and will reach 20.8 billion by 2020. We're rapidly approaching a data production of 40 zettabytes a day – more than we can every physically store, and exabytes and yottabytes are just around the corner. For many that’s a good sign, as data has been proven to equal money – IF it’s ingested, integrated, and analyzed fast enough. Without real-ti...