 Dutchman 'who almost broke the internet' to go on trial The Hague (AFP) Oct 31, 2016 - A Dutchman accused of launching an unprecedented cyberattack that reportedly "almost broke the internet" is to go on trial Tuesday on charges of masterminding the 2013 incident that slowed down web traffic world-wide. But Sven Olaf Kamphuis, 39, denounced the case against him, and told the AD daily newspaper in a Skype interview that he would not appear at the court in the southern Dutch city of Dordrecht. He will be represented by his lawyers. He is accused of being behind a massive so-called distributed denial of service (DDoS) attack in March 2013 on Geneva and London-based volunteer group Spamhaus, court spokeswoman Lily Derksen told AFP. Spamhaus publishes spam blacklists used by networks to filter out unwanted email. And it blamed Dutch web-hosting service Cyberbunker for the attack, one of the largest in the history of the internet at the time. At the time, Kamphuis was said to be a spokesman for Cyberbunker. "The cyberattack and its subsequent domino effect was so big that the world came within a hair's breadth of being without the internet for a week," the popular daily tabloid Algemeen Dagblad said. Arrested in Spain, Kamphuis was eventually extradited to The Netherlands, where he was remanded for two months in May 2013. Kamphuis -- who refers to himself as the "minister of telecommunications of the Cyberbunker republic" -- told the AD newspaper that the charges were "absurd." He added he is counter-suing the Dutch state for 102 million euros ($111 million) in damages. Kamphuis' lawyer Marcel van Gessel told the paper his client was "out of the country" and it is believed he was either living in Barcelona or in Berlin. So-called distributed DDoS attacks essentially bombard sites with traffic from various sources in order to disrupt or seize servers. The attack was described as the most powerful ever seen and slowed web traffic. The attacks began, according to Spamhaus, after it placed Cyberbunker, a web hosting firm that "offers anonymous hosting of anything except child porn and anything related to terrorism", on its blacklist. Cyberbunker said it had been unfairly labelled as a haven for cybercrime and spam. Experts said the attacks flooded Spamhaus servers with 300 billion bits per second (300 gigabytes) of data. Prior DDoS attacks had been measured at 50 gigabytes per second.
|
The US government and private sector should strike back against hackers to counter cyberattacks aimed at stealing data and disrupting important computer networks, a policy report said Monday.
A panel of experts assembled by the George Washington University Center for Cyber and Homeland Security said policies should be eased to allow "active defense" measures that deter hackers -- differentiating that from the idea of "hacking back" to disable systems used by attackers.
The panel envisioned measures such as taking down "botnets" that disrupt cyberspace, freeing data from "ransomware" hackers and "rescue missions" to recover stolen data.
"The time for action on the issue of active defense is long overdue, and the private sector will continue to be exposed to theft, exfiltration of data, and other attacks in the absence of a robust deterrent," the report said.
"When private sector companies have a capability to engage in active defense measures, they are building such a deterrent, which will reduce risks to these companies, protect the privacy and integrity of their data, and decrease the risks of economic and societal harm from large-scale cyberattacks."
The report follows a wave of high-profile attacks against US companies and government databases, and after the Obama administration accused Russia of using cyberattacks to attempt to disrupt the November presidential election.
US policymakers are moving too slowly in dealing with a "dynamic" threat from cyberspace, former national intelligence director and task force co-chair Dennis Blair said.
"We are shooting so far behind the rabbit that we will only hit it if the rabbit makes another lap and comes back to where it was," he told a conference presenting the report.
However, the panel did not recommend hacking back "because we don't want the cure to be worse than the disease," project co-director Frank Cilluffo said.
But "there are certain steps companies can take" to repel and deter cyberattacks, he added, advocating the establishment of a legal framework for them.
Although the scope of the problem is understood, the solutions remain controversial.
Some of the recommendations go too far by inviting companies to gain unauthorized access to outside computer networks, task force co-chair Nuala O'Connor, president of the Center for Democracy & Technology, said in a dissent.
"I believe these types of measures should remain unlawful," she wrote, adding that it remains difficult to be sure of cyberattacks' sources.
"The risks of collateral damage to innocent internet users, to data security, and to national security that can result from overly aggressive defensive efforts needs to be better accounted for."
| . |
|
|
Tweet |
del.icio.us
Digg
Reddit
Google
