Letv video mass DDoS attacks: interest chains behind surprising-music video, DDOS-IT Info
Music video and being bullied?
On July 20, the official Micro-Blog music video said, the company's video site took place on the evening of July 19 was the largest of a DDoS attack , peak flow rate up to 200G. TV plus cloud computing then emergency starts of multiple protective measures for comprehensive repairs, and has now returned to normal access. But because of the offensive remains strong, cannot be ruled out, again by local cannot access the possibility of attack.
Said in a statement, the company has launched the highest level of emergency preparedness, and has reported the case to police.
Public information, DDoS (Distributed Denial of Service) is the abbreviation of distributed denial of service attack, which is sent to the specified destination server using multiple computers attack packets, causes the target server's system resources or bandwidth runs out, which in normal service request denial of service attacks.
Industry was a figure of speech, "such as the original bandwidth of 100G server, can also hold up to 10,000 users visit, but if there are 20000 people access, then the peak 200G, because there are no bandwidth, it is impossible to post a page to all users from the server computer. If this is the case, most users will not be able to get information sent to the server, because most of the bandwidth is taken by malicious attacker's computer.
These people also said that because of the computer too much involved, different computers have different IP to access servers, plus the attackers rarely use their own computers to attack a server, so check the source to be difficult.
A Taiwan surging public company executives told news network security devices, "DDoS is a malicious attack, like someone with a pseudonym, but they did not pay to housing, leaving hotels with limited number of rooms are occupied, of course there is no way to service the real guests. Preventing DDoS attacks more difficult, different mechanisms must be established. Back to examples of identity of people requiring anti-check to confirm the booking, to authenticate the account, meet as normal transactions, check if foreign visitors within the threshold could not be released, but the ' pigeon ' will be included in the ' blacklist '. “
In today's statement, the music videos that also mentioned that "We urge fair competition, the opponent will not tolerate acts of malicious competition, convinced that a malicious attacker will be severely punished by the law. ”
In this regard, the industry believes that music has always been subversive image, will touch upon the interests of other companies, especially for more than a month ago as "free hardware" also penetrates the hardware manufacturer's bottom line and touches the traditional hardware vendors the Foundation on which.
It is understood that This is a music video this year, announced the launch of "free hardware" after the biggest hacker attack.
Recently, the world's leading CDN (content delivery network) service--Akamai has released the 2016 1 Internet security report, which referred to, as "grey" provides DDoS offer lower, based on a surge in the number of network attack tools.
The insiders said, malicious attacks like this way, not only in the video industry, is more common in other industries as well, even the banking system can be affected by such malicious attacks.
It was reported that the morning of January 29, 2016, coincided with the CCASS, United Kingdom HSBC Bank (hereinafter referred to as HSBC) Hong Kong and the Shanghai Branch of the Internet bank system by the DDoS attacks, which had serious implications for the service system as a whole. Then, HSBC issued a statement on Twitter, social media operations team, said their server indeed been DDoS attacks, but security has successfully restored the system.
Recently, even all the way hot hand also had a similar thing in the Pokemon GO, the game was frequently out of inaccessible phenomena.
Although the game development and operator of Niantic to the outside world, said, because too many of our players at the same time into the login server, server overload and cause downtime. Hacker groups such as PoodleCorp and OurMine publish tweets claimed that the Pokemon GO server's downtime was caused by DDoS attacks since they launched a massive.
乐视视频遭遇大规模DDoS攻击:背后利益链条惊人 - 乐视,DDOS - IT资讯
乐视又被欺负了?
7月20日,乐视视频发布官方微博称,该公司的视频网站于7月19日晚间发生了有史以来最大的一次DDoS攻击,峰值流量高达200G。乐视云计算随即紧急启动了多重防护手段进行全面修复,目前已恢复正常访问。但由于攻势依然猛烈,现仍不能排除再次被攻击导致局部不能正常访问的可能。
声明中还称,公司已启动最高级应急预案,并已向公安机关报案。
公开资料显示,DDoS(Distributed Denial of Service)是分布式拒绝服务攻击的英文缩写,它是一种利用多台计算机向指定目标服务器发送攻击数据包,导致目标服务器系统资源或带宽耗尽,从而对正常业务请求出现拒绝服务的攻击行为。
业内人士打了个比方,“比如原先带宽为100G的服务器,最多可以同时容下10000个用户进行访问,但如果有20000人同时进行访问,那么峰值就会达到200G,因为没有这么多带宽,这就不可能从服务器把所有的网页发到用户的电脑上。如果出现这种情况,大部分用户就会无法获取服务器发过来的信息,因为大部分带宽都会被恶意攻击者的电脑给占了。
上述人士还表示,因为涉及的电脑太多了,不同的电脑就有不同的IP去访问服务器,再加上攻击者基本不会用自己的电脑去攻击服务器,所以查起源头来就会比较困难。
一家台湾网络安全设备上市公司的高管告诉澎湃新闻,“DDoS是一种恶意攻击,就像是有人用假名定了房,但却不付钱也不来住房,这让房间数量有限的酒店都定得满满的,当然就没有办法再去服务真正的客人。一般防止DDoS的攻击比较难,必须建立不同的机制。回到刚才的例子,需要反查确认订房者的身份,对银行账号进行认证,符合的视为正常交易,查不到的国外访客如果在门槛内就放行,但连续‘放鸽子’就会被列入‘黑名单’。“
在今天的声明中,乐视视频还提到,“我们呼吁公平竞争,对对手恶意竞争行为绝不姑息,坚信恶意攻击者必将受到法律严惩。”
对此,业内认为,一向以颠覆者形象示人的乐视,可能会触及其他公司的利益,尤其是一个多月前乐视发起的“硬件免费”,更是击穿了硬件厂商的价格底线,触动了传统硬件厂商赖以生存的根基。
据了解,此次是乐视在今年宣布推出“硬件免费”后,遭遇的最大一次黑客猛烈攻击。
近期,全球知名CDN(即内容分发网络)服务商——Akamai发布了《2016年1季度互联网安全报告》,其中就提到,随着“灰产”提供的DDoS报价越来越低,基于这一工具的网络攻击者数量也在激增。
上述业内人士表示,像这种恶意攻击的方式,不仅是在视频行业,在其他的行业也较为常见,即便是银行系统也会受到这种恶意攻击。
据报道,2016年1月29日上午,正逢系统结算日,英国汇丰银行(下称HSBC)的香港和上海分行的网上银行系统遭到了DDoS攻击,这给整个服务系统运行造成了严重的影响。随即,HSBC社交媒体运营团队在Twitter上发表声明,称其服务器确实受到了DDoS的攻击,但安全维护小组已经成功修复了系统。
近期,就连一路走热的手游《Pokemon GO》也遇到了类似的事情,此款游戏被频频曝出无法登陆的现象。
尽管该游戏的开发和运营商Niantic向外界表示,是因为过多的游戏玩家同时涌入登陆服务器,造成服务器超负荷从而引发了宕机。但黑客组织如OurMine、PoodleCorp等发布推文声称,《Pokemon GO》服务器的宕机是因为他们发动了大规模的DDoS攻击造成的。