Attacks/Breaches
1/29/2013
12:43 PM
50%
50%

Bank DDoS Attackers Claim Victory Regarding Film

One copy of widely viewed film that attacks the founder of Islam has been excised from YouTube. But who removed it, and will all copies be pulled?

Who Is Hacking U.S. Banks? 8 Facts
Who Is Hacking U.S. Banks? 8 Facts
(click image for larger view and for slideshow)
The group behind a series of distributed denial of service (DDoS) attacks that have disrupted U.S. banks' websites for four months is claiming a partial victory.

In a Pastebin post uploaded Tuesday, the Izz ad-Din al-Qassam Cyber Fighters said that the main copy of a film that mocks the founder of Islam had been removed from YouTube, where it had racked up 17.1 million views.

"The al-Qassam cyber fighters lauds this positive measure of YouTube and on this basis suspends his operation and plans to give a time to Google and U.S. government to remove the other copies of film as well," according to the post. "During the suspension of Operation Ababil, no attack to U.S. banks would take place by al-Qassam cyber fighters."

[ Want the latest on online bank attacks? Read Bank Attacker Iran Ties Questioned By Security Pros. ]

The group previously promised to continue its attacks pending the "erasing of that nasty movie," or for at least the next year. The movie in question is "Innocence of Muslims," a film that mocks the founder of Islam. A 13-minute clip of the film was uploaded to YouTube in September, and blamed for triggering riots across the Middle East after clips of the film were featured in local newscasts.

The al-Qassam cyber fighters have blamed both the United States and the "Zionist Regime" both for creating the film and then failing to remove it upon being threatened. In reality, many copies of the film have been uploaded to YouTube, which is owned by Google. As a private company, Google is largely free to legally follow any terms of service that it sets, and had previously declined to remove the video on public safety grounds, at least in the United States. But Google did block the film in countries with large Muslim populations -- including Egypt, India and Libya -- to comply with local laws or avoid offending users. "What's OK in one country can be offensive elsewhere," said a statement released by Google in September. "This video -- which is widely available on the Web -- is clearly within our guidelines and so will stay on YouTube."

Other copies of the film, however, now trigger this warning screen: "The following content has been identified by the YouTube community as being potentially offensive or inappropriate. Viewer discretion is advised." Users are given the option to continue to the film, or cancel their request.

But the removal of the main copy of Innocents of the Muslims -- the related link now resolves to a page that says, "This video has been removed by the user" -- begs the question: Who requested its removal? Google, which owns YouTube, declined to verify if the video had been removed by the account holder, who had been listed as "Sam Becile."

Previous
1 of 2
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
PJS880
50%
50%
PJS880,
User Rank: Ninja
2/3/2013 | 6:01:51 PM
re: Bank DDoS Attackers Claim Victory Regarding Film
What sort of false victory is the Izz ad-Din al-Qassam Cyber Fighters, which by the way needs to do something about about that mouthful, I donGÇÖt see any victory here? Are they referring to GoogleGÇÖs block in high Muslim populated areas, as to not cause riots amongst those nations? I have not watched the film, but if it was on the web once, it still is there somewhere I am sure. Last time I checked we donGÇÖt follow terrorist advice on what is appropriate and what is not.

Paul Sprague
InformationWeek Contributor
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading December Tech Digest
Experts weigh in on the pros and cons of end-user security training.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-5395
Published: 2014-11-21
Multiple cross-site request forgery (CSRF) vulnerabilities in Huawei HiLink E3276 and E3236 TCPU before V200R002B470D13SP00C00 and WebUI before V100R007B100D03SP01C03, E5180s-22 before 21.270.21.00.00, and E586Bs-2 before 21.322.10.00.889 allow remote attackers to hijack the authentication of users ...

CVE-2014-7137
Published: 2014-11-21
Multiple SQL injection vulnerabilities in Dolibarr ERP/CRM before 3.6.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) contactid parameter in an addcontact action, (2) ligne parameter in a swapstatut action, or (3) project_ref parameter to projet/tasks/contact.php; (4...

CVE-2014-7871
Published: 2014-11-21
SQL injection vulnerability in Open-Xchange (OX) AppSuite before 7.4.2-rev36 and 7.6.x before 7.6.0-rev23 allows remote authenticated users to execute arbitrary SQL commands via a crafted jslob API call.

CVE-2014-8090
Published: 2014-11-21
The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nes...

CVE-2014-8469
Published: 2014-11-21
Cross-site scripting (XSS) vulnerability in Guests/Boots in AdminCP in Moxi9 PHPFox before 4 Beta allows remote attackers to inject arbitrary web script or HTML via the User-Agent header.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Now that the holiday season is about to begin both online and in stores, will this be yet another season of nonstop gifting to cybercriminals?