Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

12/23/2014
09:30 AM
Sara Peters
Sara Peters
Quick Hits
Connect Directly
Twitter
RSS
E-Mail
100%
0%

North Korea's Internet Restored

Restoration of service weakens arguments that the US was responsible for the outage.

After an outage of several hours, North Korea's Internet service was restored at 8:46 p.m. ET Monday night, weakening arguments that the United States or any other country had hit the country with a distributed denial-of-service attack in retaliation for the Sony hack.

According to Reuters: "Matthew Prince, CEO of U.S.-based CloudFlare which protects websites from web-based attacks, said the fact that North Korea's Internet was back up 'is pretty good evidence that the outage wasn't caused by a state-sponsored attack, otherwise it'd likely still be down for the count.'"

An Internet outage in the US during the holiday shopping season would have a huge impact here, even if it was for less than 24 hours. However in North Korea, where very few individuals have access to the Internet, an outage would have very little impact on the day-to-day lives of ordinary North Korean citizens.

Instead, the outage could have been due to a common technical difficulty or even intentional downtime. Despite its prowess at cyberattacks, the North Korean Internet infrastructure is not robust. The entire country uses only one Internet service provider, and has only about 1,000 Internet addresses.

Its one connection to the outside world is through China Unicom, a state-owned telecom company in China. The company could have shut down the servers used by North Korea -- as US officials have asked them to do -- or launched a DDoS attack of its own, but the Chinese government's official stance is that there is still no proof that North Korea was responsible for the attacks on Sony.  

Sara Peters is Senior Editor at Dark Reading and formerly the editor-in-chief of Enterprise Efficiency. Prior that she was senior editor for the Computer Security Institute, writing and speaking about virtualization, identity management, cybersecurity law, and a myriad ... View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Technocrati
50%
50%
Technocrati,
User Rank: Ninja
12/27/2014 | 9:19:08 PM
Re: Sony Response ? Business as Usual.

Instead of getting angry to attackers or trying to get even we need to figure it what we do so we can avoid similar types of attacks.

@Dr. T    Couldn't agree more.   What we are actually witnessing is how leaders of industry ( film in this case ) mishandle the "new-age" world in which we live.  I have heard everything from Sony except what they are doing so that this might never happen again. 

I guess they really have no time to answer that question as they are busy working on their latest breech - their Playstation feeds.  

Sony is really becoming a national "eye-sore".    It might be time for those over paid leaders at Sony to actually earn their pay.

 

Don't count on it.

Technocrati
50%
50%
Technocrati,
User Rank: Ninja
12/27/2014 | 9:11:26 PM
Re: Was it really North Korea?

@Dr. T    I hold the same sort of doubt.  Let's be serious N. Korea is not the only place where Sony might be disliked.  Even if it was N,Korea, I am sure they would have been smart enough to "outsource" this particular project. 

And I have a feeling they didn't have to look too hard either.

Dr.T
50%
50%
Dr.T,
User Rank: Ninja
12/27/2014 | 5:10:51 PM
Re: Sony Response ? Business as Usual.
I agree. Instead of getting angry to attackers or trying to get even we need to figure it what we do so we can avoid similar types of attacks.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
12/27/2014 | 5:08:18 PM
Re: N.Korean Outage: An Internet Basics Reminder ?
One path to the outside world through China, it can easily be DDOSed by any cooperation or governments or hacker with a simple set of tools. North Korea does not have an Internet to be targeted by US obviously.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
12/27/2014 | 5:05:14 PM
Was it really North Korea?
 

When it comes to Sonny attack, was it really North Korea? There are independent analysts who argue that sonny attack may not be done by North Korea. FBI did no really release any convincing evidence for many experts.
Technocrati
50%
50%
Technocrati,
User Rank: Ninja
12/24/2014 | 8:33:15 PM
Sony Response ? Business as Usual.

I am also disturbed that the U.S. would seriously consider using any more than the normal recourse for the actions of Sony.  As the President so correctly stated, this is not a reason to declare war.

 

The only war the needs to be going on is within the hallways of Sony's server rooms.

Technocrati
50%
50%
Technocrati,
User Rank: Ninja
12/24/2014 | 8:27:02 PM
N.Korean Outage: An Internet Basics Reminder ?

"...the fact that North Korea's Internet was back up 'is pretty good evidence that the outage wasn't caused by a state-sponsored attack, otherwise it'd likely still be down for the count.'"

 

Not sure I agree with this statement.    I think it was enough in the new cyber warfare world we live in - just to remind the N. Koreans just how the Internet actually works.    Did they get it back from their own efforts or was it restored ?   

Data Leak Week: Billions of Sensitive Files Exposed Online
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/10/2019
Intel Issues Fix for 'Plundervolt' SGX Flaw
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/11/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The Year in Security: 2019
This Tech Digest provides a wrap up and overview of the year's top cybersecurity news stories. It was a year of new twists on old threats, with fears of another WannaCry-type worm and of a possible botnet army of Wi-Fi routers. But 2019 also underscored the risk of firmware and trusted security tools harboring dangerous holes that cybercriminals and nation-state hackers could readily abuse. Read more.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-5252
PUBLISHED: 2019-12-14
There is an improper authentication vulnerability in Huawei smartphones (Y9, Honor 8X, Honor 9 Lite, Honor 9i, Y6 Pro). The applock does not perform a sufficient authentication in a rare condition. Successful exploit could allow the attacker to use the application locked by applock in an instant.
CVE-2019-5235
PUBLISHED: 2019-12-14
Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone to be abnormal.
CVE-2019-5264
PUBLISHED: 2019-12-13
There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9). The software does not properly handle certain information of applications locked by applock in a rare condition...
CVE-2019-5277
PUBLISHED: 2019-12-13
Huawei CloudUSM-EUA V600R006C10;V600R019C00 have an information leak vulnerability. Due to improper configuration, the attacker may cause information leak by successful exploitation.
CVE-2019-5254
PUBLISHED: 2019-12-13
Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have an out-of-bounds read vulnerability. An attacker who logs in to the board m...