The US under cyber attack

[Ilikeitblackplease]

http://map.norsecorp.com/
http://www.wired.com/2015/07/cyberarmageddon-upon-us-3-glitches-today-saying-yes/


http://www.newsradioklbj.com/news/l...ca-under-cyber-attack-new-york-stock-exchange
http://www.forbes.com/sites/maggiemcgrath/2015/07/08/new-york-stock-exchange-halts-trading/

http://www.dailymail.co.uk/news/article-3153716/New-York-Stock-Exchange-halts-trading.html

US computer systems shutting down.

 

[OhEsEcks]

I've seen it a lot more active against the US... wonder what's sparked it this time though.

 

[Deleted member 651465]

My guess is that they turned a piece of equipment off and on again, and got things back to normal,' he said.

'Okay, so maybe it was a bit more complicated than that - but in my experience that's the basic solution for most IT problems.

 

[OhEsEcks]

Ok it's picking up steam now. Weird locations they're targeting. What's out in the middle of the US? I'd have expected Stock Exchange and Washington, but it looks like Iowa, Nebraska and Missouri are the main target here.

 

[Hades]

That Norse site is mesmerising

 

[Ilikeitblackplease]

That Norse site is mesmerising

its like missile command.

 

[Destination]

That Norse site is mesmerising

Yes

 

[OhEsEcks]

That Norse Corp thing is showing what it always does. What's currently shown as going on there isn't out of the ordinary.

Any other attacks I've sat and watched has been a lot more dispersed. I guess the fact it's far more centralised backs up them claiming that it's a software update gone wrong... like every time RBS decides to update Ulster Banks software it brings the service down and you can't access your own money for hours, days or at least once before, a few weeks.

Or maybe someone found something in Hacking Teams archive dump...

 

[hyperseven]

24 day 10 ?

 

[MissChief]

I wonder what's in St Louis in the US? most of the attacks from Chinas hit there.

 

[Hades]

I wonder what's in St Louis in the US? most of the attacks from Chinas hit there.

Possibly this?

https://www.cybercon.com/st-louis-data-center

Cybercon’s 20,000 square feet St Louis Data Center is a top tier facility in terms of network connectivity and infrastructure design and is SSAE 16 (formerly SAS70) SOC 2 certified. Our primary St. Louis Data Center is located in an 18-floor, all steel frame, secure building owned by New York Stock Exchange listed public company Digital Realty Trust. It is one of the largest telecommunications facilities in the central region of the United States.

I don't know where the primary datacentre for the Stock Exchange is but if they own that one then it could be there. If it got hit then they may have failed over to a DR location which accounts for several hours outage (although I'd expect something as critical as the stock exchange to be running active/active across multiple sites which blows that theory out of the water).


EDIT: Nope, not this one, as pointed out by Fox.

 

[Ilikeitblackplease]

Possibly this?

https://www.cybercon.com/st-louis-data-center



I don't know where the primary datacentre for the Stock Exchange is but if they own that one then it could be there. If it got hit then they may have failed over to a DR location which accounts for several hours outage (although I'd expect something as critical as the stock exchange to be running active/active across multiple sites which blows that theory out of the water).

Cybercon they got the name right lol

 

[Ilikeitblackplease]

-- Exchange says problem is an internal glitch and not result of cyberattack
-- Believed software update carried out last night could be cause
-- White House claims there are 'no signs of malicious activity'

White House claims there are signs of weapons of mass destruction. remember that?

 

[[TW]Fox]

Possibly this?

https://www.cybercon.com/st-louis-data-center



I don't know where the primary datacentre for the Stock Exchange is but if they own that one then it could be there. If it got hit then they may have failed over to a DR location which accounts for several hours outage (although I'd expect something as critical as the stock exchange to be running active/active across multiple sites which blows that theory out of the water).

Erm?

Your quote say it's owned by an NYSE LISTED company, not the NYSE itself?

It's hardly surprising that the firm that owns a huge datacentre might be listed on the NYSE

All it's saying is that the owner - Digital Realty Trust - is listed on the stock exchange.

In the same way that, I dunno, Tesco are listed on the London Stock Exchange.

 

[Hades]

Erm?

Your quote say it's owned by an NYSE LISTED company, not the NYSE itself?

It's hardly surprising that the firm that owns a huge datacentre might be listed on the NYSE

All it's saying is that the owner - Digital Realty Trust - is listed on the stock exchange.

In the same way that, I dunno, Tesco are listed on the London Stock Exchange.

Haha good point. I googled what was there and missed that part. I stand corrected

 

[ecksmen]

I'd suggest its difficult to target a specific datacentre, but more so a carrier and their tenants. Most datacentres will have any numerous carriers and wide networks pumped into them to make targeting a single DC somewhat problematic.

 

[anything I don't mind]

China stock market crashed, then ny stock market closed their markets to prevent a crash, claiming it was a technical glitch. Not looking good for the west. All the cheap goods. From your spatula to your chair to your socks are all made in china. When the Chinese economy crashes we may not be able to get out cheap goods as we have become used to.

 

[Hotwired]

http://map.norsecorp.com/

So I'm looking at the scrolling names and I see British Telecom go past as an "attacker".

Mmhmm?

 

[G-MAN2004]

Imagine having that Norse site open at an airport.

 

[Rroff]

I wonder what's in St Louis in the US? most of the attacks from Chinas hit there.

Likely whatever the target is it isn't there - just the last node that is geolocated happens to be in St Louis (probably a gateway, etc. that a lot traffic is routed through).