position

PM's site suffers Anonymous DDos attack

Reprisal attack for govenment's internet filtering scheme

Tim Lohman (CIO)
— 10 September, 2009 11:14

Anonymous' flyer against the government's Net censorship.

Threats from protest group Anonymous to disable the Web site of the Australian Prime Minister appear to have rung true.

A spokesperson from the Australian Computer Emergency Response team confirmed that the pm.gov.au had come under a distributed denial of service (DDos) attack last night and was disabled as a result, however no intrusion into the site was detected.

A spokesperson from the Australian Federal Police said that as of 11am this morning, the matter had not been referred to the agency for investigation, but was instead being managed by the Attorney General’s office.

A spokeswoman from the Attorney Generals' office also confirmed the Prime Minister’s website was unavailable for a short time shortly after 7pm on 9 September 2009 due to a distributed denial of service (DDoS) designed only to disrupt access to the website, conducted by a group calling itself ‘Anonymous’.

There was no unauthorised access to the website’s infrastructure and visitors to the site received an error message stating that the service was unavailable.

The spokeswoman said relevant Australian Government agencies worked with Internet service providers to ensure that the site was restored.

"The Cyber Security Operations Centre (in the Defence Signals Directorate) is providing IT security advisers (ITSAs) in each of the targetted Australian Government agencies with assistance to monitor and respond to the threat," the spokeswoman said. "Agencies are working with their Internet service providers (ISPs) to respond to any attacks."

Commenting on the relatively quick return to service of the pm.gov.au site, she said that Australian Government agencies identified as potential targets by ‘Anonymous’ were briefed in advance and were provided with suggested mitigation strategies.

"Media reports that other Australian Government websites, including that of the Australian Communications and Media Authority, were affected are inaccurate," she said.

The disabling follows a ‘Declaration of War’ against the Australian government by Anonymous as a reprisal for its role in establishing an Internet filter.

“Australia's internet future is at stake,” the group wrote on the site Operation Didgeridie. (Warning: graphic images also at this site.)

“Kevin Rudd is attempting to execute a plan in which every part of Australia's internet will be censored; even though you may not care about Australia, the world (i.e. USA and others) will eventually follow suit until free information ceases to exist. This operation, therefore, is of highest importance; it is one to save the internet.”

On the site, the group urged members to initiate denial of service attacks on the Web sites of the offices of Department of Broadband, Communications & the Digital Economy, Communications minister Stephen Conroy, and ACMA. It also called for the mass spam calling and facing of the offices of the same.

“1. We need to blast their servers into the dust. We already have about 60 lazors, and as such this should run smoothly. Ausfags are reminded that they will be more useful /efg/'ing and blackfaxing etc.” the group wrote.

“2. All Australians must either /efg/, blackfax or call in constantly... Targets for blackfax are below. Find and call the numbers for the DBCDE and tie them up. Print out fliers and cards and distribute them in public areas.

Hit them hard, boys. Use white-on-black messages such as Information Is Free, the links, NO CENSORSHIP etc.” .

The groups’ “Formal Declaration of War” argues that the Australian government is “guilty of planning to force censorship of the internet and make it mandatory to their online users”.

“Whereas, such acts continue to pose extreme threat to the security and freedom of the internet and its users; and such acts render it both necessary and appropriate that Anonymous exercises its rights and acts in defense of themselves and the supporters of net neutrality,” the site reads.

“Therefore, be it Resolved by the united conglomerate that is Anonymous, that the state of war between Anonymous and the Government of Australia and aforementioned governments which has thus been thrust upon the Anonymous is hereby formally declared.”

Tags: AFP, anonymous, auscert, ddos, government, hacking, internet filtering, prime minister, security

Comments

Post new comment

CSO Corporate Partners

Get exclusive access to CSO, invitation only events, reports & analysis.

Cloud Trust Authority

Reduce complexity and increase trust for public cloud service providers and their customers.

Submit your training courses

Media Releases

More Media Releases »

Latest Jobs

FTChange Management ProfessionalsNSW
FTSenior Network Engineer - Cisco / Nexus / UCS / - Routing / Switching / WirelessNSW
CCAvaya Engineer - ERS 8600 4.1NSW
FTSenior Citrix EngineerNSW
CCIT Project Co-ordinatorNSW
FTTechnical Services Engineer - ShoreTel/MitelVIC
FTiPhone Developer DeveloperNSW
CCSystem Engineer - Exchange - CONTRACTSWA
CCSystem Engineer - Lync and Exchange - CONTRACTSWA
FTTechnical Consultant (VB.NET Developer)NSW
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTiPhone App DeveloperNSW
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTSenior Network Engineer - Cisco / Nexus / UCS / - Routing / Switching / WirelessNSW
FTiPhone App DeveloperNSW
FTASP.NET Developer (Digital)NSW
FTSenior Citrix EngineerNSW

Solution Centers

Security Awareness Tip

Clearswift tips: Guidelines for introducing and policing an effective IT Policy

1. Make it clear that the policy is not about playing ‘Big Brother’ but to ensure the security of employees, company information and data and to safeguard the company’s reputation.
2. Invest time to get buy-in from managers and their teams.
3. Convey the message of flexibility – with regard to social media, it is not about blocking staff usage but working in everyone’s interests to ensure that threats are contained.
4. Introduce a regular company-wide training programme that everyone attends at regular intervals throughout the year, not merely as part of an induction programme.
5. Within the training programme make sure that there are specific examples to demonstrate each rule or regulation, and that there is a clear explanation of the dangers of casual or careless talk on social networking sites. Again use examples, employees need to understand the consequences of raising a throwaway comment that has negative connotations for the business, as much as they need to be aware of dangers of making a more direct but ill-considered attack on a competitor, regulator or even a fellow colleague. They need to be clearly advised on any impact on the company and/or legal action or inquires that may be raised as a result.
6. Alert employees to any changes in policy through regular clear communication.
7. Reinforce the operational policy guidelines regularly, cover everything from blogging to Facebook, LinkedIn and Twitter.
8. Ensure that the rules are fair and that they apply throughout the business.
9. Enforce the rules – if there is a deliberate or malicious contravening, disciplinary action needs to be taken. A policy isn’t worth having if it is seen to be lax and unenforced.
10. Review the policy regularly to ensure you keep up to date with new systems and technology.

Phil Vasic is Regional Director, APAC, at Clearswift, the software security company www.clearswift.com

Security ABC Guides

7 Ways to Protect Your Business Printers

Can a hacker burn down your business by remotely setting one of your printers on fire? Researchers at Columbia University have recently proposed such a scenario, although HP quickly denied that it's possible. However, even if your printers can't be used as remote firestarters, there are many risks involved in networking a printer.

Read More

Market Place