Overclock.net › Forums › Industry News › Technology and Science News › [ZD] How to crash the Internet
New Posts  All Forums:Forum Nav:

[ZD] How to crash the Internet

post #1 of 50
Thread Starter 
Quote:
In a report from New Scientist, Max Schuchard a computer science graduate student and his buddies claim they’ve found a way to launch DDoS attacks on Border Gateway Protocol (BGP) network routers that could crash the Internet.

BGP is an essential Internet protocol. It’s the routing protocol used to exchange routing information across the Internet. Without it ISPs couldn’t connect to each other and you couldn’t connect Web sites and services outside of your local intranet. Because network connections and routers are constantly changing, BGP routers and switches are constantly working to keep current route maps of the Internet. In short, you don’t want to mess it.

In an Association for Computing Machinery (ACM) paper, Losing control of the Internet: using the data plane to attack the control plane, Schuchard describes the theoretical assault as “the Coordinated Cross Plane Session Termination, or CXPST, attack, a distributed denial of service attack that attacks the control plane of the Internet. CXPST extends previous work that demonstrates a vulnerability in routers that allows an adversary to disconnect a pair of routers using only data plane traffic. By carefully choosing BGP sessions to terminate, CXPST generates a surge of BGP updates that are seen by nearly all core routers on the Internet. This surge of updates surpasses the computational capacity of affected routers, crippling their ability to make routing decisions
Source

I found this randomly and thought it was pretty interesting. Please read the article before saying "this won't work" .
SUPERPWN
(12 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 4670K Asus z87-Pro MSI GTX 1080 Aero 32GB DDR3 Gskill Ripjaws 
Hard DriveOSMonitorMonitor
4TB Seagate Windows 8 x64 Overlord x270 OC HP ZR27 
MonitorKeyboardPowerAudio
Asus PG279Q G-Tune Topre Realforce 800w Yulong D100 DAC with Denon D7000 headphones 
  hide details  
Reply
SUPERPWN
(12 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 4670K Asus z87-Pro MSI GTX 1080 Aero 32GB DDR3 Gskill Ripjaws 
Hard DriveOSMonitorMonitor
4TB Seagate Windows 8 x64 Overlord x270 OC HP ZR27 
MonitorKeyboardPowerAudio
Asus PG279Q G-Tune Topre Realforce 800w Yulong D100 DAC with Denon D7000 headphones 
  hide details  
Reply
post #2 of 50
Sounds possible actually, but what happens when the routers aren't refreshing the info? The bot-nets can't attack so all it takes is a change of the routers address and getting all the ISP's back online. Back to square one again.
post #3 of 50
Quote:
Originally Posted by jackeyjoe View Post
Sounds possible actually, but what happens when the routers aren't refreshing the info? The bot-nets can't attack so all it takes is a change of the routers address and getting all the ISP's back online. Back to square one again.
But how long would it take for them to figure out that this the cause of the problem and to sort it out
But even a small amount of time down would have a huge impact
Nothing V2
(17 items)
 
  
CPUMotherboardGraphicsRAM
Intel i5 2500k @ 4.7GHz Asrock z77 Extreme4 Club3D R9 290 Corsair Vengance 8GB 1600 
Hard DriveHard DriveHard DriveOptical Drive
Corsair 120GB SSD Samsung 1.5TB Samsung 1TB Samsung DVD-RAM 
CoolingOSMonitorMonitor
Thermaltake Frio Window 7 Ultimate Samsung BX2450 LG W2343S 
KeyboardPowerCaseMouse Pad
Razor Blackwidow Corsair TX750W Coolermaster CM690 Gigabyte Ghost 
Audio
Asus Xonar DX 
  hide details  
Reply
Nothing V2
(17 items)
 
  
CPUMotherboardGraphicsRAM
Intel i5 2500k @ 4.7GHz Asrock z77 Extreme4 Club3D R9 290 Corsair Vengance 8GB 1600 
Hard DriveHard DriveHard DriveOptical Drive
Corsair 120GB SSD Samsung 1.5TB Samsung 1TB Samsung DVD-RAM 
CoolingOSMonitorMonitor
Thermaltake Frio Window 7 Ultimate Samsung BX2450 LG W2343S 
KeyboardPowerCaseMouse Pad
Razor Blackwidow Corsair TX750W Coolermaster CM690 Gigabyte Ghost 
Audio
Asus Xonar DX 
  hide details  
Reply
post #4 of 50
Everyone on OCN always said it was a computer dividing by 0 that would kill the internet .............
The AMD machine
(14 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II X6 1055t @ 3.8 GHZ Asus M4A79XTD EVO XFX Radeon 6850 1GB OCed G.Skill Ripsaw 16 GB (2x8GB) 1512 mhz @ 7-8-7-24 
Hard DriveOptical DriveCoolingOS
|WD Caviar Black 640GB|Seagate Barracudas 2TB X2| Lite-On Black 24X DVD Burner Cooler Master Hyper 212+ Windows 7 Professional 64-bit 
MonitorKeyboardPowerCase
BenQ 24" das Keyboard Model S Brown  OCZ Fatal1ty 550W PSU Coolermaster Storm Scout 
MouseMouse Pad
Razor DeathAdder Narlyfish 
  hide details  
Reply
The AMD machine
(14 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II X6 1055t @ 3.8 GHZ Asus M4A79XTD EVO XFX Radeon 6850 1GB OCed G.Skill Ripsaw 16 GB (2x8GB) 1512 mhz @ 7-8-7-24 
Hard DriveOptical DriveCoolingOS
|WD Caviar Black 640GB|Seagate Barracudas 2TB X2| Lite-On Black 24X DVD Burner Cooler Master Hyper 212+ Windows 7 Professional 64-bit 
MonitorKeyboardPowerCase
BenQ 24" das Keyboard Model S Brown  OCZ Fatal1ty 550W PSU Coolermaster Storm Scout 
MouseMouse Pad
Razor DeathAdder Narlyfish 
  hide details  
Reply
post #5 of 50
Big Daddy
(14 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7-4970k ASUS Z97-A 2 x EVGA GTX 980Ti Classified 32GB DDR3 1866MHz Corsair Dominators 
Hard DriveCoolingOSMonitor
2 x Samsung 1TB EVO SSD Corsair H80i Windows 10 x64 ASUS ROG Swift M 
KeyboardPowerCaseMouse
Vortex Pok3r Corsair 1200W Jonsbo UMX3 Mionix 
  hide details  
Reply
Big Daddy
(14 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7-4970k ASUS Z97-A 2 x EVGA GTX 980Ti Classified 32GB DDR3 1866MHz Corsair Dominators 
Hard DriveCoolingOSMonitor
2 x Samsung 1TB EVO SSD Corsair H80i Windows 10 x64 ASUS ROG Swift M 
KeyboardPowerCaseMouse
Vortex Pok3r Corsair 1200W Jonsbo UMX3 Mionix 
  hide details  
Reply
post #6 of 50
What's with all of this cyber terrorism stuff lately?
post #7 of 50
Quote:
Originally Posted by jackeyjoe View Post
Sounds possible actually, but what happens when the routers aren't refreshing the info? The bot-nets can't attack so all it takes is a change of the routers address and getting all the ISP's back online. Back to square one again.
Exactly what I was thinking... How can you DDoS without Internet?

Basically it would be dumb and I'm sure the traffic would be rerouted anyway through a backup source.
post #8 of 50
Thread Starter 
Quote:
Originally Posted by Madman340 View Post
Exactly what I was thinking... How can you DDoS without Internet?

Basically it would be dumb and I'm sure the traffic would be rerouted anyway through a backup source.
The plan was they would crash the critical device, then move to the next one while it was rebooting. With a 250,000 computer botnet, they would be able to get them all crashed, and the ineternet wouldn't work.
SUPERPWN
(12 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 4670K Asus z87-Pro MSI GTX 1080 Aero 32GB DDR3 Gskill Ripjaws 
Hard DriveOSMonitorMonitor
4TB Seagate Windows 8 x64 Overlord x270 OC HP ZR27 
MonitorKeyboardPowerAudio
Asus PG279Q G-Tune Topre Realforce 800w Yulong D100 DAC with Denon D7000 headphones 
  hide details  
Reply
SUPERPWN
(12 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 4670K Asus z87-Pro MSI GTX 1080 Aero 32GB DDR3 Gskill Ripjaws 
Hard DriveOSMonitorMonitor
4TB Seagate Windows 8 x64 Overlord x270 OC HP ZR27 
MonitorKeyboardPowerAudio
Asus PG279Q G-Tune Topre Realforce 800w Yulong D100 DAC with Denon D7000 headphones 
  hide details  
Reply
post #9 of 50
It is very possible to "take the internet down" for a few hours, maybe even days but it won't last. ISPs will blacklist the infected computers allowing everyone else to resume connection; it still would take out the infected computers, but they already had control of them in the first place.
Jet
(13 items)
 
  
CPUMotherboardGraphicsRAM
940 3GHz Quad Core Black Edition ASRock 780GXE EVGA GTX 460 768MB 4GB OCZ Reaper DDR2 1066MHz 
Hard DriveOptical DriveOSMonitor
500GB 7200RPM SAMSUNG 22X Windows 7 64-Bit Dell ST2410 24" 1920x1080 
PowerCaseMouse
OCZ StealthXStream 700W Aplus Monolith Mircosoft SideWinder 
  hide details  
Reply
Jet
(13 items)
 
  
CPUMotherboardGraphicsRAM
940 3GHz Quad Core Black Edition ASRock 780GXE EVGA GTX 460 768MB 4GB OCZ Reaper DDR2 1066MHz 
Hard DriveOptical DriveOSMonitor
500GB 7200RPM SAMSUNG 22X Windows 7 64-Bit Dell ST2410 24" 1920x1080 
PowerCaseMouse
OCZ StealthXStream 700W Aplus Monolith Mircosoft SideWinder 
  hide details  
Reply
post #10 of 50
Quote:
Originally Posted by allenottawa View Post
It is very possible to "take the internet down" for a few hours, maybe even days but it won't last. ISPs will blacklist the infected computers allowing everyone else to resume connection; it still would take out the infected computers, but they already had control of them in the first place.
Exactly how do you blacklist a computer these days? I can change my MAC, change my hardware ID, basically make myself look like a brand new computer. When you can do this at will it then becomes a very serious threat. You don't realize what will happen once these boxes reboot either, they will be flooded with data AGAIN. This could possibly cause fake blacklists from firewalls, causing an even larger problem. Essentially this problem makes itself worse until somebody fixes it, causing huge amounts of chaos.

The number one problem I see with this is accounting. It instantly makes me wonder if a country would do this so that they could remove or hide debt/expenses.

[edit] Not to mention HFC MAC masking/duping. Pretty much piggy back accounts (various methods, not just HFC MAC which is only cable) so that you make yourself look like somebody else.
Current Rig
(14 items)
 
  
CPUMotherboardGraphicsRAM
FX-8350 4.6GHz@1.44v GA-990FXA-UD3 R4.0 HD 7950 (1100/1450) 8G Muskin DDR3 1866@8CLS 
Hard DriveOptical DriveOSMonitor
1TB WD LiteOn DVD-RW DL Linux/Windows 19" Phillips TV 1080p 
PowerCaseMouseMouse Pad
OCZ 600W Generic Junk Logitech MX400 Generic Junk 
Audio
SBL 5.1 
  hide details  
Reply
Current Rig
(14 items)
 
  
CPUMotherboardGraphicsRAM
FX-8350 4.6GHz@1.44v GA-990FXA-UD3 R4.0 HD 7950 (1100/1450) 8G Muskin DDR3 1866@8CLS 
Hard DriveOptical DriveOSMonitor
1TB WD LiteOn DVD-RW DL Linux/Windows 19" Phillips TV 1080p 
PowerCaseMouseMouse Pad
OCZ 600W Generic Junk Logitech MX400 Generic Junk 
Audio
SBL 5.1 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Technology and Science News
Overclock.net › Forums › Industry News › Technology and Science News › [ZD] How to crash the Internet