Program
Support
From:

ABOUT US | LOCAL TV LISTINGS E-MAIL PRINT

REGION: North America

TOPIC: Science & Technology

Online NewsHour

Posted: July 16, 2009

Cyber Attacks on Governments

Forum Introduction

		On the Fourth of July, cyber attacks started targeting computers at the White House, the Pentagon and other major U.S. government agencies. The New York Stock Exchange and the South Korean government were also targets. Who and what are behind the attacks? Two experts take your questions.

How can the average person protect his or her computer or Web site from being infected and used in similar cyber attacks?

What software vulnerabilities were exploited in the attacks? How has the software company responded?

I visited a foreign Web site and was greeted with a message saying I was under a malware attack. What should I have done?

When another nation launches a cyber attack on the United States government, why is it never discussed as an act of war?

How did malicious code get planted on so many computers? Did all the infected computers have to be turned on to be hijacked?

Can computers or servers be programmed to ignore repeated contacts from the same IP address to lower the risk of such attacks?

Do you foresee average Internet users benefitting from Internet2 community research?

Government security aside, is it sensible to expose one's personal financial to the Internet through online banking and brokerage?

Can adaptive software in routers be used to cope with cyber attacks?


	Dave of Albany, N.Y., asks:

	How did malicious code get planted on so many computers? Did all the infected computers have to be turned on to be hijacked as part of a distributed denial-of-service attack?

Randy Sabett responds:

See my earlier responses for some initial thoughts. Also note that most well-written zombie malware is stealth in nature. It hides below the "radar" of the average user and doesn't make itself known (in many cases even after it is activated). Further, malware writers change the malware on a frequent basis to evade the security software that users might have installed. So once planted, it can be very difficult to get rid of from your computer.

An infected computer would, in fact, have to be in an operational mode in order for it to participate in the DDOS attack. Note that I said "in an operation mode" though I didn't necessarily say turned on. For example, a computer could be in low-power or suspended mode and appear to be off but from which the malware could be activated.

Rod Beckstrom responds:

There are many ways that malicious software can find its way on computers. The most common ways are through opening infected e-mail attachments and visiting Web sites that host malware. Another common method and the way this malicious code may have been placed on computers is by users simply visiting a trusted Web site with images, banner ads or embedded scripts that pointed users to other Web sites that placed malware to their computers.

For the infected computers to take part in the denial-of-service attack they would have to be powered on. It is generally best practice to power your machine off while not in use.




		May 29, 2009 Digital Threats Mark New Front in Nation's Security

		May 29, 2009 Obama Looks to Beef Up Security Against Digital Threats

		May 21, 2009 In-depth coverage: Domestic Security




		April 10, 2009 Cyber Crime and Spying Threaten National Security



	Dec. 9, 2009 Obama Offers Job Plan, But Deficit Pressures Rise Dec. 9, 2009 Profiles: How Might Health Care Reform Affect You? Dec. 9, 2009 Coakley, Brown to Face Off for Mass. Senate Seat

Program
Support
From: