Denial of Service Attacks Planned For Christmas - ISS By Steve Gold, Newsbytes ATLANTA, GEORGIA, U.S.A., 17 Nov 2000, 12:35 PM CST X-Force, the research and development (R&D) team of Internet Security Systems [NASDAQ:ISSX] (ISS), has warned that hackers are planning an online attack-fest this coming Christmas. The attacks, if they occur, will take the form of distributed denial of service (DDOS) invasions, a hacker flooding technique used earlier this year - and since - to effectively flood out a major Web site and prevent normal users from gaining access, ISS said. The technique was used in February of this year when Amazon, Buy.com, CNN Interactive, eBay and a number of other high-profile sites were downed by hackers, apparently using DDOS applications known as "Trinoo," "Stacheldraht" and "TFN2K." ISS was one of the first IT security companies to issue an advisory over DDOS attacks back in early February, warning Web site managers to be aware that the offending applications could bring down an enterprise network or e-commerce site by flooding it with large amounts of traffic. In addition, the firm advised that, while there is little that sites can do to prevent such attacks, companies can take steps to ease the pain, including assembling an incident response team, tapping resources from the organization's Internet service provider (ISP) and the computer emergency response team (CERT) advisory team. ISS has also advised organizations to establish links with local law enforcement authorities, so that, if an attack occurs, the appropriate people can be notified quickly. A spokesperson for ISS told Newsbytes that the firm has detected a definite pattern amongst DDOS attacks and, coupled with its knowledge of the hacker community, is warning major sites to be on alert for attacks this Christmas. The need for preparation amongst major Web site operators is great, the company says; only 10 percent of Web sites with e-commerce operations have preparations in place. In parallel with its warning of impending DDOS attacks this Christmas, ISS has teamed up with NOCpulse, a newly launched provider of outsourced Internet infrastructure management services, to deliver managed security services to customers. As an emerging services provider, NOCpulse plans to add ISS' managed security service offerings and operational expertise to major customers, As a result, ISS says that NOCpulse customers will have access to key managed security services offerings as well as top notch security expertise. Mark Hangen, ISS' general manager of managed security services, said that NOCpulse represents a new breed of managed service provider (MSP) that can give companies the information they need to proactively manage their Internet infrastructure. Paul Anatinelli, NOCpulse's founder and president, meanwhile, said that the NOCpulse command center is the first Internet operational support service (IOSS) designed to give customers full control over their Internet infrastructure, ISS' Web site is at http://www.iss.net . NOCpulse's Web site is at http://www.nocpulse.com . Reported by Newsbytes.com, http://www.newsbytes.com . 12:35 CST (20001117/Press Contact: David Bridson, ISS +44-20-7626-7070; Michell Norwood, ISS 678-443-6000 /WIRES TOP, ONLINE, LEGAL, PC/DOTCOMATTACK/PHOTO) --- Support our Sponsor------------------------------------- Make eTour.com your Web start page, and you’ll see a different site matched to your interests every time you log onto the Web! Sign up for your free membership now. http://click.topica.com/aaaaQnb1dhr0b1uN1Ic/eTour ------------------------------------------------------------ -- archive: http://theMezz.com/cybercrime/archive unsubscribe: [EMAIL PROTECTED] subscribe: [EMAIL PROTECTED] url: http://theMezz.com/alerts ___________________________________________________________ T O P I C A http://www.topica.com/t/17 Newsletters, Tips and Discussions on Your Favorite Topics