Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Sony DDOS - SANS Internet Storm Center SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

The Anonymous group is currently utilising LOIC to DDOS Sony infrastructure.  It seems that it is partially successful with a few Sony sites being unavailable at the moment. 

Mark H


392 Posts
ISC Handler
Apr 5th 2011
"Anonymous" is claiming responsibility for this DDOS as a result of the GeoHot issue.
That's what happens when Sony decides to go to war with army of geeky 17year-olds... Go PS3!
LOIC attacks can be easily defeated by good checkpoint firewall policies. I think the issue for major corporations like Sony is that the engineer who knows how to block it has to go through a lot of red tape before being allowed to make the necessary policy changes. By the time management goes through all the conference calls and meetings to decide what to do, it's too late. This is just my thought, though.
I am with darkfiber. LOIC creates massive amounts of requests by just one IP (no proxy functionality, no spoofing since TCP). Every firewall can do this. E.g. Juniper (Screen functionality). Even a proper Apache configuration could do this!

Sign Up for Free or Log In to start participating in the conversation!