A hacker group calling itself the Russian branch of Anonymous has claimed responsibility for shutting down the websites of the Kremlin and the Russian President.
The sites kremlin.ru and президент.рф have been unavailable for almost an hour on Wednesday.
Anonymous tweeted “Kremlin.ru – TANGO DOWN” on their Twitter account, co-opting the military-derived code word to report their successful attack.
They also provided screenshots, demonstrating that the site was unavailable in different countries around the world.
Anonymous supporters queuing up to participate in denial-of-service attacks are being tricked into installing ZeuS botnet clients.
Hacktivists grabbed what they thought was the Slowloris tool, which is designed to flood websites with open connections and ultimately knock them offline. However, the download included a strain of ZeuS, which promptly installed itself on their Microsoft Windows machines.
The Trojan will carry out the distributed attacks, but that's not all it does - it'll also steal users' online banking credentials, webmail logins, and cookies.
As the websites in Georgia and Russia suffer from distributed denial of service attacks in the wake of conflict in South Ossetia, SophosLabs demonstrates what impact that has on people trying to visit the sites.
Part of the Transmission Control Protocol (TCP) allows a receiver to advertise a zero byte window,instructing the sender to maintain the connection but not send additional TCP payload data.The sender should then probe the receiver to check if the receiver is ready to accept data.Narrow interpretation of this part of the specification can create a denial-of-service vulnerability.
By advertising a zero receive window and acknowledging probes,