Nguyen Minh Duc, senior security director at Bach Khoa Internetwork Security (Bkis), says that the source of recent cyberattack against US and South Korean government websites was not North Korea — as widely reported — but UK. Based on Bkis analysis, a report today by Nguyen Minh Duc says that a master server located in UK was found to control the 8 Command and Control servers responsible for the series of cyberattacks last week.
According to the Koran Times, the Korea Communications Commission (KCC), the country's broadcasting and telecommunications regulator, has backed Bkis report and that "law enforcement authorities are currently seeking cooperation with the British government to investigate the attack source."
Related Links:
Korea and US DDoS attacks: The attacking source located in United Kingdom Bkis Security Blog, Jul.14.2009
Source of Cyber Attacks Originated From Britain The Korean Times, Jul.14.2009
UK, not North Korea, source of DDOS attacks, researcher says PC World, Jul.14.2009
Related topics: Cyberattack, Security
Comments
Nobody knows where these attacks originated yet. The UK link is merely another compromised host in the long chain of intermediate systems behind which the real miscreant is hiding. Wired Threat Level is already reporting that the UK host was in turn controlled (via VPN link) by a host in Miami, Florida. You can be quite sure that Miami isn't the origin, either.
Here we go again with knee jerk reactions from at least one member of Congresshttp://www.wired.com/...