 Smokey Bearveritas odium paritPremium
join:2008-03-15
Annie's Pub
kudos:4 | Bank of America web site victim of Denial of Service attack SANS | 2010-01-29
quote:
The Bank of America web site appears to have been a victim of a Denial of Service attack today. No details on what happened have been released as of yet. Their twitter feed indicates they were aware of it and attempting mitigation.
»isc.sans.org/diary.html?storyid=8119
--
Smokey's Security Forums »www.smokey-services.eu/forums/
Smokey's Security Weblog »smokeys.wordpress.com/
*Statements and opinions expressed in articles, reviews and other materials herein, reproduced by me, are those of the authors* |
|
 Rogue WolfAte Your Homework, And Framed The Dog
join:2003-08-12
Troy, NY | Which explains why I couldn't log on to check my balance earlier this afternoon. Thanks for the heads-up. |
|
| reply to Smokey Bear
See this thread for an attack that *might* be related.
--
Linux and BSD: operating systems the way they were meant to be -- secure, fast, free, and open. |
|
 Name GamePremium
join:2002-07-07
North Myrtle Beach, SC
kudos:6
1 edit | reply to Smokey Bear
One could get to the site and navigate/login if the went to »www4.bankofamerica.com but not many customers were aware of that. Neighbor went to their local branch here in South Carolina because they had messed up a wire transfer she did a few weeks back. The bank people told her the problem with the site being down was caused by the ice storms we are currently going through here in the State.
We shall see. The sites are now all back up as of this posting.
________________________________________
Bank of America suffers Internet outage
Many Bank of America customers were unable to access their accounts online Friday when the bank suffered a major Internet outage. The main web site of the country's largest bank was only available to about 20 percent of customers in cities across the country as of 5 pm.
Bank of America spokesman TJ Crawford said the company had ruled out a cyber attack, but was still trying to identify the cause. "Some customers are having intermittent issues accessing the site," Crawford said.
»www.boston.com/business/ticker/2···_25.html
--
Gladiator Security Forum
»www.gladiator-antivirus.com/
|
|
Zoder
join:2002-04-16
Miami, FL | I wonder if BofA will waive late and overdraft fees for customers who were unable to manage their account and occured such fees as a result. |
|
 Link LoggerPremium,MVM
join:2001-03-29
Calgary, AB
kudos:3
 ·Shaw
| reply to Smokey Bear
Honestly there are times I'm surprised the internet works at all given how easy it is to DDOS someone and how hard it is to defend against such an attack.
Blake
--
Vendor: Author of Link Logger which is a traffic analysis and firewall logging tool |
|
 Dude111An Awesome DudePremium
join:2003-08-04
USA
kudos:10 | reply to Smokey Bear
Yes and how UNEASY it is to track the scumbag doing this!
 |
|
| reply to Smokey Bear
Though it may not be difficult to turn a bunch of networked computers into packet-spouting attack machines, in the words of Dan Brown, it isn't as if any "third grader with a modem" can do it. However, perhaps this had something to do with it?
»www.darkreading.com/security/vul···08803992
quote:
In this case, however, Sestus reported the discovery of a "previously unreported vulnerability" in the Bank of America system that would enable an attacker to exploit the bank's lockout process to launch a denial-of-service attack on Sitekey, effectively preventing customers from accessing their accounts online.
Any ideas who did it? Script kiddies or something more sinister? |
|
Name GamePremium
join:2002-07-07
North Myrtle Beach, SC
kudos:6 | said by garofede624:Though it may not be difficult to turn a bunch of networked computers into packet-spouting attack machines, in the words of Dan Brown, it isn't as if any "third grader with a modem" can do it. However, perhaps this had something to do with it? » www.darkreading.com/security/vul···08803992 quote:
In this case, however, Sestus reported the discovery of a "previously unreported vulnerability" in the Bank of America system that would enable an attacker to exploit the bank's lockout process to launch a denial-of-service attack on Sitekey, effectively preventing customers from accessing their accounts online.
Any ideas who did it? Script kiddies or something more sinister? I doubt sitekey was a problem since many who claimed they had problems with bankofamerica site access then posted back they could get into their account with a link like this..
»sitekey.bankofamerica.com/sas/si···state=FL
I think they just had problems at the NOC (network operations center)
»en.wikipedia.org/wiki/Network_op···s_center
But if you want another conspiracy theory..maybe this group took to the internet to continue their protest 
Protest today for bank closing at HUB shopping center
Thursday, January 28, 2010
»www.nj.com/news/jjournal/bayonne···l&coll=3
--
Gladiator Security Forum
»www.gladiator-antivirus.com/
|
|
| reply to Zoder
said by Zoder:I wonder if BofA will waive late and overdraft fees for customers who were unable to manage their account and occured such fees as a result. No, because they have no reason to depend on the Interwebs to keep their info up to date. This is why you always keep a register, and record stuff as you use your accounts, not wait until the end of the month. People have become too dependent on technology, and things like this gives them a wake up call. |
|
