LF: Middle East Hackers Attack Websites of Wells Fargo, Chase and Other Large Banks

Title: Middle East Hackers Attack Websites of Wells Fargo, Chase and Other Large Banks
Source: Deposit Accounts
URL Source: http://www.depositaccounts.com/blog ... ase-and-other-large-banks.html
Published: Sep 28, 2012
Author: Ken Tumin
Post Date: 2012-09-28 10:18:12 by Brian S
Keywords: None
Views: 760

If you had problems accessing your bank's website this week, you're not alone. Several major banks were hit this week with denial-of-service attacks which can make websites inaccessible. The latest bank to be hit was PNC Bank. Yesterday evening PNC had a "repair in progress" message on its home page. When I tried to access pnc.com this morning, I wasn't able to access anything.

I've been reporting on these issues in this forum thread when rumors first began about a cyberattack. As you might expect, banks kept quiet in reporting the cyberattack. But as the website outages grew, it became apparent that this was a sophisticated cyberattack, and yesterday evening, it was the top story of ABC World News. The news report called it "the most extensive attack on American banks ever - launched from the Middle East - happening right now." In addition to PNC, the banks that have been hit this week include Bank of America, Wells Fargo, Chase and US Bank.

It's important to understand that this cyberattack has no direct effect on your money. There have been no reports that hackers have gained access to customer accounts. The type of attack that we are seeing is what's called a denial-of-service attack. The hackers send a huge amount of traffic to a website which overloads the website and makes it inaccessible for others. One defense that websites use against this attack is to block IP addresses. Hackers can make this defense more difficult by sending traffic from many different IP addresses. This is often done by hijacking thousands of servers with viruses that can be instructed to send traffic to certain websites. This more sophisticated approach is called a distributed denial-of-service (DDoS) attack. New defenses have been developed to guard against DDoS attacks, but hackers keep working on ways to break those defenses. It appears that in this bank DDoS wave of attacks, the hackers took it to the next level. According to this CNNMoney.com article:

Banks get hit by cyberattackers all the time and typically have some of the best defenses against them. This time, they were outgunned.

"The volume of traffic sent to these sites is frankly unprecedented," said Dmitri Alperovitch, co-founder of CrowdStrike, a security firm that has been investigating the attacks. "It's 10 to 20 times the volume that we normally see, and twice the previous record for a denial of service attack."

Even though these cyberattacks don't affect our bank savings, it can make it more difficult for us to conduct our banking business. If you can't quickly access your bank accounts, you might lose money. For example, if it delays an online bill payment, you might be hit with a late fee. Also, if you are trying to close a CD that has matured, a delay could allow the CD to be automatically renewed at a very low rate. This is another reason to avoid waiting to the last day to take care of these transactions.

One thing that can help you deal with these issues is to bookmark your bank's login page. Often the account servers are different than the servers that run the main pages. These DDoS attacks may only affect the bank's main page without affecting the account servers. When an attack is in progress, a bank may put up a temporary front page with links to its login pages. This is what PNC did yesterday.