DüsseldorfIt is the beginning of November, as a unknown IT security specialist and presumed Fan of Japan under the Pseudonym “Kenzo2017″ only for technical experts to understand the warning in an Online Blog published, according to hackers, it is possible, certain routers of the Irish ISP EIR by using over the Internet, mailed control commands from the remote to re-program.
In this way, the attacker could control the device, with the help of private people and companies go online, long-distance and – as a kind of digital Zombies – for large-scale attacks on other use. Shortly thereafter, the Router manufacturer, the Taiwanese firm Zyxel has released a Update, to plug the gap. But the warning was largely ignored.
Large Hacker attacks of the past few years
Until she gets on the last Sunday suddenly immense explosiveness.
It is short notice, after three o’clock in the afternoon as the employees in the network Monitoring Center of Deutsche Telekom in Bonn in the view of the wall-high control screens. For no apparent reason fewer customers are considerably to the telephony servers in the communications giant filed. Also, the network load is noticeably lower than for a Sunday afternoon usual, because fewer people over the network of the group.
A quick Check of the nationwide weather shows location: Radiant late autumn weather, the Germans by the tens of thousands, and to let across the Board except for scheduled Sunday walks could cause, so a first attempt at an explanation. So what is going on, out there in the network? The search for the cause begins and for Thomas Tschersich, head of the programme for Internal Security & Cyber Defense in the case of Telekom, as well as hundreds of other technology and security experts in the group, probably the most stressful 72 hours, the past years.
Router-default: Telekom is analyzing information on Hacker attack
It is a little after half past Four, as in the mobile phone of the 46-year-old chief of security, the first E-Mail message is received, in the net, ANYTHING out of the ordinary does. Since no one knows yet WHAT exactly happened, but THAT something is not right, it is becoming clear. Within a short time there are about 900,000 Telekom customers, the strike the telephone-, Internet – and multimedia terminals, in whole or in part.
half An hour later, Tschersich the colleagues from Bonn to personally on the phone. “Since it was clear that we – like we – have a ‘disorder of large Wirkweite’ in the network,” says the security Manager.
For such cases, communications companies like Telekom but also your competitors put their sophisticated contingency plans at the ready. Experts are on call, if there is a problem somewhere and the staff on duty do not get the interference. But it’s Sunday afternoon. Since it takes longer than during working hours on week-days, until the forces are available. But the circle of experts is growing rapidly. You turn, and discuss what it could be, that so many customers, so suddenly not in the stable network to get access?
botnets: zombie maker
a failure of A regional grid node, maybe? Is not! The disorders appear nationwide? Error messages from conurbations, piling up, are there maybe components of the network of a common type used, which have a disorder? Not, the accumulation, the adjustment of the user data, is solely due to the higher population density. Where more people live with their telephone lines, as also in the case of a statistical uniform distribution of a fault – just absolutely more people counted to a power failure. In feverish haste, the network technician’s theses, which can be triggers of the disorder, develop the facts, consider…, and discard it again. It is a mystery what happened.