While perhaps a coincidence, the failure of the country’s computer connections began only hours after President Obama declared Friday that the United States would launch a “proportional response” to what he termed an act of “cybervandalism” against Sony Pictures.
Over the weekend, as North Korean officials demanded a “joint investigation” into the Sony attacks and denied culpability — an assertion the United States rejected — Internet service began to get wobbly. By early Monday, the Internet went as dark as one of those satellite photographs showing the impoverished country by night.
Experts who monitor the health of the global Internet called it one of the worst North Korean network failures in years. But American officials who had described over the weekend how they were intensely focused on the country’s telecommunications connections through China — and how they had asked the Chinese government for help in cutting off the North’s ability to send malicious code around the world — declined to discuss what befell those connections.
“I guess accidents can happen,” one said in a very brief telephone conversation.
A State Department spokeswoman, Marie Harf, told reporters on Monday, “We aren’t going to discuss, you know, publicly operational details about the possible response options,” adding that “as we implement our responses, some will be seen, some may not be seen.”
There was no definitive way, at least in the short term, to determine whether the connection had been cut, overloaded, or attacked. And security experts cautioned that there could be many reasons for Monday’s failure. North Korea could be pre-emptively taking its systems offline to prepare for an attack, some said.
Chris Nicholson, a spokesman for Akamai, an Internet content delivery company, said it was difficult to pinpoint the origin of the failure, given that the company typically sees only a trickle of Internet connectivity from North Korea. The country has only 1,024 official Internet protocol addresses, though the actual number may be a little higher. That is fewer than many city blocks in New York have. The United States, by comparison, has billions of addresses.
But as the sun rose in North Korea on Tuesday morning, the few connections to the outside world — available only to the elite, the military, and North Korea’s prodigious propaganda machine — were still out.
Those connections to the outside world are managed by Star Joint Ventures, the country’s state-run Internet provider, and almost all of them run through China Unicom, China’s state-owned telecommunications company. They were not operative on Monday, but the causes could include a cyberattack by the United States — something American officials have said they would be hesitant to do if it meant infringing on Chinese sovereignty.
It is also possible China Unicom simply unplugged its neighbor. Internet monitors said a maintenance issue was unlikely to have caused such a prolonged failure.
CloudFlare, an Internet company based in San Francisco, confirmed Monday that North Korea’s Internet access was “toast.” A large number of connections had been withdrawn, “showing that the North Korean network has gone away,” Matthew Prince, CloudFlare’s founder, wrote in an email.
Doug Madory, the director of Internet analysis at Dyn Research, an Internet performance management company, said that North Korean Internet access first became unstable late on Friday. The situation worsened over the weekend, and by Monday, North Korea’s Internet was completely offline.
“Their networks are under duress,” Mr. Madory said. “This is consistent with a DDoS attack on their routers,” he said, referring to a distributed denial of service attack, in which attackers flood a network with traffic until it collapses under the load.
If the attack was American in origin — something the United States would probably never acknowledge — it would be a rare effort by the United States to attack a nation’s Internet connections.
Certainly the United States is positioned to cause failures in many places in the Internet: Among the most interesting documents released by Edward J. Snowden, the former National Security Agency contractor now in Moscow, was a map of “implants” that the United States has put in strategic places, from network connections to individual computers, around the world.
Those are most useful in cyberespionage, and the United States does a lot of that in China. Other Snowden documents showed that a major Chinese maker of network switching equipment, Huawei, was among American targets. So were leadership compounds and military locations.
But there is no evidence that American cyberactivities in China have moved from surveillance to what experts call “computer network exploitation” or, the next step, actual attacks. And the Chinese themselves have been coy.
China’s foreign ministry spokeswoman, Hua Chunying, said it was too early to know if Mr. Obama’s accusation against the North concerning the Sony attacks was true, Reuters reported Monday.
“China will handle it in accordance with relevant international and Chinese laws according to the facts,” she said.
But she also said that China’s foreign minister, Wang Yi, “reaffirmed China’s relevant position, emphasizing China opposes all forms of cyberattacks and cyberterrorism” during a call on Sunday with Secretary of State John Kerry.
While rare, disruption of computers and networks is certainly part of the American offensive playbook. During the Iraq war, there were periodic efforts to send fake messages to cellphones or computers to lure Qaeda suspects or other adversaries into traps.
“Olympic Games,” the cyberattack on Iran’s nuclear enrichment facility, was an extremely sophisticated destructive attack that destroyed centrifuges, the machines that enrich uranium. It was intended to slow Iran’s progress toward a nuclear weapons capability.
The United States has never acknowledged the attacks, and the central role played by Mr. Obama did not become clear until the summer of 2012, more than two years after the events.
But a denial-of-service attack is far easier to arrange on short notice than a destructive attack. And it may be more akin to the “cybervandalism” that Mr. Obama spoke of against Sony. It is temporary, and while it imposes some costs, it would be limited in the case of North Korea because of the scarce availability of Internet services in the country.
“Proportional would mean that we would hack a North Korean movie company,” said Victor Cha of Georgetown University, who handled North Korean issues in the George W. Bush White House. “But that would not get you very far.”
Mr. Obama spoke Friday, during an interview with CNN, of the possibility of restoring the North to the list of state sponsors of terrorism. That, too, would have limited impact: The country is already among the most isolated on earth.
But it is also not clear that cutting off Internet service, if that is what happened in this case, would slow North Korean hackers. Many are believed to be based in China. Sony’s attackers used servers in Bolivia, Singapore and Thailand to launch their attacks. So any cutoff of Internet services would be mostly symbolic, a warning shot that two can play the game of disruption.
http://www.nytimes.com/
Fri Jul 19, 2024 10:30 am by faithhharris
» CCS.N0000 ( Ceylon Cold Stores)
Wed Mar 20, 2024 11:31 am by Hawk Eye
» Sri Lanka plans to allow tourists from August, no mandatory quarantine
Wed Sep 13, 2023 12:16 pm by lauryfriese
» When Will It Be Safe To Invest In The Stock Market Again?
Wed Apr 19, 2023 6:41 am by කිත්සිරි ද සිල්වා
» Dividend Announcements
Wed Apr 12, 2023 5:41 pm by කිත්සිරි ද සිල්වා
» MAINTENANCE NOTICE / නඩත්තු දැනුම්දීම
Thu Apr 06, 2023 3:18 pm by කිත්සිරි ද සිල්වා
» ඩොලර් මිලියනයක මුදල් සම්මානයක් සහ “ෆීල්ඩ්ස් පදක්කම” පිළිගැනීම ප්රතික්ෂේප කළ ගණිතඥයා
Sun Apr 02, 2023 7:28 am by කිත්සිරි ද සිල්වා
» SEYB.N0000 (Seylan Bank PLC)
Thu Mar 30, 2023 9:25 am by yellow knife
» Here's what blind prophet Baba Vanga predicted for 2016 and beyond: It's not good
Thu Mar 30, 2023 9:25 am by HaeroMaero
» The Korean Way !
Wed Mar 29, 2023 7:09 am by කිත්සිරි ද සිල්වා
» In the Meantime Within Our Shores!
Mon Mar 27, 2023 5:51 pm by කිත්සිරි ද සිල්වා
» What is Known as Dementia?
Fri Mar 24, 2023 10:09 am by කිත්සිරි ද සිල්වා
» SRI LANKA TELECOM PLC (SLTL.N0000)
Mon Mar 20, 2023 5:18 pm by කිත්සිරි ද සිල්වා
» THE LANKA HOSPITALS CORPORATION PLC (LHCL.N0000)
Mon Mar 20, 2023 5:10 pm by කිත්සිරි ද සිල්වා
» Equinox ( වසන්ත විෂුවය ) !
Mon Mar 20, 2023 4:28 pm by කිත්සිරි ද සිල්වා
» COMB.N0000 (Commercial Bank of Ceylon PLC)
Sun Mar 19, 2023 4:11 pm by කිත්සිරි ද සිල්වා
» REXP.N0000 (Richard Pieris Exports PLC)
Sun Mar 19, 2023 4:02 pm by කිත්සිරි ද සිල්වා
» RICH.N0000 (Richard Pieris and Company PLC)
Sun Mar 19, 2023 3:53 pm by කිත්සිරි ද සිල්වා
» Do You Have Computer Vision Syndrome?
Sat Mar 18, 2023 7:36 am by කිත්සිරි ද සිල්වා
» LAXAPANA BATTERIES PLC (LITE.N0000)
Thu Mar 16, 2023 11:23 am by කිත්සිරි ද සිල්වා
» What a Bank Run ?
Wed Mar 15, 2023 5:33 pm by කිත්සිරි ද සිල්වා
» 104 Technical trading experiments by HUNTER
Wed Mar 15, 2023 4:27 pm by katesmith1304
» GLAS.N0000 (Piramal Glass Ceylon PLC)
Wed Mar 15, 2023 7:45 am by කිත්සිරි ද සිල්වා
» Cboe Volatility Index
Tue Mar 14, 2023 5:32 pm by කිත්සිරි ද සිල්වා
» AHPL.N0000
Sun Mar 12, 2023 4:46 pm by කිත්සිරි ද සිල්වා
» TJL.N0000 (Tee Jey Lanka PLC.)
Sun Mar 12, 2023 4:43 pm by කිත්සිරි ද සිල්වා
» CTBL.N0000 ( CEYLON TEA BROKERS PLC)
Sun Mar 12, 2023 4:41 pm by කිත්සිරි ද සිල්වා
» COMMERCIAL DEVELOPMENT COMPANY PLC (COMD. N.0000))
Fri Mar 10, 2023 4:43 pm by yellow knife
» Bitcoin and Cryptocurrency
Fri Mar 10, 2023 1:47 pm by කිත්සිරි ද සිල්වා
» CSD.N0000 (Seylan Developments PLC)
Fri Mar 10, 2023 10:38 am by yellow knife
» PLC.N0000 (People's Leasing and Finance PLC)
Thu Mar 09, 2023 8:02 am by කිත්සිරි ද සිල්වා
» Bakery Products ?
Wed Mar 08, 2023 5:30 pm by කිත්සිරි ද සිල්වා
» NTB.N0000 (Nations Trust Bank PLC)
Sun Mar 05, 2023 7:24 am by කිත්සිරි ද සිල්වා
» Going South
Sat Mar 04, 2023 10:47 am by කිත්සිරි ද සිල්වා
» When Seagulls Follow the Trawler
Thu Mar 02, 2023 10:22 am by කිත්සිරි ද සිල්වා
» Re-activating
Sat Feb 25, 2023 5:12 pm by කිත්සිරි ද සිල්වා
» අපි තමයි හොඳටම කරේ !
Tue Feb 14, 2023 3:54 pm by ruwan326
» මේ අර් බුධය කිසිසේත්ම මා විසින් නිර්මාණය කල එකක් නොවේ
Tue Jan 03, 2023 6:43 pm by ruwan326
» SAMP.N0000 (Sampath Bank PLC)
Wed Nov 30, 2022 8:24 am by කිත්සිරි ද සිල්වා
» APLA.N0000 (ACL Plastics PLC)
Fri Nov 18, 2022 7:49 am by කිත්සිරි ද සිල්වා
» AVOID FALLING INTO ALLURING WEEKEND FAMILY PACKAGES.
Wed Nov 16, 2022 9:28 pm by කිත්සිරි ද සිල්වා
» Banks, Finance & Insurance Sector Chart
Tue Nov 15, 2022 5:26 pm by කිත්සිරි ද සිල්වා
» VPEL.N0000 (Vallibel Power Erathna PLC)
Sun Nov 13, 2022 12:15 pm by කිත්සිරි ද සිල්වා
» DEADLY COCKTAIL OF ISLAND MENTALITY AND PARANOID PERSONALITY DISORDER MIX.
Mon Nov 07, 2022 6:36 pm by කිත්සිරි ද සිල්වා
» WATA - Watawala
Sat Nov 05, 2022 8:44 am by කිත්සිරි ද සිල්වා
» KFP.N0000(Keels Food Products PLC)
Sat Nov 05, 2022 8:42 am by කිත්සිරි ද සිල්වා
» Capital Trust Broker in difficulty?
Fri Oct 21, 2022 5:25 pm by කිත්සිරි ද සිල්වා
» IS PIRATING INTELLECTUAL PROPERTY A BOON OR BANE?
Thu Oct 20, 2022 10:13 am by කිත්සිරි ද සිල්වා
» What Industry Would You Choose to Focus?
Tue Oct 11, 2022 6:39 pm by කිත්සිරි ද සිල්වා
» Should I Stick Around, or Should I Follow Others' Lead?
Tue Oct 11, 2022 9:07 am by කිත්සිරි ද සිල්වා