Attacks on lone blogger reverberate across Web

Aug 08, 2009 By BARBARA ORTUTAY , AP Technology Writer
College student Joy Troy, checks a twitter page at the Annenberg School of Communication department at the University of Southern California campus in Los Angeles on Thursday, Aug. 6, 2009. A hacker attack Thursday shut down the fast-growing messaging service Twitter for hours, while Facebook experienced intermittent access problems. (AP Photo/Damian Dovarganes)

(AP) -- The outage that knocked Twitter offline for hours was traced to an attack on a lone blogger in the former Soviet republic of Georgia - but the collateral damage that left millions around the world tweetless showed just how much havoc an isolated cyberdispute can cause.

"It told us how quickly many people really took Twitter into their hearts," Robert Thompson, director of the Center for the Study of Popular Television at Syracuse University, said Friday.

Tens of millions of people have come to rely on social media to express their innermost thoughts and to keep up with world news and celebrity gossip.

Twitter "is one of those little amusements that infiltrated the mass behavior in some significant ways, so that when it went away, a lot of people really noticed it and missed it."

The attacks Thursday also slowed down Facebook and caused problems for the online diary site LiveJournal. But Twitter, the 140-character-or-less messaging site used by celebrities, businesses and even Iranian protesters, suffered a total outage that lasted several hours.

Those attacks continued Friday from thousands of computers pummeling its servers, said Kazuhiro Gomi, for NTT America Enterprise Hosting Services, which hosts Twitter's service.

Twitter crashed because of a , in which hackers command scores of computers toward a single site at the same time to prevent legitimate traffic from getting through. The attack was targeted at a blogger who goes by "Cyxymu" - Cyrillic spelling of Sukhumi, a city in the breakaway territory of Abkhazia in Georgia - on several Web sites, including Twitter, Facebook and LiveJournal.

But they could have just as well targeted Twitter itself. That's because the effects were the same whether the excess traffic went to the "" home page or to the page for Cyxymu at "" Same with Facebook and LiveJournal.

"A denial of service attack like this one is a very blunt instrument," said Ray Dickenson, chief technology officer at Authentium, a computer security firm. It's as if a viewer who didn't like one show on a television channel decided to "knock out the whole station."

Or like fishing with dynamite: You'll catch something, but the blast will kill dolphins, sharks and other organisms, too.

Just who was behind these attacks is not yet clear, but the dispute was probably related to the ongoing political conflict between Russia and Georgia.

Gomi said the attacking computers were located around the world and the source of the attacks was not known.

The attacks seemed to come in two waves.

The first was a spam campaign consisting of e-mails with links back to posts by Cyxymu. This drove some traffic to the blogger's postings on various social-networking sites, possibly to disparage him as the source of the spam.

The second and more destructive phase consisted of the denial-of-service attack, which attacked the sites' servers by sending it lots of junk requests - presumably to prevent people from reading his viewpoints.

It would have been much harder for the perpetrators of the attacks to isolate Cyxymu's accounts on each social-networking site and shut it down. To do that, they would have needed to access his password by guessing it or somehow luring him into giving it out.

The blunt approach was easier - and more damaging.

On Friday, the surge of traffic to Twitter was about as it was Thursday - as much as 20 percent above normal traffic levels. But Gomi said NTT was better able to filter out the fake traffic, which is why Twitter stayed online.

Dickenson said Twitter was more vulnerable than Facebook and other sites because the company's servers are hosted by a single service provider, something larger Web sites tend to avoid as they grow.

Although having several providers is no guarantee of avoiding harm, Dickenson said doing so at least gives the sites more tools and space to work with once they occur.

Craig Labovitz, chief scientist for Arbor Networks, a Chelmsford, Mass.-based network security firm, said Twitter's smaller size also made it more vulnerable.

"Twitter is just apples and oranges compared to Facebook," he said. "Facebook is massive, and they presumably have massive infrastructure backing it."

After the attacks on Twitter started, NTT turned on a technology that protects against denial of service attacks. The problem is it slows down access to the site.

"It's still under attack," he said. "If we turned that stuff off, the Twitter site could go down immediately, to be quite honest."

According to comScore, Twitter had 20.1 million unique visitors in the United States in June, some 34 times the 593,000 a year earlier. This compares with Facebook's 77 million this June, more than double the 37.4 million in the prior year.

The Twitter outage was widely blogged, reported and - once the site was back - tweeted about, but was it really that bad? Or a mere hiccup of the information age?

For people like Lev Ekster, who uses Twitter to keep in touch with customers of his mobile cupcake truck in New York, the outage proved no more than an inconvenience. His event planner, who normally arranges cupcake orders for birthdays and bar mitzvahs, fielded phone calls all day from customers wanting to know the truck's location for the day.

"A temporary outage is not the end of the world," Ekster said. "But if this kept happening, people like myself who rely heavily on Twitter would go elsewhere."

With Twitter not working Thursday, Ekster went to Facebook instead to disclose where the CupCakeStop truck was parked. CupCakeStop has just 1,800 Facebook fans, compared with about 6,000 followers on Twitter, but it was better than nothing. He still sold out of cupcakes by 6 p.m.

As annoying as the Twitter outage may have been for some, it was nothing compared with the havoc that would have resulted from a cell phone service outage.

"A total blackout, even of television, which we consider such a charmingly old-fashioned medium ... would certainly be more massive than Twitter or ," Thompson said. "We haven't gotten to a point where people are dependent on Twitter for crucial things other than reading ."


AP Technology Writer Jordan Robertson contributed to this story from San Francisco.
©2009 The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.

Explore further: Meerkat vs. Periscope: Live-streaming app battle & buzz

add to favorites email to friend print save as pdf

Related Stories

US Army enlists Facebook, Twitter

Apr 27, 2009

The US Army said on Monday it had launched a fan page on Facebook and established an office for online "social media," despite security rules that limit soldiers' access to networking sites.

Google News launches Twitter feed

Apr 28, 2009

Google News, the news aggregation site run by the Internet search giant announced the launch of the @googlenews Twitter feed in a post on the Google News blog on Monday.

Recommended for you

Meerkat vs. Periscope: Live-streaming app battle & buzz

2 hours ago

Download Periscope, Twitter's just-launched live video-streaming app, and you'll find people broadcasting all sorts of mundane stuff: waiting for AT&T to fix their wiring, getting out of bed in Silicon V ...

Twitter chief vows to help Indonesia fight disasters

21 hours ago

Twitter chief Dick Costolo said Thursday the microblogging site planned to work with Indonesian authorities to warn people about natural disasters that regularly hit the archipelago, from earthquakes to volcanic ...

EU unveils ambitious overhaul of digital economy

Mar 25, 2015

The EU unveiled an ambitious plan to overhaul Europe's fragmented digital landscape on Wednesday that would allow Europeans traveling in other bloc countries to get their Netflix film fix or watch BBC iPlayer ...

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

not rated yet Aug 10, 2009
the hacker is eliminated! people can now continue their social media in peace or maybe, for now...

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.