Social network DoS attacks finally cease

Twitter was knocked out for three hours

A series of distributed denial-of-service attacks (DDoS) against popular social media sites appears to have stopped after causing hours of mayhem.

Twitter, Facebook and LiveJournal were all hit, and Twitter lost its service for over three hours. Facebook users suffered some problems loading pages, while LiveJournal members lost contact with the site for around an hour.

"Over the last few hours, Twitter has been working closely with other companies and services affected by what appears to be a single, massively co-ordinated attack. As to the motivation behind this event, we prefer not to speculate," said the company in a blog post.

"Please note that no user data was compromised in this attack. This activity is about saturating a service with so many requests that it cannot respond to legitimate requests, thereby denying service to intended customers or users."

DDoS attacks occur when large numbers of infected PCs send huge numbers of requests to the target site. The sheer volume of access requests overloads the servers that host the site, and causes it to be shut down.

"It's a bit like 15 fat men trying to get through a revolving door at the same time - nothing can move," said Graham Cluley, senior technology consultant at Sophos.

"Don't underestimate the impact an attack like this can have. Twitter isn't just about meaningless piffle (although there's a fair bit of that). Companies are using it to keep in touch with their customer base, and consumers take advantage of the site's intimacy to get an answer from large companies that are discovering how to have a 'human face' online."

DDoS attacks are nothing new, but the shutdowns have raised questions about the extent to which social networking companies protect their sites and those who use them.

Financial and betting firms have long been targets for such attacks, and have invested millions in setting up sophisticated blocking mechanisms that can lock out computers trying to take part in attacks. But it appears that Twitter and others have yet to make that investment.

"This DDoS attack should highlight to Twitter that it needs to redirect some of this energy to bolster its core security measures in order to protect its millions of users," said Don Leatham, senior director of solutions and strategy at security vendor Lumension.

"Increasingly, businesses are adopting Twitter as a core part of their social media and communications strategies, and this incident has the potential to have a negative impact on their brands using Twitter, as it could be seen to be highly vulnerable to malicious attack.

"Obviously, individual employees and businesses need to take some responsibility when using any online application, including Twitter. The real question here is whether Twitter is ready for business primetime."