Follow Us

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

HSBC restores websites after major DDoS assault

Sophisticated, large-scale attack nixed online banking

Article comments

HSBC has restored access to several of the company’s most important websites rendered inaccessible for ten hours by what is starting to look like one of the largest and most successful DDoS attacks ever to hit a prominent UK company.

The attack appears to have begun before 6pm on Thursday, 18 October, blocking access to several hsbc.co.uk and US domains plus, embarrassingly, the First Direct online bank.

According to the company’s Twitter account – now the means by which companies communicate regarding major outages such as this – access was not restored until 3am BST.

"This denial of service attack did not affect any customer data, but did prevent customers using HSBC online services, including internet banking. We are taking appropriate action, working hard to restore service,” HSBC said in a statement.

"We are pleased to say that some sites are now back up and running. We are cooperating with the relevant authorities and will co-operate with other organisations that have been similarly affected by such criminal acts."

DDoS attacks are routine on any company or bank of HSBC’s size, so what made this one so crippling?

According to security company Arbor Networks, the most likely explanation is simply that the attackers threw everything at HSBC, particularly at the application level. That might be the new reality of DDoS attacks but tis peaks of the ability to muster sophisticated methods beyond the norm.

“Recent attacks have used what we call multi-vector attacks, attacks which utilise a combination of volumetric, and application layer attack vectors,” suggested Arbor’s Darren Anstee.

“What we are seeing here are TCP, UDP and ICMP packet floods combined HTTP, HTTPS and DNS application layer attacks.  Attackers are doing this because they know it makes the attacks more difficult to deal with, but not impossible if we have the right services and solutions in place,” He said.

Suspicions regarding the source of the attacks will turn to obvious candidates such as Anonymous or possibly politically-motivated attackers from the Middle East; claims of responsibility have already reportedly been made on Twitter.

“In our experience financial organisations are slightly ahead of other businesses in the appreciation of the threats that DDoS attacks represent to their business, however many are lulled into a false sense of security by thinking that traditional means of defence like firewalls will combat the threat,” commented  Paul Lawrence or Corero Networks.

Targeting banks is nothing new. Only days ago, self-declared Islamic hackers vented their fury on a clutch of US financial sector organisations, disrupting SunTrust Banks and Capital One Financial. This followed earlier attacks on PNC Bank, Wells Fargo, US Bank, Bank of America and JPMorgan Chase.

Western hackers have used Pastebin and Twitter to give a running narrative on their exploits; now groups such as the “Izz ad-Din al-Qassam Cyber Fighters” have taken to the attention-seeking tactic.



Share:

More from Techworld

More relevant IT news

Comments



Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Techworld White Papers

Choose – and Choose Wisely – the Right MSP for Your SMB

End users need a technology partner that provides transparency, enables productivity, delivers...

Download Whitepaper

10 Effective Habits of Indispensable IT Departments

It’s no secret that responsibilities are growing while budgets continue to shrink. Download this...

Download Whitepaper

Gartner Magic Quadrant for Enterprise Information Archiving

Enterprise information archiving is contributing to organisational needs for e-discovery and...

Download Whitepaper

Advancing the state of virtualised backups

Dell Software’s vRanger is a veteran of the virtualisation specific backup market. It was the...

Download Whitepaper

Techworld UK - Technology - Business

Innovation, productivity, agility and profit

Watch this on demand webinar which explores IT innovation, managed print services and business agility.

Techworld Mobile Site

Access Techworld's content on the move

Get the latest news, product reviews and downloads on your mobile device with Techworld's mobile site.

Find out more...

From Wow to How : Making mobile and cloud work for you

On demand Biztech Briefing - Learn how to effectively deliver mobile work styles and cloud services together.

Watch now...

Site Map

* *