Stop Using DDoS As A Weapon

Pat Benatar (sorry, no prizes if you worked out which one of her tracks I’m listening to while writing this) might be proud of such a title, but would she be proud of the tactics Sony is reportedly using in its fightback against web pirates?

According to Re/Code,

“The company is using hundreds of computers in Asia to execute what’s known as a denial of service attack on sites where its pilfered data is available, according to two people with direct knowledge of the matter.”

The company is, the above linked article says, using Amazon Web Services to carry out a novel type of counterattack against those who would download data pilfered from it in the recently well-publicised attack by GOP.

Sony of course is no stranger to protecting its assets, having used DRM to protect music from piracy for several years, and other companies within the media sector have often used unexpected tactics, such as redirecting pirates to empty files that take hours to download.

But a retaliatory DDoS attack?

I find that hard to believe right now – though nothing much surprises me these days – and would have to wonder about the legality of such a move (yeah, I know, pirates are ‘bad guys’ and laws vary considerably from jurisdiction and all that) but it sounds like a dumb PR move if nothing else.

After all, disrupting the downloading of stolen data two weeks after it was taken reminds me very much of a saying that involves a horse, a door and a stable and would also get me wondering about cost and how funds may have been better spent on defence than offence.

But then we don’t know who Re/Code’s sources are, or how precise their information is, so it’s impossible to say whether this story is accurate or just another ‘North Korea dunnit‘ type of article.

About Lee Munson

Lee's non-technical background allows him to write about internet security in a clear way that is understandable to both IT professionals and people just like you who need simple answers to your security questions.

Speak Your Mind