Latest Stories
NJIT's Student Newspaper

The Vector
Graphic by Areej Qamar
Student Senate Square
April 24, 2024
NJIT Researchers Find a Way to Efficiently Detect ‘Forever Chemicals’
NJIT Researchers Find a Way to Efficiently Detect ‘Forever Chemicals’
April 8, 2024
From left to right: Edie Westrich, Hope De Jesus, Samantha Montalbine, Namitha Yalla.
Experiences as Women at NJIT
April 8, 2024
An Amtrak Acela Express train passing through Old Saybrook, Connecticut in 2011. | Photo from Shreder 9100 | CC-BY-SA-3.0
Amtrak Retires the Original Acela Generation
March 25, 2024
A Rising Metropolis: How Newarks Horizontal Housing Expansion Is Changing the City
A Rising Metropolis: How Newark’s Horizontal Housing Expansion Is Changing the City
February 3, 2024
Circulating the Sports Sphere: Spring 2024
Circulating the Sports Sphere: Spring 2024
April 24, 2024
Circulating the Sports Sphere: Fall 2023
Circulating the Sports Sphere: Fall 2023
November 29, 2023
Kicking Off the NFL Season
Kicking Off the NFL Season
September 29, 2023
Photo from Pixabay
Dr. Bruce Bukiet Explains Baseball Predictions 
April 21, 2023
Khalil Thompson: An Olympic Highlander
Khalil Thompson: An Olympic Highlander
August 25, 2021
Graphic by Areej Qamar
Student Senate Square
April 24, 2024
How Blind Date with a Book Blossomed
How Blind Date with a Book Blossomed
April 8, 2024
Best Visuals awardees Smita More-Patdar and Kantida Nanon | Photo Courtesy of Graduate Student Association
NJIT Graduate Students Showcase Innovative Research
March 25, 2024
Groundskeeper Omar Garcia stands next to a heart-shaped bush of his own creation on Summit Street.
The Unrecognized Importance of NJIT’s Groundskeepers
February 24, 2024
Main entrance of Newark Penn Station in 2015 | Photo from King of Hearts | CC-BY-SA-3.0
The History of the NEC Line
February 15, 2024
How to Talk with Your Roommate
How to Talk with Your Roommate
April 24, 2024
Student Senate Logo
Make Democracy Work — Vote in the Student Senate Elections
April 8, 2024
Police officers check bags at the subway station | Photo by Adam Gray | The New York Times
National Guard Deployed in NYC Subways: A Commuter’s Concerns
April 8, 2024
The Top Three Tech Fails of 2023
The Top Three Tech Fails of 2023
April 8, 2024
Standardized Examinations Should Be Required — with Proper Preparation for Students
Standardized Examinations Should Be Required — with Proper Preparation for Students
April 8, 2024
Circulating the Sports Sphere: Spring 2024
Circulating the Sports Sphere: Spring 2024
April 24, 2024
Image from Spotify
With ‘TEXAS HOLD ‘EM,’ Beyoncé Embraces Her Country Roots
March 25, 2024
Photo from Netflix
The Imperfectly Perfect Portrayal of Love in Netflix’s ‘One Day’
March 10, 2024
Image from Spotify
‘Epic the Musical’
February 15, 2024
Image from Spotify
Scrutinizing ‘Stick Season’ Singles
February 3, 2024
NJIT's Student Newspaper

The Vector
NJIT's Student Newspaper

The Vector

DOS: You Got Served

Joseph IacovielloMarch 14, 2014
DOS%3A+You+Got+Served

DOS (Denial of Service) attacks come in various different forms and intensities, but all have the same purpose, to take a website offline and damage the organization running that website. The most common use for DOS attacks are ransom missions. A hacker will DOS a site and email the owner, demanding payment or else the website will be taken offline. DOS attacks are also used as a form of protest. In 2009, Iranians DDOS (Distributed Denial of Service) attacked several government websites to protest the presidential election. Anonymous has also used DDOS attacks in “Operation Payback” to protest Megaupload being taken offline. They attacked the websites of UMG (the company responsible for the lawsuit against Megaupload), the United States Department of Justice, the United States Copyright Office, the Federal Bureau of Investigation, the MPAA, Warner Brothers Music and the RIAA, as well as the HADOPI, all on the afternoon of January 19, 2012.

The tool most commonly used to conduct DDOS attacks as protest is LOIC (Low Orbit Ion Cannon). LOIC is a free program you can download for any platform and does nothing but send garbage data to a server. One person downloading this program and trying to take down a server does nothing. Not a single website on the internet will fall to one Low Orbit Ion Cannon. Websites only go down when you have thousands upon thousands of people using LOIC at the same time, on the same server. Much like a real world protest, this clogs up bandwidth on the server, making it very difficult for legitimate traffic to travel through. LOIC is most publicly used by Anonymous. In 2008, they gathered enough people to attack the websites of the Church of Scientology. In 2010, they also attacked the Recording Industry Association of America and the websites of organizations opposed to WikiLeaks during Operation Payback.

While large groups of people can very easily take down a website through coordination, for one hacker to DDOS attack a website, he needs an army of botnets, or infected computers that he can control remotely. Another tactic that hackers use to multiply the amount of data sent is to hijack the NTP (Network Time Protocol). NTP is basically the protocol used to get the current time. What’s important is that you send a small request and get a large response, meaning that if hackers who have the NTP server send the response to a single target website, they can triple the amount of data they use to attack. Luckily, many NTP servers are aware of this vulnerability, and about 4 out of 5 servers have been patched against this type of attack.

Not all DOS attacks require angry mobs of people or thousands of zombie computers. Some attacks exploit vulnerabilities in the computer’s software to remotely crash or hang the computer. Teardrop is one of those attacks. Luckily, no modern computer can be taken down with a Teardrop attack – it was discovered and used on Windows 95, NT, and 3.1. An attacker would send a broken internet packet to the computer, causing it to crash. There was no other destruction of data, unless something had not been saved on the computer at the time, the attack would only cause the computer to blue-screen. A similar attack is the Ping of Death. To attack a computer with the Ping of Death, an attacker would send the largest bit of data in one chunk possible. In order to crash the computer the data would have to be larger than 65,536 bytes. The attacked computer would have nowhere to store the extra bytes in memory and would crash.

There are many forms of DOS attacks, and hackers are finding new vulnerabilities to exploit every day. The most effective attacks are still DDOS attacks, where large groups of people decide to take down a site in a form of protest. Though it may not seem like a government site going down for a couple days matters, DDOS attacks have a real world effect and can be used for peaceful protest or they can be used as a form of extortion from a mafia-like group of hackers.
Leave a Comment
Donate to The Vector

Your donation will support the student journalists of New Jersey Institute of Technology. Your contribution will allow us to purchase equipment and cover our annual website hosting costs.

More to Discover
More in Technology
TEDxNJIT: Resurgence
TEDxNJIT: Resurgence
Super Cash Bros. Why is Zelda still $59.99?
Super Cash Bros. Why is Zelda still $59.99?
Amazon Pharmacy: A Hard Pill to Swallow
Amazon Pharmacy: A Hard Pill to Swallow
NJIT Collaborates on Recycled Mobile Medical Care Unit
NJIT Collaborates on Recycled Mobile Medical Care Unit
Our Not-So-Dry Neighbor
Our Not-So-Dry Neighbor
NJIT Makerspaces PPE Shortage Initiative
NJIT Makerspace's PPE Shortage Initiative
NJIT's Student Newspaper

The Vector
© 2024 • FLEX Pro WordPress Theme by SNOLog in
Donate to The Vector

Comments (0)

All The Vector Picks Reader Picks Sort: Newest

Your email address will not be published. Required fields are marked *