[LACNIC/Seguridad] Fwd: The MegaUpload Shutdown Effect

Fernando Gont fernando en gont.com.ar
Mie Ene 25 13:47:37 BRST 2012


Y cual es el "paraguas" bajo el cual se amparan?

Ejemplo: tengo un dominio hosteado en .com hosteado por una empresa que
no es de USA... la medida/operatoria consistiria en "presionar" a quien
hostea mi dominio para que lo apunte a otro lado?

Hay alguna diferencia con hostear en, digamos, Europa o sudamerica? -- O
en todos casos se esta en la misma?

P.S.: Se me ocurre que siguiendo en este camino, maņana van a empezar a
bajar sites por motivos diversos...

SAludos, y gracias!
Fernando




On 01/25/2012 11:35 AM, Ivan Arce wrote:
> Alcanza cualquier region.
> Segun entiendo esta fue una serie de acciones coordinadas en varias
> regiones del planeta. De hecho el arresto del accionista principal fue
> en .nz  (Kim Schmidtz, un ladri de larga data que yo recuerdo porque en
> los 90' tenia una empresa de seguridad informatica en .de conocida como
> Data Protect y el  se hacia llamar "Kimble"). Los interesados en lo
> anecdotico pueden buscar "kimble megacar" y constatar el grado de
> charlatanismo del personaje
> 
> -ivan
> 
> 
> On Jan 25, 2012, at 12:57, Fernando Gont <fgont en si6networks.com> wrote:
> 
>> Estiamdos,
>>
>> Pregunta: Sabe alguno si este tipo de medida alcanza solamente a sitios
>> hosteados en USA, o tambien a otras regiones?
>>
>> Saludos, y gracias!
>> Fernando
>>
>>
>>
>>
>> On 01/25/2012 11:38 AM, Fernando Gont wrote:
>>> FYI.
>>>
>>> URL:
>>> <http://ddos.arbornetworks.com/2012/01/the-megaupload-shutdown-effect-2/>
>>>
>>>
>>> -------- Original Message --------
>>> Subject:    The MegaUpload Shutdown Effect
>>> Date:    Sat, 21 Jan 2012 15:31:20 GMT
>>> From:    <Jose Nazario>
>>>
>>>
>>>
>>> The popular file sharing site MegaUpload was shut down by the US FBI and
>>> Department of Justice on Thursday, January 19, and executives from the
>>> company were taken into custody. This story is very well covered by the
>>> Wall Street Journal
>>> <http://online.wsj.com/article_email/SB10001424052970204616504577171060611948408-lMyQjAxMTAyMDEwOTExNDkyWj.html#project%3DWSJPDF%26s%3Ddocid%253D120119203839-55f3c7eb6f724462b34bd64ce22ff1d0%257Cfile%253Dmega01192012%26articleTabs%3Darticle>
>>>
>>> and includes a copy of the indictment for your reading.
>>>
>>> As you would expect, this was a wildly popular site with users from all
>>> over the world. So much so that even notable celebrities appear in a
>>> video discussing MegaUpload, almost endorsing it. Previous work by Arbor
>>> Networks showed that content providers and hosting sites like MegaUpload
>>> are the new “Hyper Giants
>>> <http://ddos.arbornetworks.com/2010/04/the-battle-of-the-hyper-giants-part-i-2/>”.
>>>
>>> With enough global data, you can actually see the traffic drop when the
>>> shutdown occurs. Based strictly on the traffic rates it appears that the
>>> shutdown started just after 19:00 GMT on January 19, with traffic
>>> plummeting down over the next two hours. The graphic here shows three
>>> main client regions – Asia-Pacific, Europe, and the US.
>>>
>>> Over the past 24 hours, the top countries (in aggregate) using
>>> MegaUpload were the United States, France, Germany, Brazil, Great
>>> Britain, Turkey, Italy, and Spain, although dozens more countries are
>>> represented.
>>>
>>> As for the traffic drop off, we’re not the only ones to notice. As seen
>>> on Twitter <https://twitter.com/#!/andresmh/status/160112912487288832>,
>>> South America experienced a dramatic traffic drop
>>> <http://i.imgur.com/qlOtw.png> at about the same time, presumably due to
>>> this MegaUpload shutdown. Furthermore, we’re seeing reports of a fake
>>> MegaUpload site
>>> <https://twitter.com/#!/NeowinFeed/status/160188388631261184> that is
>>> supposedly a malware infection site.
>>>
>>> Friends of mine from elsewhere in the world have been joking that the
>>> Internet seems to be running a bit smoother today. That may be, given
>>> how much bandwidth appears to have been freed up.
>>>
>>> MegaUpload <http://www.flickr.com/photos/58693316@N00/6733525145/>
>>>
>>> _______________________________________________
>>> Seguridad mailing list
>>> Seguridad en lacnic.net
>>> https://mail.lacnic.net/mailman/listinfo/seguridad
>>
>>
>> -- 
>> Fernando Gont
>> SI6 Networks
>> e-mail: fgont en si6networks.com
>> PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492
>>
>>
>>
>> _______________________________________________
>> Seguridad mailing list
>> Seguridad en lacnic.net
>> https://mail.lacnic.net/mailman/listinfo/seguridad
> 


-- 
Fernando Gont
e-mail: fernando en gont.com.ar || fgont en si6networks.com
PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1






Más información sobre la lista de distribución Seguridad