NetTrends: The Other Y2K Problem -- Hacker Attacks

NetTrends: The Other Y2K Problem -- Hacker Attacks

By Dick Satran

SAN FRANCISCO (Reuters) - Billions of dollars have been spent to make sure the world's computers are ready for the year 2000 -- but hackers of all descriptions are going to try their best make them fail, security experts say.

With just a few months to go before computers' clocks change over to the new year, engineers are busy locking down systems whose code has been certified as free of the Y2K problem -- the inability to read the year in date-activated programs.

But some system managers may be ignoring another potentially serious problem posed by intruders who use the frenzy and confusion of the Y2K changeover as a cover for malicious attacks.

``The threat ranges from the pranksters -- people who celebrate the millennium by hacking a few computers -- to cyber-terrorists who want to bring modern civilization to its knees,'' said Constance Fortune, vice president for computer consultant Science Aplications International Corp.

The world's largest computer security company, Network Associates (http://www.nai.com), said it is launching a new campaign this week to publicize the threat with a new Web site that will list the potential dangers of Y2K hackers.

``Network administrators will be looking for system failures -- but not necessarily virus writers,'' said Sol Viveros, of Network Associates. ``We've started this initiative to let people know that they really do have to worry about this.''

When systems crash at the start of the year 2000, technicians are going to be quick to blame the Y2K problem, which is exactly the kind of vulnerability that malicious hackers love to exploit.

All crashes look alike, but the root causes differ dramatically. The teams assembled to manage computers through the rocky early days of the new year will probably be heavily weighted with systems experts who may not have much expertise on computer intrusions.

``You need people who recognize the signs of an attack, and who are trained to shut down the system as soon as possible when it hits,'' said Fortune.

As long as the system keeps running it can be released ''into the wild,'' and create a broader infection over the Internet. Outbreaks this year like the Melissa and Chernobyl viruses hit thousands of computers and caused millions of dollars worth of damage.

The Chernobyl virus, in particular, draws a parallel to the Y2K problem because it is a ``date-activated'' virus. A hacker created a program that was triggered when computer clocks hit the anniversary of the Soviet nuclear plant meltdown, one of the technology world's worst-ever disasters.

Y2K already appears to be inspiring a wave of hackers who like to create digital time bombs.

``We've been monitoring various virus-writing newsgroups (Internet bulletin boards) and we've seen quite a few postings, with people discussing the fact they plan on creating viruses that will begin striking during the millennium,'' said Network Associates' Viveros.

``We're already seeing lots of (Y2K hacker) postings,'' added SAIC's Fortune.

The programs that erase hard disk drives or cause system failures could be implanted deeply within a user's system, where the remain hidden from sight until the date change. Viveros said some systems managers may lock down their systems prematurely and miss the hidden invaders.

SAIC's Fortune said the programmers handling the heavy amounts of programming to fix Y2K problems may have left ''backdoor'' openings for hackers to enter.

One group reported to be targeting such openings is Streets, which first hit City of London financial district computers on June 18.

Space Rogue, editor of Hackernews (http://www.hackernews.com), an Internet-based service that reports on hacking exploits, said the threat of such attacks is probably overestimated because ``it requires a lot more knowledge than most people have.''

Rogue said that attacks are ``possible'' but the security industry is overplaying the threat to build up its own services. ``Fear sells,'' said the editor.

At Network Associates, Sol Viveros said it's important to raise the alarm because it reminds computer users to prepare for potential problems. A global alert helped dramatically reduce the impact of Melissa and other virus-type outbreaks this year. Once notified of a threat, system administrators can shut down their systems and run anti-virus software.

His company will be among the scores of software firms that will be celebrating new year's this year with round-the-clock surveillance of customers' computers, trying to spot threats before they cause too much damage.

``It all boils down to security awareness,'' said SAIC's Fortune.

(The NetTrends column appears weekly. If you have comments or questions, you can send e-mail to dick.satran(at)reuters.com.)

-- Off Topic Tom (let@it.die), September 05, 1999

Answers

Heck, if it works for Jennifer Aniston....

-- kritter (kritter@adelphia.net), September 05, 1999.

Tom, you are a true pioneer and I commend you. And I've never minded swiping from innovative people. Now some of my posts are sort of techie and dry, but I'll rope in the readers with catchy if unrelated subject lines. First I think I'll use "Space Sluts in the Slammer."

-- Peter Errington (petere@ricochet.net), September 05, 1999.

Hackers have too much free time and too much malice.

I wish they would channel their energy and creativity into projects which would benefit the world.

But rebellion has its sinister calling, and dark hearts willingly comply.

Cyberspace, the final font fear.

-- Randolph (dinosaur@williams-net.com), September 05, 1999.

"Hackers have too much free time and too much malice."

Is it any surprise that most of them are under 18?

What's more frustrating about this hacking and terrorist fear/threat is that when the y2k bug does take it's tole, anti-doomers will blame it on hackers, and we'll never "be right".

But who cares when you think of it, what really matters is that we're prepared for serious disruptions, Y2K or hacker/terrorists.

-- Chris (%$^&^@pond.com), September 05, 1999.

Key phrase: Rogue said that attacks are ``possible'' but the security industry is overplaying the threat to build up its own services. ``Fear sells,'' said the editor.

Remember the anonymous hackers who testified with bags over their heads? Probably worked for Global Options or some other PRIVATE CIA type firm, lobbying for a piece of the anti-terrorism pie.

-- Linda (lwmb@psln.com), September 05, 1999.

Getting fit, getting exercise, building up strength, endurance, muscles, yes. Hacking off pounds, NO, not before Y2K! Gonna need every ounce of that blubber.

-- Y2K Whale (no@jenny.craig), September 05, 1999.

Well, it DID work because we all DID look......

"I said 'Don't look, Ethel!' but it was too late.

They call it he streak..."

Chuck

-- Chuck, a night driver (rienzoo@en.com), September 05, 1999.

I just noticed an interesting coincidence. In case anyone missed it, the Science Applications International Corp. that is heavily quoted in the article on hackers is the same firm the FAA says verified and validated the FAA's Year 2000 fixes:

http://www.fcw.com/pubs/fcw/1999/0719/web-faay2k-7-21-99.html

"FAA: All systems Y2K-compliant"

-- Linkmeister (link@librarian.edu), September 06, 1999.

Good catch Linkmeister. They are also heavily featured in this thread: Feds Prepare for Y2K Riots. There it quoted Robert Blitzer, who retired last November as head of the FBIs domestic counter-terrorism arm, and now consults on counter-terrorism at the Science Applications International Corporation in McLean, Virginia.

Nice system... set up a PRIVATE firm, employ a bunch of ex-FBI or other gov't types, then get them to do an "independent" analysis that says the FAA is compliant, or we need a big anti-terrorism budget.. or anything else you want. Nice system.

-- Linda (lwmb@psln.com), September 06, 1999.

Yep, Linkmeister... was just about to mention that... about SAIC.

"Fear sells." Sure does... just watch the major networks Nightly News programs.

And do recall... Y2K contingency planning includes "cyberterrorism."

*Sigh*

Diane

-- Diane J. Squire (sacredspaces@yahoo.com), September 06, 1999.

I think it was on G.North's site about a year ago that eventually TPTB would blame Y2K on "Cyberterroism" I think they've started...

I saw a show on TLC (or something) sunday that talked about the "new cyberwars" and how the grid could be taken down, phones could be taken out, etc, etc. It was weird. Like TBTB want to plant this seed in our minds so when/if anything happens, The People will all think "Boing...Remember that show, honey? I bet we're at war with those evil cyberterrorists..."

Propaganda to the Nth. How is it better to think we're at war than to think the computers messed up on their own (ie y2k)?

-- mar (derigueur2@aol.com), September 06, 1999.

How is it better to think we're at war than to think the computers messed up on their own (ie y2k)?

Ahhhh... let me count the ways....

CEO's off the hook.

Big Brother - no featherweight already - can get outraged and do the Incredible Hulk routine... snooping into anything they aren't already snooping into, and battering down doors to confiscate not only guns, but computers and any other valuables (like those Costco beans).

Not enough local authorities to handle the situation, so guess we will have to call in NATO or whomever.

Might have to put people in shelters (during which time their property can be seized or at least looted).

Anyone suspected of cyber or other type of terrorism probably could have all their assets seized. Of course just our visiting these websites where religion and WACO might come up is probably just cause. And thanks to Bill Gates BB knows your every footstep.

Ahhh yes... much better to have a war than short-sighted bungling.

-- Linda (lwmb@psln.com), September 06, 1999.

Question:

Who is Jennifer Aniston? On another site I read that she is really Diane J. Squire. We folks in the wild really want to know. Is this true?...

Best,,,,

-- Z1X4Y7 (Z1X4Y7@aol.com), September 06, 1999.