Bonum Certa Men Certa

Brute Force Cracking Attempts Against Techrights

Target: Manchester

Manchester



Summary: An aggressive effort to infiltrate our servers (125,000 times in one day, peaking at particular hours) considerably slowed down the Web site, in spite of overzealous filtering

Negative publicity is something that EPO (as in its management) simply cannot tolerate. Remember how negative paragraphs got removed from news articles after payments from the EPO.



Techrights has, a few times over the years*, come under attacks from numerous entities but at no point in its entire history has it come under the same sorts of attack it must deal with whilst writing about EPO abuses. We suspect there may be a strong correlation between the covered subjects and the willingness to silence the coverage. Almost 80% of our articles are about patents nowadays.

"In our eyes, it was always likely to have been someone connected to the EPO or someone who works there."Yesterday, as some people with special interest in the EPO told us, the site became unavailable. The volume of attacks on Techrights had gone up at around 11AM (G.M.T.) and at some point it doubled to around 50% of all traffic (it was around 25% of the traffic at 11AM). Brute force was being used to overcome our increasingly sophisticated filters, computationally trained and improved after previous such attacks.

Media articles coming from Germany correctly accuse the EPO of all sorts of things (and they cite Techrights), but all of them fail to mention that the EPO banned the whole site (for the first time ever). This in its own right is quite a scandalous thing. This kind of censorship we know about for sure, but we cannot confirm EPO role in the cyber-attacks. Some legitimate visitors (IP addresses) may accidentally get banned (barred from accessing Techrights) because the server is aggressively filtering traffic right now, in an effort to block the cracking attempts. We may have managed to drive away the attacker/s.

Of relevance to this issue are a few older article. Recall when SUEPO came under DDOS attacks (after and before SUEPO E-mails got altogether censored, meaning that a silencing campaign against unions was already well under way). Recall that Techrights came under DDOS attacks at around the same time (an especially sensitive time), leading to reasonable speculations. In our eyes, it was always likely to have been somebody connected to the EPO or someone who works there. For reasons explained here before, without legal action which compels law enforcement to check routers and zombie PCs (botnets), it is hard to know with high enough degree of certainty who commanders and orchestrates all this (the botmaster or script kiddie).

Let us assume that it's a deterrence tactic (against the author/Webmaster/system administrator), or an effort to make it harder for people to access the Web site. Looking back at this nuisance, which started late last year, first was potentially an attack on the Web site (to no avail because my daytime job involves dealing with exactly these types of scenarios and we patiently fought back by filtering any attacks), then blocking the entire site (Office-wide), which makes one wonder what can come next, given that EPO staff can still access the site (off duty).

It has been extremely hard to report abuse about the source of yesterday's attacks on Techrights because the hosting is provided by rogue domain with rogue SSL certificates (or none). It's incredibly hard to obtain contact details. This was a European cluster that attacked the site. Most of the cracking attempts against Techrights come from this same cluster of machines (with IP pool in Spain); we are talking about exceptionally frequent cracking attempts against the CMS (many hundreds of times per minute) and this bypasses caches and other basic defenses. If Techrights was ever forced into a CDN for supposed protection, no doubt there would be no true privacy for visitors. Without filtering, about one quarter of the traffic in Techrights would be cracking attempts, slowing the site down or taking it down for considerably long periods of time (not just seconds). Wonder who’s doing it? We sure wonder, but as people who do this for a living can tell, it's a hard question to answer, especially without access to servers and probably a warrant to legally delve into them.

If these attacks ultimately just try to hijack and deface the site (or obtain a list of visitors), then they aren't doing a very professional job. These must be just brute force login attempts -- many attempts at cracking, perhaps with a common passwords dictionary. Because it's done with brute force (as long as the server can still respond), it induces very high load, as a side effect; hence the server issues. This is similar to what SUEPO reported earlier this year, whereupon it filed a complaint with the authorities. ___ * The first time it happened we lost our Web host and the site was left orphaned, because the Web host was unable and unwilling to help us cope with a DDOS attack on a shared server.

Recent Techrights' Posts

Ubuntu Desktop Director of Engineering Has Only One Blog Post. It Promotes Microsoft Windows.
Remember that even 15 years ago (more or less, maybe 16 years ago) Canonical appointed a a 'former' Microsoft manager (Spencer) to lead Ubuntu on the desktop
IBM Red Hat on "era of cloud computing", pushing "hey hi" (AI) hype in Microsoft Azure
LLM slop might actually be more benign than Microsoft promotion
Corruption and Rule-Breaking Prevail at the European Patent Office (EPO), Europe's Second-Largest Institution
The law does not really exist at the EPO; it can be perceived as merely a "recommendation"
404 Media Says "Workers at NASA Told to Drop Everything to Scrub Mentions of Indigenous People, Women from Its Websites" But There's Also Accessibility in the Firing Line
In the case of abandoning accessibility, everyone stands to be hurt and proprietary software can be brought in to replace standards
 
Tons of Anti-Linux 'Articles' Published by Bots (LLMs), Maybe Microsoft's
Upon closer inspection, all this FUD turned out to be LLM garbage
Gemini Links 06/02/2025: Voicemail Sucks and Night of Lights
Links for the day
Links 06/02/2025: YouTube Takedowns Out of Control, 'DOGE' Breaking Laws
Links for the day
statCounter: More Countries Where Windows is Around 1% "Market Share" (People Have Moved to Android/Linux)
in some nations Windows is already 1% or less
When BetaNews Writes Real Articles About "Linux" They Promote Windows
The Web is in a bad state. We need to at least try to correct this.
Gemini Links 06/02/2025: Cynicism and "Real Magic on the C64"
Links for the day
Links 06/02/2025: New Sanctions, Layoffs, and Executive Orders
Links for the day
Distros and Desktop Environments, Devices
GNU/Linux focused
New Rumours of IBM Layoffs in 2025, IBM Consulting Still Struggles, Based on Management
"Hey hi" (AI) has been a common excuse for business failure
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, February 05, 2025
IRC logs for Wednesday, February 05, 2025
Links 05/02/2025: Kessler Syndrome and News Online
Links for the day
statCounter: Monaco Now 7% GNU/Linux ("Proper")
GNU/Linux, not counting Chromebooks, is on the rise
Many Parts of Google Lose Money
It's quite apparent that many parts of Google - even some that rely on ad revenue or push ads - aren't profiting
European Internet Forum (EIF) is Dominated by American Corporations and Microsoft Lobbyists, Staff Take the Lead
Should the officials over here or the European Parliament pay attention to these people?
Links 05/02/2025: Connection without Connectivity and Unionised Grocery Workers
Links for the day
Just Because People on Top of the Microsoft Pyramid Made a Lot of Money Doesn't Mean Microsoft is Wealthy
The bigger they are the harder they fall
Gemini Links 05/02/2025: Learning, Madman Ruling a Mad Country, Back in Geminispace
Links for the day
statCounter Shows "WIntel" Chasing a Dying Market
Microsoft acts as if it's running out of money
Free Software Foundation, Inc. (FSF) Still Raising Money, Richard Stallman Contributes
total exceeding $430k
A Lot of Stuff About "Linux" in Google News is LLM Slop, Fake 'Articles'
It seems to be getting worse
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, February 04, 2025
IRC logs for Tuesday, February 04, 2025
'Official' Debian Sites That Sell Proprietary and Surveillance
"Azure API throttling strikes back"
statCounter: Only 1 in ~40 Web Users in Ireland Uses Microsoft Browser, One in Six Uses Windows
When/if Windows market share goes down, so will Edge
Links 04/02/2025: Social Control Media Bans and US Fighting Its Allies, Not Russia
Links for the day
Links 04/02/2025: Birth of a Calf, FOSDEM, and More
Links for the day
Anti-Linux FUD Sites cybersecuritynews.com and gbhackers.com Turn Out to be LLM Slop, Even Plagiarism That Spreads Lies
Beware false headlines and fake text from cybersecuritynews.com and gbhackers.com
BetaNews Began Removing LLM Slop About "Linux", But More of It Keeps Coming From Guardian Digital, Inc (at linuxsecurity.com)
the other Serial Slopper, Guardian Digital, Inc
Mollamby, Suicide Cluster, not trademark, the real reasons for Debian legal expenses, evidence
Reprinted with permission from Daniel Pocock
Links 04/02/2025: Mass Layoffs at Salesforce, Economic Pressures, Trade Wars
Links for the day
The Latest Microsoft Layoffs Are a Wake-up Call: The Company is Running Low on Money
in most areas it is not even profitable
[Video] Richard Stallman Auctioning a GNU (Gnu) at Surathkal, India
clip is only a minute-long
Software Freedom Month at NITK Surathkal and Yesterday's Talk by Richard Stallman
the message being spread by the person who started it all
Richard Stallman Has Another Talk in India Tomorrow, at Least Fourth India Talk in Recent Days
In the past month he has given at least half a dozen talks
statCounter: GNU/Linux and ChromeOS Now Measured at 2.78% in Japan (It Used to be Less Than 0.5%)
really 'took off' half a decade ago
GNU/Linux Reaches All-Time High in the United States, Based on statCounter
Windows is the loser; GNU/Linux grows at its expense
LLM Hype (Chatbots Hyped and Wrongly Characterised as "Artificial Intelligence") Cause Net Inflation
Net as in Internet, not limited to the Web
It Looks Like BetaNews' Managing Editor Wayne Williams is Taking Over From Fagioli After Repeat Pattern of LLM Slop (State-of-the-Art Plagiarism) About "Linux"
The most plausible explanation is, Fagioli got caught or his conduct could no longer be ignored
statCounter Reckons Less Than 10% in Mexico Still Use Windows to Access to Web and GNU/Linux Surges to All-Time High (Plus, Microsoft's Latest Debt Crisis)
Looking at Mexico in isolation
From India to Italy: Richard Stallman's Next Talk is Next Week in Torino
Announced less than a day ago
Corporate Media is Intentionally Lying for Microsoft, There's Now a Hiring Freeze, No Replacements for Workers Laid Off in Two Mass Layoffs Last Month
Maybe the media - at least some of it - actually deserves doom. If it covers up for the powerful to muzzle and gaslight the oppressed, then what sort of media is that anyway?
Gemini Links 04/02/2025: Tolkien and New Job
Links for the day
Covering EPO Scandals in an Age of Mass Censorship (and Europe Being Afraid to Introspect, for It Might "Help Putin")
It was all along expected that "external enemies" would be invoked to suppress discussion about EPO crimes
Facebook Finally Admits That It Censored Linux and Banned People for Mentioning It; statCounter Shows Rapid Growth for GNU/Linux in Southeast Asia
So GAFAM is losing its power
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, February 03, 2025
IRC logs for Monday, February 03, 2025