I have seen several recent cases where social networking sites such as Facebook are being used to organize Telephony Denial of Service (TDoS) attacks. In one case, several Facebook pages and events were set up to communicate information such as techniques and phone numbers (DIDs), and then encourage all participants to call the numbers, to attempt to overwhelm the target. This isn't a new type of attack, but social networking makes it so much easier to coordinate the attack. Fortunately, these attacks are not super sophisticated yet, but can be over time. If the attackers start to coordinate distributed automated attacks, that could get really nasty.
Since the Facebook pages were events, they are no longer viewable. I did capture some screen shots, which are annotated provided below. There are a couple of other examples, which I will provide in later posts. I will wrap up by saying that SecureLogix is unique, in that we have solutions for these attacks, for both SIP and TDM networks.
Comments