The Defense Staff has made it known that the down was due to "maintenance". Several investigative sources, reported by the Ansa agency, instead confirm the attack which, indeed, is still ongoing and is not limited only to Italy. Findings in Germany, where Nuremberg and Munich airports are reportedly targeted, and in Poland, with banks, universities and parliament being targeted by F. Q. | 11 MAY 2022 • • • • War in Ukraine - Europe and the US, Draghi admits the "diversity" of interests: "We are allies, but a preventive reflection is needed" • War in Ukraine, first interruption of gas flows "due to actions by Russian forces": at the Tarvisio junction -30% of supplies The Senate and Defense sites are unreachable, another series of web pages of institutions and companies targeted, a threat for the next few hours: "Maybe this is the beginning of the end". Russian hackers launch an attack on Italy and this time the action is not the work of criminal groups aiming at a ransom but comes from "Killnet", a militant pro-Russian collective that according to various experts is linked to the armed forces of the Federation. According to the Defense Staff, however, the inability to reach the site is due to "maintenance activities planned for some time". Several investigative sources, reported by the Ansa agency, instead confirm the attack which, indeed, is reiterated, is still ongoing and is not limited only to Italy: there would be evidence in Germany, where the airports of Nuremberg and Munich, and in Poland, with banks, universities and parliament as objectives. Furthermore, the same hackers of Killnet have published on Telegram a list of other targets that will be hit in the next few hours in those countries.
It is the same collective that claims "the attack on Italy" on its Telegram channels, publishing the list of hacked sites. Seven in all: in addition to that of the Senate - which returned to operation in the evening - and of Defense, there are the Institute of Advanced Studies of Lucca, which deals with digital technology, the Higher Institute of Health, the Kompass portal , a database that collects corporate information, Infomedix (a service company for healthcare companies) and the Italian Automobile Club. The attack, according to what has been reconstructed, is a DDos (Distributed Denial of service): the site is targeted by thousands of access requests that send it haywire and make it unreachable. Basically, a large amount of data is sent to the servers all at the same time, using multiple sources, so that the site is flooded with false requests that slow down or block its operation. These are actions that do not produce damage but disservices and which, therefore, do not compromise the IT infrastructure. And in fact, qualified sources reiterate, at the moment none of the targeted structures would have been compromised. The attack, confirmed by the Senate, did not result in damage to systems and no loss of data. In any case, the attack "is a very serious fact - writes on Twitter the member of the Copasir of Italy Viva Ernesto Magorno - It is necessary to react immediately because, unfortunately, the progress of the war between Russia and Ukraine risks going on for a long time and a cyber attack should be recognized as an act of terrorism ”. The National Cybersecurity Agency is already at work, which is in "close contact with the affected administrations to restore" the sites, "analyze the phenomenon" and "at the same time suggest the first suitable technical countermeasures". Even the Postal Police, with experts from the National Cybercrime Center for the Protection of Critical Infrastructures (Cnaipic) has launched a series of investigations to try to trace the servers from which the attack started. As for Italy, there are two messages that involve our country. The first is, in fact, the one containing the list of attacked sites; the second, on the other hand, is a direct threat that also involves Spain: “Mirai is coming to you. Perhaps this is the beginning of your end "write the hackers. Mirai, qualified sources explain, is a 'botnet', a network of compromised computers that could be used for further attacks. And that the action has not been completed is also confirmed by a message posted at 3 am last night by the hackers. It concerns the Eurovision underway in Turin and it is claimed that the portal for voting has been blocked. “You cannot vote online. Maybe it's all the fault of our DDOS attack ”. In reality, it would have been ascertained by those who are trying to understand the hackers' moves, what was put in place was only a minor attack, a way to test the systems with which to strike later. Rai also confirms that the platform has been targeted but, adds the deputy ttore of Rai1 Claudio Fasulo, “we did not find any critical issues, everything works regularly”.
Attack by Russian hackers on Italian sites: there are also those of the Senate and Defense. Claim the collective Killnet - Il Fatto Quotidiano