A hacker attack has temporarily disabled online services servers of the Turin Polytechnic for a few hours.
What did happen? Was it a severe violation?
Let’s find it out together!
What did happen?
A series of cyber attacked hit the Turin Polytechnic authentication servers from several computers spread in the world on the evening 7th January 2021. The first intrusion attempt caused the halting of online authentication servers for about 15 minutes.
Hackers tried again at 10 am the following day targeting the app system of the Turin Polytechnic. They used a DDoS attack with the SYNFlood technique. At 10:50 am intruders targeted the network gate of the app system. This time, the hackers manage to block all online services of the university.
Other two attacks happened at 11:35 am and 14:15 pm, but security managed to mitigate in a short time. In particular, these two attempts limited to cause minor delays.
Let’s explore in detail this attack: there is indeed much confusion on the information you can find on the web. What did happen really?
First, our analysis should start from the attack type. DDoS (Distributed Denial of Service) indicates that the attacks against the Turin Polytechnic originated from many different systems. They increased traffic towards its servers so that hackers could interfere and halt online services.
Now, the technique. SYNFlood is a type of attack of the DoS genre.
It basically consists of sending of SYN packages from the malicious agent to server targeted. Once sent, they do not allow the connection between users and server.
Therefore, multiple systems have flooded the Turin Polytechnic servers malicious packages not to allow users to connect with its servers.
But why? Massive execution of SYN packages have overheated the servers with requests. Eventually, the server crushed. Thus, the authentication service halted.
Conclusion: attack to the Turin Polytechnic
To conclude, someone attacked the Turin Polytechnic. Should we worry about such an intrusion?
DDos and DoS attacks are usually harmless. Per se, they cause some minor disruptions, but nothing more. In brief, they just make a lot a noise, but no severe damage.
Sometimes, however, they are diversions. They could dress up most severe intrusions and leaks such as data theft and destruction.
Is that scenario unrealistic? Unfortunately, not.
The Turin Polytechnic is one of the most prestigious and leading Italian university. It has a world-class reputation and a cutting-hedge expertise in science and technology.
It is thus a prominent academic center holding sensitive and secret information with economical value.
However, we cannot exclude that some student performed the attack as a bravado, possibly to skip an exam.
In any case, a DDoS attack remains a security breach and should be treated as such.