CERT: BitTorrent uTP Protocol Under Attack

The Computer Emergency Response Team (CERT) in Poland says that BitTorrent’s uTP protocol is under serious attack from unknown forces in Russia, Canada, China, Australia and the USA. The group, which monitors cyber attacks around the world, says that attacks on the BitTorrent protocol are up substantially from 2011.

The attacks work by sending fake data packages that appear to be legitimate, but use IP-addresses that are forged. CERT also notes that these attacks seem to be targeting specific BitTorrent swarms that are sharing Russian movie releases.

Some of those attacks may be coming from companies like the Microsoft-funded Russian start-up Pirate Pay, who use this sort of technique to "protect" its clients' intellectual property.

"At least one interest group that would benefit from uTP poisoning is easy to point at: multimedia companies and their subcontractors," notes CERT. "Conduction of this kind of campaign by these institutions wouldn’t be precedent. It’s also possible that generated traffic is used for BitTorrent network mapping and data gathering for later use in other projects."

The security group also points out that this practice may in fact violate current cybersecurity laws in various countries.

"[The attacks] produce visible disruption in IT systems and large amounts of our false-positive high-level alerts is a good proof," the group says. "In terms of Polish law, European Convention on Cybercrime and U.S. Codes (and probably many other sources of domestic law) legality of process producing the anomaly is questionable."

Source: TorrentFreak

Tweet about this on TwitterShare on FacebookShare on Google+Share on RedditEmail this to someone

Leave a Reply