Twitter.com, NYTimes.com and more taken down in Syrian hack

The SEA strikes through DNS servers.

Hackers took down the New York Times, Twitter and Huffington Post websites overnight through a method known as DNS hijacking. Although the NYT's website is still down this morning, the rest appear to be back up, albeit with continued problems on some subsystems. The Syrian Electronic Army (SEA) hacking collective is obliquely claiming responsibility on Twitter.

The SEA is famous for finding novel entry-points into a company's online presence, and this is no different. Rather than hacking into the companies' servers directly, DNS hijacking allows an attacker to redirect the web address which normally points to the servers on which the site is stored.

Every server on the internet has a unique IP address, a 12-digit code which refers to its virtual location. But in order to avoid having to remember all these numbers, there's a second system which sits on top of IP addresses, which lets us type in the alphanumeric domain names we all know and love. When someone enters nytimes.com into their address bar, the browser looks up the domain name using a Domain Name System (DNS) server; that server then tells your browser what IP address the URL points to, the two computers connect, and everything works happily.

What happened overnight is that the SEA managed to break into the website of Melbourne IT, the company which the New York Times and others used to register those domain names. They then changed the records so that instead of pointing to the New York Times' website, the address pointed to theirs.

On the one hand, that's a lot less bad than it would be if the servers themselves were broken into. The New York Times continued to publish normally to their IP address, 170.149.168.130, and don't appear to have lost any data or sensitive information. On the other hand, the sites were still down, and the redirect still exposed users to potential security risks. For instance, it would be possible to build a passable version of a log-in page and steal a lot of passwords. When it comes to Twitter, one of the affected companies, the problems are even greater: the site has a lot of code embedded throughout the internet, in the form of tweet buttons and single-sign-in services. If the SEA had wanted, that could have been the beginning of a much more serious collection of hacks.

As it is, the group appears to have limited themselves to their normal operations, the digital equivalent of graffiti. Albeit graffiti in a very prominent place. But that it was so easy to take down the sites of such huge media organisations should give us all the shivers. The internet is a long way from secure, and some of the biggest problems left are fundamental to how the whole thing works.

What happens if you visit NYTimes.com

Alex Hern is a technology reporter for the Guardian. He was formerly staff writer at the New Statesman. You should follow Alex on Twitter.

Photo: Getty
Show Hide image

The science and technology committee debacle shows how we're failing women in tech

It would be funny if it wasn’t so depressing.

Five days after Theresa May announced, in her first Prime Minister’s Questions after the summer recess, that she was "particularly keen to address the stereotype about women in engineering", an all-male parliamentary science and technology committee was announced. You would laugh if it wasn’t all so depressing.

It was only later, after a fierce backlash against the selection, that Conservative MP Vicky Ford was also appointed to the committee. I don’t need to say that having only one female voice represents more than an oversight: it’s simply unacceptable. And as if to rub salt into the wound, at the time of writing, Ford has still not been added to the committee list on parliament's website.

To the credit of Norman Lamb, the Liberal Democrat MP who was elected chair of the committee in July, he said that he didn't "see how we can proceed without women". "It sends out a dreadful message at a time when we need to convince far more girls to pursue Stem [Science, Technology, Engineering and Mathematics] subjects," he added. But as many people have pointed out already, it’s the parties who nominate members, and that’s partly why this scenario is worrying. The nominations are a representation of those who represent us.

Government policy has so far completely failed to tap into the huge pool of talented women we have in this country – and there are still not enough women in parliament overall.

Women cannot be considered an afterthought, and in the case of the science and technology committee they have quite clearly been treated as such. While Ford will be a loud and clear voice on the committee, one person alone can’t address the major failings of government policy in improving conditions for women in science and technology.

Study after study has shown why it is essential for the UK economy that women participate in the labour force. And in Stem, where there is undeniably a strong anti-female bias and yet a high demand for people with specialist skills, it is even more pressing.

According to data from the Women’s Engineering Society, 16 per cent of UK Stem undergraduates are female. That statistic illustrates two things. First, that there is clearly a huge problem that begins early in the lives of British women, and that this leads to woefully low female representation on Stem university courses. Secondly, unless our society dramatically changes the way it thinks about women and Stem, and thereby encourages girls to pursue these subjects and careers, we have no hope of addressing the massive shortage in graduates with technical skills.

It’s quite ironic that the Commons science and technology committee recently published a report stating that the digital skills gap was costing the UK economy £63bn a year in lost GDP.

Read more: Why does the science and technology committee have no women – and a climate sceptic?

Female representation in Stem industries wasn’t addressed at all in the government’s Brexit position paper on science, nor was it dealt with in any real depth in the digital strategy paper released in April. In fact, in the 16-page Brexit position paper, the words "women", "female" and "diversity" did not appear once. And now, with the appointment of the nearly all-male committee, it isn't hard to see why.

Many social issues still affect women, not only in Stem industries but in the workplace more broadly. From the difficulties facing mothers returning to work after having children, to the systemic pay inequality that women face across most sectors, it is clear that there is still a vast amount of work to be done by this government.

The committee does not represent the scientific community in the UK, and is fundamentally lacking in the diversity of thought and experience necessary to effectively scrutinise government policy. It leads you to wonder which century we’re living in. Quite simply, this represents a total failure of democracy.

Pip Wilson is a tech entrepreneur, angel investor and CEO of amicable