Ranking by Failed Requests and Connection time,
March 1st - 31st 2006
Hostopia is the most reliable hosting company site this month, followed by Verio and iPowerWeb. This is the first appearance in our reliability rankings for Hostopia, which is based in Fort Lauderdale, Fla. and specializes in the wholesale hosting market, offering private-label web and application hosting plans for resellers.
This month's results showcase the reliability of the shared hosting sector, which traditionally offers the most affordable hosting. Three of the providers in the top 10 - iPowerWeb, Interland and MyHosting.com - offer hosting plans for less than $10 a month, while another five have entry-level accounts priced below $20. While price competition in recent years has tightened profit margins for many providers, hosting customers are finding that peak reliability and connectivity are more affordable than ever.
Three Linux sites are found in the top 10 this month, three on FreeBSD, two on Windows and two on Solaris.
Phishing scammers recently hacked the web sites of three Florida banks and redirected their customers to spoof pages, marking an apparent milestone in phishers' use of bank web sites to construct more credible frauds. Previous scams have managed to manipulate financial sites through cross-site scripting and cross-frame content injection, but didn't gain access to the server hosting the banks' site.
Not so for the attack on Capital City Bank, Wakulla Bank and Premier Bank in northern Florida. On March 14 hackers were able to break into the servers of ElectroNet, a Tallahassee, Fla. service provider which hosted the web sites for all three banks. The main business URL for the banks' were redirected to identical spoof sites on offshore servers, which asked customers to provide their login details.
World of Warcraft is experiencing lengthy downtime, and blaming its service provider for the outages. The virtual world, which now has more than 6 million users, also announced emergency maintenance outages overnight on a large number of game servers (known as "realms").
"We'd like to make all players aware that at this time our internet service provider is experiencing significant complications, and as a result the playability on a large portion of realms has been adversely affected," said a message from Epifanio, Senior Game Master, on the WoW forums.. "Symptoms include but are not limited to lag, random disconnections and slow authentication. Our network technicians are doing everything in their power to work with our ISP so that this issue may be resolved as swiftly as possible."
World of Warcraft is hosted by AT&T, which houses servers for the game at data centers in Los Angeles and Redwood City, Calif., and Ashburn, Va. The outages affected the worldofwarcraft.com web site as well as the game servers, as shown in our uptime chart:
A dynamically updating chart of World of Warcraft's web site performance is available here. Netcraft offers a web site performance monitoring service that provides similar charts, along with e-mail alerts when an outage occurs.
Several prominent weblogs have been hit with distributed denial of service (DDoS) attacks in recent weeks, as the target list for digital attackers continues to broaden. While some of the attacks appear to be politically motivated, on Monday a DDoS struck one of the blogosphere's most financially successful bloggers.
Australian Darren Rowse confirmed that an outage Monday on his ProBlogger weblog was caused by a DDoS, but provided no details about the attackers or their motives. Rowse gained international attention last year when he revealed that he would make more than $100,000 as a solo blogger in 2005, primarily through earnings from Google AdSense advertising and commissions from affiliate referral programs.
Has the success of professional bloggers made them viable financial targets for professional DDoS attackers? Sites with large volumes of transactions are the primary targets for a cottage industry of digital extortionists using DDoS attacks, usually launched through large botnets of compromised computers. These attacks have previously targeted online betting sites, payment gateways, domain parking services and even online games.
Payment gateway StormPay is recovering from a distributed denial of service attack (DDoS) that has kept its web site offline for much of the past two days. The company, which provides online payment processing for thousands of e-commerce web sites, came back online Friday after a sustained attack that commenced last weekend. The DDoS on StormPay is the latest in a series of attacks on services that allow web merchants to accept credit cards.
The attacks flooded StormPay with up to 6 gigabits a second of data, according to Barrett Lyon, chief technology officer of Prolexic Technologies, which specializes in DDoS defense and is working with StormPay to mitigate the attack. Lyon said the DDoS involved DNS amplification, using bogus DNS requests to cause Internet nameservers to inundate StormPay's web site with traffic. The impact can be seen on the performance chart for StormPay.com:
A dynamically updating performance chart is available for stormpay.com. Netcraft offers a web site performance monitoring service that provides similar charts, along with e-mail alerts when an outage occurs.
The company hosting the Million Dollar Homepage says an electronic attack was responsible for the extended outages earlier today. The distributed denial of service (DDoS) occurred as college student Alex Tew sold the final 1,000 pixels if his innovative ad service in an eBay auction for $38,100. The attack left the milliondollarhomepage.com site unreachable for large portions of the day, as seen in a performance chart for the site.
"The site received a major DDoS attack, and DDoS protection/prevention was not included in the customer's plan," Russell Weiss of InfoRelay Online Systems, Inc. wrote in an e-mail to Netcraft. "That said, we voluntarily took a number of steps to alleviate this attack while working within the appropriate budget." InfoRelay is the owner and operator of Sitelutions, which hosts the Million Dollar Homepage.
Tew has promised to keep the site online for at least five years. The DDoS attacks raise the prospect that operating milliondollarhomepage.com may prove more expensive than Tew originally envisioned. Tew will not be charged for any additional bandwidth consumed by the attack. But as Weiss noted, defense against DDoS attacks is typically a paid service not included with basic hosting accounts.