(flickr.com/consumerist)

U.S. officials are still convinced that continuing denial of service (DDoS) attacks against American banks by the Izz ad-Din al-Qassam Cyber Fighters are cover for state-sponsored cyber sabotage by Iran, according to a report in today's New York Times.

The Times reports that the U.S. doesn't believe the hacking group's repeated claim they are targeting banks because the anti-Islam video Innocence of Muslims hasn't been taken off the Internet:

But American intelligence officials say the group is actually a cover for Iran. They claim Iran is waging the attacks in retaliation for Western economic sanctions and for a series of cyberattacks on its own systems. In the last three years, three sophisticated computer viruses — called Flame, Duqu and Stuxnet — have hit computers in Iran. The New York Times reported last year that the United States, together with Israel, was responsible for Stuxnet, the virus used to destroy centrifuges in an Iranian nuclear facility in 2010.

The U.S. has good reason to suspect state sponsorship. The al-Qassam cyber attacks have used compromised cloud computing services, which they infect with a malware package called "Itsoknoproblembro."

The malware turns infected servers into what researchers call "bRobots." Funny as the name might be, bRobots are serious business. A hacked data center filled with bRobots gives the attackers enough firepower to take down even the largest websites. As the Times reported, one bank with a substantial 40 gigabit Internet service was easily knocked offline, and others reported DDoS traffic peaks of up to 70 gigabits.

On Tuesday, the Izz ad-Din al-Qassam Cyber Fighters published a new post on Pastebin in which they said the attacks will continue. They offered a complex set of equations related to the current views and likes of Innocence of Muslims and wrote that the reasoning in allowing the video to remain on the web was "the result of direct role of Satan and evil shadow in Zionism spirit and approach of thinking."

As of Wednesday morning, the top four sites on "outage watch" at Site Down were Bank of America, Citibank, Capital One and Fifth Third Bank.

This guy is everywhere now. (Image Devdsp on Flickr)

Analysis of the DDoS tools used in cyber attacks on American banks by religiously-motivated hackers Izz ad-Din al-Qassam Cyber Fighters indicates a "well-funded" effort, according to security experts.

As reported by CSO Online, analysts at security firm Prolexic Technologies were able to identify the DDoS toolkit "itsoknoproblembro" as the software behind attacks against Bank of America, Chase Bank, Wells Fargo and PNC.

It may have a hilarious name, but "itsoknoproblembro" is serious business:

The "itsoknoproblembro" toolkit is capable of simultaneously attacking components of a website's infrastructure and application layers, flooding the targets with sustained traffic peaking at 70 gigabits per second. In addition, Prolexic found that traffic signatures were unusually complex and therefore difficult to reroute away from the targets.

The vendor, which declined to name the banks whose sites it tracked, said the attackers likely spent months probing the sites for the components most susceptible to a DDoS assault. They also were knowledgeable in the technology used to mitigate such attacks.

The CEO of Prolexic told CSO Online that these were "on the level of a Stuxnet type of attack."

Stuxnet was a remarkable cyberespionage tool, reportedly jointly created by the U.S. and Israel, that struck a major blow to Iran's nuclear program in 2010.

Even though Iran and the Cyber Fighters have denied being behind last week's bank attacks, Prolexic found that "several large networks" of botnets were utilized in the attacks, indicating an operation beyond the resources of most small groups of independent attackers.