Widespread Cyber Attack on DNS Provider Takes Down Sites Worldwide

This is big news that recently happened.  There was a DDoS attack against Dyn …. a DNS provider impacting many websites including Twitter, Esy, Github, Vox, Spotify, Airbnb, Netflix and Reddit. Its scary to see malicious parties are targeting services like DNS verses specific targets for whatever goal they were aiming to achieve. Maybe one of the many websites impacted was the target while everybody else was caught in the crossfire?  This is why critical services such as DNS security is mission critical. You may want to consider Cisco OpenDNS. Its free for home use and wasn’t impacted by this attack. More on OpenDNS HERE.

CNN money posted the article below with a video covering this attack (Original  link found HERE to see the video).  The register also did a good article for more reading on this HERE.

Here is the CNN post …

A number of popular websites like Twitter and Netflix went down for some users on Friday in a massive cyberattack with international reach.

Dyn, which manages website domains and routes internet traffic, experienced two distributed denial of service attacks on its DNS servers. A DDoS attack is an attempt to flood a website with so much traffic that it impairs normal service.

“If you take out one of these DNS service providers, you can disrupt a large number of popular online services, which is exactly what we’re seeing today,” said Jeremiah Grossman, chief of security strategy at cybersecurity startup SentinelOne.

The massive outage drew the attention of the FBI which said Friday that it was “investigating all potential causes” of the attack.

Earlier Friday, White House Press Secretary Josh Earnest said the Department of Homeland Security was “monitoring” it.

Related: No, the presidential election can’t be hacked

Dyn said the attack started at 7 a.m., and was resolved later Friday morning. But issues continued, and by Friday afternoon, Dyn said it was investigating a third attack.

Initially, outages were primarily impacting those on the East Coast, but by midday Friday, people in Europe were reporting outages as well.

“We’ve never really seen anything this targeted [that] impacts so many sites,” said David Jones, director of sales engineering at software IT company Dynatrace. “Typically DDoS attacks are targeted at individual sites. DNS is like a phone book: this is like someone is attacking the phone company and burning all the phone books at the same time.”

No one has claimed responsibility for the attack yet. A government official said the U.S. is “looking at all possible scenarios including possible cyber activity.”

On Friday afternoon, WikiLeaks posted a tweet asking its supporters to stop the DDoS attacks, although it was not immediately clear if they were behind it.

A senior government official told CNN that the DDoS attacks “mainly have resulted only in the slowing down of internet access to various websites on the East Coast.” The official believes these attacks were very crude attempts. wikileak1Amazon Web Services was also experiencing connectivity issues on Friday around the same time as the Dyn attacks. AWS is used by more than 1 million companies, including GE (GE), News Corp (NWS). and Capital One (COF).

“These [DDoS attacks] take the form of precisely calibrated attacks designed to determine exactly how well these companies can defend themselves, and what would be required to take them down,” wrote security technologist Bruce Schneier in a blog post last month.

Leave a Reply

Your email address will not be published. Required fields are marked *

Time limit is exhausted. Please reload CAPTCHA.