22
hidden
7y

Lads, this DDoS attack on DYN is must be getting pretty bad, the Department of Homeland security just launched an emergency investigation into the source and apparently Amazon has started being interrupted

Comments
  • 3
    Going after DNS is a clever hack
  • 4
    @asgs, I agree that it was clever in that it allows maximum disruption with minimum effort, not clever in that it was a DDoS attack so it should be able to be fixed with more servers/ blocking IP's/ etc, however, with the sheer scale of it and the companies that were attacked I would have to say in my opinion at least no basic botnet run by script-kiddies or lizard squad type groups is going to be able to do this, it has be state backed, the question is who and why?
  • 1
    @hidden who and why are not easy questions to answer. I'm reading stuff like Russians doing a fire drill before election day, etc., As a dev, it doesn't really interest me in understanding the politics behind it.
  • 5
    @hidden script kiddies no, but give me a bot net I can do it , I'd need a weeks setup.

    Yeah most people don't have access to that much data transfer but nets of 10000 or more active PCs stand a very good chance of taking them offline . bare in mind there are ways of increasing data output by hundreds .
    It's more of what their internet connection is like to youd need less if it was Google gigabit a second .

    I'm surprised this doesn't happen more often
  • 2
    Keep in mind a record setting Botnet source just went open a few weeks ago making huge ddos attacks more accessible. We are right around the time experts said botnet sizes could range into the millions. Record attack was a few hundred thousand.
  • 0
    I don't remember the name of the software at the moment or I would provide it.
  • 0
    @avstuff you are talking about the one that targets iot devices?
  • 1
    @jckimble the one they are blaming is Mirai cause it was just released publicly eariler this month, but there is another one that works the same as Mirai called bashlight. if they would either catch them or if they would claim the attack we would know exactly what they are using for sure
  • 0
    @jckimble Marai, that's the one.
  • 0
    @avstuff yeah I'm probably going to download it later after I finish this project I'm working on
  • 0
    It's been confirmed that it's Wikileaks supporters that are causing the attack
  • 1
    I don't get what theyre trying to do though. Hold the whole internet at ransom? Or just DYN? Because there is no single "Internet" company to extort.
  • 3
    @hidden it was Russia all the way... The US govt just openly accused them of hacking the DNC and interfering in US elections so it was only a matter of time before they flexed their muscle. The Assange story provides good cover.
  • 2
    Technically if there's evidence that Russia hacked the DNC and provided Wikileaks with documents then they are "Wikileaks supporters" so I guess they aren't lying, I also suspect they won't openly say it was Russia as that would not be good as a cyber strike on the US from Russia would result in the US having to defend itself with a counter strike which could result in the situation escalating very quickly
  • 2
    @hidden there's actually plenty of evidence that Russia hacked the DNC, but at this point I can only speculate that they're also behind today's attacks
  • 2
    Oh I'm not denying that it was the Russians that hacked the DNC
  • 4
    This is so fascinating to read about. Its rather amazing how fragile the Internet infrastructure is
  • 2
    Wow wow let's not get Russians or wikileaks involved before any proof.

    It you have it post the link.
    Dyn has got it under control now: https://dynstatus.com/incidents/...
  • 0
    btw, the attack was 620gbps. Definitely not a scripting kiddie, but rather some *people* with a clear intention.
  • 0
    620Gbps is actually not that large.

    The DDoS against KrebsOnSecurity was larger, and OVH has seen already multiple DDoS's in the Tbps range this year.

    There's several companies able to do this, and offering those services for money.
  • 0
    Bottom line - the Internet has always been fragile to DDOS attacks root server corruption, fiber sabotage ...

    We all knew this type of DDOS attack was very possible and could easily be much worse in the near future. Pretty sure from seminars I attended in the past and the surge of IOT devices that 1m+ botnets are now lurking.

    The Internet needs to be hardened. Critical government and private services hang off the Internet. Lives and livelihoods depend on 24x7 availability.
    I know if the tech and business worlds pull together and focus on the severity of the issues they will be mitigated.
  • 0
    Found this today, thought I'd leave it here:

    https://google.com/amp/...
Add Comment