Days ago in the post entitled "DDoS attack throws New York Times, Reddit, Twitter, Spotify & eBay” we announced the successful attack on company Dyn, an attack that brought the internet to its knees. The Internet of Things, or IOT, has proven to be just as dangerous as an attack from tens of millions of computers on the internet.
Although we still do not know all of the responses to the Dynasty Distributed Denial of Service attack (DDoS) that threw Dyn and its customers, we will be reported below.
First, the attack it should not be surprising. As Paul Mockapetris, author of the Domain Name System (DNS):
"The successful DDoS attack on DYN is just a new beginning in an ancient war. Κ Classic wars can be predicted and defended. But internet wars, just like in history, have changed. So, if we take a look at the asymmetric battle of the good guys (DYN) and the bad guys (Mirai botnets), we will realize that there will be more of these types of attacks. "
This new development came from the Internet of Things (IoT).
Surprise; Please…
We already knew that not only could it be used for attacks on networks, but also that it can be used to target the internet.
IoT device vendors should improve their safety and know it well.
Of course, ISPs and DNS providers have a large share of responsibility. Their failure to apply Network techniques income Filtering, Best Current Practice (BCP)-38 and response rate limiting (RRL) played a very large role in making the attacks happen.
Attacks were directed by one Mirai botnet. Kyle York Chief Strategy Officer of Dyn said:
“The nature and source of the attack is under investigation, but it was a sophisticated attack across multiple attack actors and sites on the internet. We can confirm, with the help of analysis from Flashpoint and Akamai, that one source of report traffic was from Appliances infected by the Mirai botnet. We observed tens of millions of distinct IP addresses that were part of the attack and connected to the Mirai botnet.”
The attack took place in three waves. York said:
“At 7:00 a.m. ET, Dyn started experiencing a DDoS attack. Not uncommon for the Network Operations Center (NOC) and the DDoS attack mitigation team. But it soon became clear that this attack was different. About two hours later, the NOC team was able to mitigate the attack and restore service to our customers. Following the restoration of the service, Dyn experienced a second wave of attacks shortly before noon ET. This second wave was global in nature (meaning it was not limited to addresses on the East Coast), but was limited to just over an hour. The service was restored at approximately 13:00 ET. "
Finally, "there was an attempt at a third attack, which we were able to mitigate successfully, without affecting our customers."
Thus ended the greatest DDoS attack of all time σήμερα to date.
As York concludes:
"Eternal vigilance is said to be the price of freedom. As a company and as individuals, we are committed to a free and open internet, which has been a source of innovation until today. We must continue to work together to make the internet a more resilient place to work, play and communicate. ”
If we do not, the Internet will fall…
