Movatterモバイル変換

[0]ホーム
URL:

Jump to content
WikipediaThe Free Encyclopedia
Search

DDoS attacks on Dyn

From Wikipedia, the free encyclopedia
(Redirected from2016 Dyn cyberattack)
2016 cyberattack in Europe and North America
DDoS attacks on Dyn
Map of the areas most affected by the attacks,
16:45UTC, 21 October 2016.[1]
DateOctober 21, 2016 (2016-10-21)
Time11:10 – 13:20UTC
15:50 – 17:00 UTC
20:00 – 22:10 UTC[2]
LocationEurope andNorth America, especially theEastern United States
TypeDistributed denial-of-service
ParticipantsUnknown
SuspectsNew World Hackers,Anonymous
(self-claimed)

On October 21, 2016, three consecutivedistributed denial-of-service attacks were launched against theDomain Name System (DNS) providerDyn. The attack caused major Internet platforms and services to be unavailable to large swathes of users in Europe and North America.[3][4] The groupsAnonymous and New World Hackers claimed responsibility for the attack, but scant evidence was provided.[5]

As a DNS provider, Dyn provides to end-users the service of mapping an Internetdomain name—when, for instance, entered into aweb browser—to its correspondingIP address. Thedistributed denial-of-service (DDoS) attack was accomplished through numerous DNS lookup requests from tens of millions of IP addresses.[6] The activities are believed to have been executed through abotnet consisting of manyInternet-connected devices—such asprinters,IP cameras,residential gateways andbaby monitors—that had been infected with theMirai malware.

Affected services

[edit]

Services affected by the attack included:

Investigation

[edit]
White House spokespersonJosh Earnest responds on October 21, 2016, the day of the attack

TheUS Department of Homeland Security started an investigation into the attacks, according to aWhite House source.[30][31][32] No group of hackers claimed responsibility during or in the immediate aftermath of the attack.[33] Dyn's chief strategist Kyle York said in an interview that the assaults on the company's servers were very complex and unlike everyday DDoS attacks.[34]Barbara Simons, a member of the advisory board of the United StatesElection Assistance Commission, said such attacks could affectelectronic voting for overseas military or civilians.[34]

Dyn disclosed that, according to business risk intelligence firm FlashPoint andAkamai Technologies, the attack was abotnet coordinated through numerousInternet of Things-enabled (IoT) devices, includingcameras,residential gateways, andbaby monitors, that had been infected withMirai malware. The attribution of the attack to the Mirai botnet had been previously reported by BackConnect Inc., another security firm.[35] Dyn stated that they were receiving malicious requests from tens of millions ofIP addresses.[6][36] Mirai is designed tobrute-force the security on an IoT device, allowing it to be controlled remotely.

Cybersecurity investigatorBrian Krebs noted that the source code for Mirai had been released onto the Internet in anopen-source manner some weeks prior, which made the investigation of the perpetrator more difficult.[37]

On 25 October 2016, US President Obama stated that the investigators still had no idea who carried out the cyberattack.[38]

On 13 December 2017, the Justice Department announced that three men (Paras Jha, 21, Josiah White, 20, and Dalton Norman, 21) had entered guilty pleas in cybercrime cases relating to the Mirai and clickfraud botnets.[39]

Perpetrators

[edit]

In correspondence with the websitePolitico,hacktivist groups SpainSquad,Anonymous, and New World Hackers claimed responsibility for the attack in retaliation againstEcuador's rescinding Internet access toWikiLeaks founderJulian Assange, at theirembassy in London, where he had been grantedasylum.[5] This claim has yet to be confirmed.[5] WikiLeaks alluded to the attack onTwitter, tweeting "Mr. Assange is still alive and WikiLeaks is still publishing. We ask supporters to stop taking down the US internet. You proved your point."[40] New World Hackers has claimed responsibility in the past for similar attacks targeting sites likeBBC andESPN.com.[41]

On October 26, FlashPoint stated that the attack was most likely done byscript kiddies.[42]

On December 9, 2020, one of the perpetrators pleaded guilty to taking part in the attack. The perpetrator's name was withheld due to his or her age.[43]

See also

[edit]

References

[edit]
  1. ^"Level3 outage? Current problems and outages".downdetector.com. Retrieved23 October 2016.
  2. ^Dyn (26 October 2016)."Official Dyn Analysis Summary".dyn.com. Retrieved5 February 2019.
  3. ^Etherington, Darrell; Conger, Kate (21 October 2016)."Many sites including Twitter, Shopify and Spotify suffering outage".TechCrunch. Retrieved2016-10-21.
  4. ^"The Possible Vendetta Behind the East Coast Web Slowdown".Bloomberg.com. Retrieved2016-10-21.
  5. ^abcRomm, Tony; Geller, Eric (21 October 2016)."WikiLeaks supporters claim credit for massive U.S. cyberattack, but researchers skeptical".Politico. Retrieved22 October 2016.
  6. ^abNewman, Lily Hay."What We Know About Friday's Massive East Coast Internet Outage".WIRED. Retrieved2016-10-21.
  7. ^abcdefghHeine, Christopher (21 October 2016)."A Major Cyber Attack Is Hurting Twitter, Spotify, Pinterest, Etsy and Other Sites".AdWeek. Retrieved21 October 2016.
  8. ^Lovelace Jr., Berkeley (21 October 2016)."After cyberassault KOs Amazon, Twitter, Spotify, third attack reported".CNBC. Retrieved21 October 2016.
  9. ^abcdefghijklTurton, William."This Is Probably Why Half the Internet Shut Down Today [Update: It's Happening Again]".Gizmodo. Retrieved2016-10-21.
  10. ^abcdefghijklmnopqrstuChiel, Ethan."Here Are the Sites You Can't Access Because Someone Took the Internet Down".Fusion. Archived fromthe original on 22 October 2016. Retrieved21 October 2016.
  11. ^Chavez, Danette (21 October 2016)."Here's why half the internet went down today".The A.V. Club. Retrieved21 October 2016.
  12. ^abcMurdock, Jason (21 October 2016)."Twitter, Spotify, Reddit among top websites knocked offline by major DDoS attack".International Business Times UK. Retrieved21 October 2016.
  13. ^abcdefghijkMeyer, Robinson; LaFrance, Adrienne."What's Going On With the Internet Today?".The Atlantic. Retrieved2016-10-21.
  14. ^@TESOnline (21 October 2016)."We are still investigating intermittent login issues some players are experiencing across all megaservers" (Tweet) – viaTwitter.
  15. ^abcdefg"Massive web attacks briefly knock out top sites".BBC News. 21 October 2016.
  16. ^abcdThielman, Sam; Johnston, Chris (21 October 2016)."Major cyber attack disrupts internet service across Europe and US".The Guardian. Retrieved21 October 2016.
  17. ^Hinckley, Story (21 October 2016)."Did the East Coast just suffer a massive cyberattack?".Christian Science Monitor. Retrieved21 October 2016.
  18. ^abHughes, Matthew (21 October 2016)."A massive DDOS attack against Dyn DNS is causing havoc online [Updated]".The Next Web. Retrieved21 October 2016.
  19. ^ab"Having internet problems today? Here's what's going on".WJHG-TV. 21 October 2016. Retrieved21 October 2016.
  20. ^abcdChacos, Brad."Major DDoS attack on Dyn DNS knocks Spotify, Twitter, Github, PayPal, and more offline".PCWorld. Retrieved22 October 2016.
  21. ^Menn, Joseph (22 October 2016)."Cyber attacks disrupt PayPal, Twitter, other sites".Reuters. Retrieved23 October 2016.
  22. ^"DDoS Attack on DNS; Major sites including GitHub PSN, Twitter Suffering Outage".HackRead. 21 October 2016. Retrieved23 October 2016.
  23. ^"[RESOLVED] Unscheduled Maintenance". Archived fromthe original on 24 October 2016. Retrieved23 October 2016.
  24. ^abJoel Westerholm. "Så sänktes Twitter och Regeringen.se i attacken",Sveriges Radio, 24 October 2016. Retrieved 30 October 2016.
  25. ^"U.S. internet disrupted as firm hit by cyberattacks".CBS News. 21 October 2016. Retrieved21 October 2016.
  26. ^Lecher, Colin (21 October 2016)."Denial-of-service attacks are shutting down major websites across the internet".The Verge. Retrieved21 October 2016.
  27. ^Gallagher, Sean (21 October 2016)."DoS attack on major DNS provider brings Internet to morning crawl [Updated]".Ars Technica. Retrieved21 October 2016.
  28. ^Wolkenbrod, Rob (21 October 2016)."Why is the WWE Network Down on Friday, October 21?".Daily DDT. Archived fromthe original on 22 October 2016. Retrieved22 October 2016.
  29. ^Sarkar, Samit (21 October 2016)."Massive DDoS attack affecting PSN, some Xbox Live apps (update)".Polygon. Retrieved23 October 2016.
  30. ^Etherington, Darrell; Conger, Kate (21 October 2016)."Many sites including Twitter, Shopify and Spotify suffering outage".TechCrunch. Retrieved2016-10-21.
  31. ^"Government probes major cyberattack causing internet outages".Politico. Retrieved2016-10-21.
  32. ^Finkle, Jim; Volz, Dustin."Homeland Security Is 'Investigating All Potential Causes' of Internet Disruptions".Time. Retrieved2016-10-21.
  33. ^"Popular sites like Amazon, Twitter and Netflix suffer outages".money.cnn.com. CNN Money. 21 October 2016. RetrievedOctober 21, 2016.
  34. ^abPerlroth, Nicole; Mccann, Erin (2016-10-21)."No, It's Not Just You. The Internet Is (Still) Having Problems".The New York Times.ISSN 0362-4331. Retrieved2016-10-21.
  35. ^"Blame the Internet of Things for Destroying the Internet Today".Motherboard. Retrieved2016-10-27.
  36. ^Perlroth, Nicole (2016-10-21)."Internet Attack Spreads, Disrupting Major Websites".The New York Times.ISSN 0362-4331. Retrieved2016-10-22.
  37. ^Statt, Nick (October 21, 2016)."How an army of vulnerable gadgets took down the web today".The Verge. RetrievedOctober 21, 2016.
  38. ^CNN, 25 October 2016,Obama: We have no idea who carried out huge cyberattack
  39. ^Justice Department, 13 December 2017,Justice Department Announces Charges And Guilty Pleas In Three Computer Crime Cases Involving Significant Cyber Attacks
  40. ^Han, Esther (22 October 2016)."WikiLeaks claims its supporters are behind the massive DDoS cyber attack".The Sydney Morning Herald. Retrieved22 October 2016.
  41. ^Satter, Raphael; Fowler, Bree; Bajak (21 October 2016)."Cyberattacks on Key Internet Firm Disrupt Internet Services".The New York Times.ISSN 0362-4331. Archived fromthe original on 2016-10-25. Retrieved22 October 2016.
  42. ^Lomas, Natasha (26 October 2016)."Dyn DNS DDoS likely the work of script kiddies, says FlashPoint, so i guess that means anonymous did it, as most of anonymous are script kiddies anyway".TechCrunch. Retrieved26 October 2016.
  43. ^"Individual Pleads Guilty to Participating in Internet-of-Things Cyberattack in 2016".justice.gov. 9 December 2020. Retrieved7 January 2021.
Wikimedia Commons has media related toOctober 2016 Dyn cyberattack.
Hacking in the 2010s
Major incidents
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
Hacktivism
Groups
Individuals
Majorvulnerabilities
publiclydisclosed
Malware
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
Retrieved from "https://en.wikipedia.org/w/index.php?title=DDoS_attacks_on_Dyn&oldid=1309487174"
Categories:
Hidden categories:
[8]ページ先頭
©2009-2025 Movatter.jp