Английская Википедия:DDoS attacks on Dyn

Материал из Онлайн справочника
Перейти к навигацииПерейти к поиску

Шаблон:Short description Шаблон:Infobox event On October 21, 2016, three consecutive distributed denial-of-service attacks were launched against the Domain Name System (DNS) provider Dyn. The attack caused major Internet platforms and services to be unavailable to large swathes of users in Europe and North America.[1][2] The groups Anonymous and New World Hackers claimed responsibility for the attack, but scant evidence was provided.[3]

As a DNS provider, Dyn provides to end-users the service of mapping an Internet domain name—when, for instance, entered into a web browser—to its corresponding IP address. The distributed denial-of-service (DDoS) attack was accomplished through numerous DNS lookup requests from tens of millions of IP addresses.[4] The activities are believed to have been executed through a botnet consisting of many Internet-connected devices—such as printers, IP cameras, residential gateways and baby monitors—that had been infected with the Mirai malware.

Affected services

Services affected by the attack included:

Шаблон:Div col

Шаблон:Div col end

Investigation

Файл:Cyberattack Slows US Access to Popular Sites.webm
White House spokesperson Josh Earnest responds on October 21, 2016, the day of the attack

The US Department of Homeland Security started an investigation into the attacks, according to a White House source.[28][29][30] No group of hackers claimed responsibility during or in the immediate aftermath of the attack.[31] Dyn's chief strategist said in an interview that the assaults on the company's servers were very complex and unlike everyday DDoS attacks.[32] Barbara Simons, a member of the advisory board of the United States Election Assistance Commission, said such attacks could affect electronic voting for overseas military or civilians.[32]

Dyn disclosed that, according to business risk intelligence firm FlashPoint and Akamai Technologies, the attack was a botnet coordinated through numerous Internet of Things-enabled (IoT) devices, including cameras, residential gateways, and baby monitors, that had been infected with Mirai malware. The attribution of the attack to the Mirai botnet had been previously reported by BackConnect Inc., another security firm.[33] Dyn stated that they were receiving malicious requests from tens of millions of IP addresses.[4][34] Mirai is designed to brute-force the security on an IoT device, allowing it to be controlled remotely.

Cybersecurity investigator Brian Krebs noted that the source code for Mirai had been released onto the Internet in an open-source manner some weeks prior, which made the investigation of the perpetrator more difficult.[35]

On 25 October 2016, US President Obama stated that the investigators still had no idea who carried out the cyberattack.[36]

On 13 December 2017, the Justice Department announced that three men (Paras Jha, 21, Josiah White, 20, and Dalton Norman, 21) had entered guilty pleas in cybercrime cases relating to the Mirai and clickfraud botnets.[37]

Perpetrators

In correspondence with the website Politico, hacktivist groups SpainSquad, Anonymous, and New World Hackers claimed responsibility for the attack in retaliation against Ecuador's rescinding Internet access to WikiLeaks founder Julian Assange, at their embassy in London, where he had been granted asylum.[3] This claim has yet to be confirmed.[3] WikiLeaks alluded to the attack on Twitter, tweeting "Mr. Assange is still alive and WikiLeaks is still publishing. We ask supporters to stop taking down the US internet. You proved your point."[38] New World Hackers has claimed responsibility in the past for similar attacks targeting sites like BBC and ESPN.com.[39]

On October 26, FlashPoint stated that the attack was most likely done by script kiddies.[40]

A November 17, 2016, a Forbes article reported that the attack was likely carried out by "an angry gamer".[41]

On December 9, 2020, one of the perpetrators pleaded guilty to taking part in the attack. The perpetrator's name was withheld due to his or her age.[42]

See also

Шаблон:Portal

References

Шаблон:Reflist

Шаблон:Commons category Шаблон:Hacking in the 2010s

Партнерские ресурсы
Криптовалюты
Магазины
Хостинг
Разное

  1. Шаблон:Cite web
  2. Шаблон:Cite news
  3. 3,0 3,1 3,2 Шаблон:Cite web
  4. 4,0 4,1 Шаблон:Cite news
  5. 5,0 5,1 5,2 5,3 5,4 5,5 5,6 5,7 Шаблон:Cite web
  6. Шаблон:Cite news
  7. 7,00 7,01 7,02 7,03 7,04 7,05 7,06 7,07 7,08 7,09 7,10 7,11 Шаблон:Cite news
  8. 8,00 8,01 8,02 8,03 8,04 8,05 8,06 8,07 8,08 8,09 8,10 8,11 8,12 8,13 8,14 8,15 8,16 8,17 8,18 8,19 8,20 Шаблон:Cite web
  9. Шаблон:Cite web
  10. 10,0 10,1 10,2 Шаблон:Cite web
  11. 11,00 11,01 11,02 11,03 11,04 11,05 11,06 11,07 11,08 11,09 11,10 Шаблон:Cite news
  12. Шаблон:Cite tweet
  13. 13,0 13,1 13,2 13,3 13,4 13,5 13,6 Шаблон:Cite web
  14. 14,0 14,1 14,2 14,3 Шаблон:Cite web
  15. Шаблон:Cite web
  16. 16,0 16,1 Шаблон:Cite web
  17. 17,0 17,1 Шаблон:Cite web
  18. 18,0 18,1 18,2 18,3 Шаблон:Cite web
  19. Шаблон:Cite web
  20. Шаблон:Cite web
  21. Шаблон:Cite web
  22. 22,0 22,1 Joel Westerholm. "Så sänktes Twitter och Regeringen.se i attacken", Sveriges Radio, 24 October 2016. Retrieved 30 October 2016.
  23. Шаблон:Cite web
  24. Шаблон:Cite web
  25. Шаблон:Cite web
  26. Шаблон:Cite web
  27. Шаблон:Cite web
  28. Шаблон:Cite web
  29. Шаблон:Cite news
  30. Шаблон:Cite magazine
  31. Шаблон:Cite web
  32. 32,0 32,1 Шаблон:Cite news
  33. Шаблон:Cite news
  34. Шаблон:Cite news
  35. Шаблон:Cite web
  36. CNN, 25 October 2016, Obama: We have no idea who carried out huge cyberattack
  37. Justice Department, 13 December 2017, Justice Department Announces Charges And Guilty Pleas In Three Computer Crime Cases Involving Significant Cyber Attacks
  38. Шаблон:Cite news
  39. Шаблон:Cite news
  40. Шаблон:Cite news
  41. Шаблон:Cite web
  42. Шаблон:Cite web
Источник — http://wikihandbk.com/ruwiki/index.php?title=Английская_Википедия:DDoS_attacks_on_Dyn&oldid=14149371