{"id":36189,"date":"2016-10-26T09:18:19","date_gmt":"2016-10-26T13:18:19","guid":{"rendered":"http:\/\/quotulatiousness.ca\/blog\/?p=36189"},"modified":"2016-10-26T09:18:19","modified_gmt":"2016-10-26T13:18:19","slug":"a-primer-on-last-weeks-iot-ddos-attacks","status":"publish","type":"post","link":"https:\/\/quotulatiousness.ca\/blog\/2016\/10\/26\/a-primer-on-last-weeks-iot-ddos-attacks\/","title":{"rendered":"A primer on last week&#8217;s IoT DDos attacks"},"content":{"rendered":"<p><a href=\"http:\/\/www.globalnerdy.com\/2016\/10\/25\/last-fridays-iot-botnet-attack-and-internet-outages-explained-for-non-techies\/\" target=\"_blank\">Joey DeVilla<\/a> provides a convenient layman&#8217;s terms description of last Friday&#8217;s denial of service attacks on Dyn:<\/p>\n<blockquote><div id=\"attachment_36190\" style=\"width: 610px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-36190\" src=\"http:\/\/quotulatiousness.ca\/blog\/wp-content\/uploads\/2016\/10\/October-DNS-attack-targets.png\" alt=\"A map of the parts of the internet affected by Friday\u2019s attack. The redder an area is, the more heavily it was affected.\" width=\"600\" height=\"377\" class=\"size-full wp-image-36190\" srcset=\"https:\/\/quotulatiousness.ca\/blog\/wp-content\/uploads\/2016\/10\/October-DNS-attack-targets.png 600w, https:\/\/quotulatiousness.ca\/blog\/wp-content\/uploads\/2016\/10\/October-DNS-attack-targets-150x94.png 150w, https:\/\/quotulatiousness.ca\/blog\/wp-content\/uploads\/2016\/10\/October-DNS-attack-targets-480x302.png 480w\" sizes=\"auto, (max-width: 600px) 100vw, 600px\" \/><p id=\"caption-attachment-36190\" class=\"wp-caption-text\">A map of the parts of the internet affected by Friday\u2019s attack. The redder an area is, the more heavily it was affected.<\/p><\/div>\n<p>If you\u2019ve been reading about the cyberattack that took place last Friday and are confused by the jargon and technobabble, this primer was written for you! By the end of this article, you\u2019ll have a better understanding of what happened, what caused it, and what can be done to prevent similar problems in the future.<\/p>\n<p>[&#8230;]<\/p>\n<div id=\"attachment_36191\" style=\"width: 810px\" class=\"wp-caption aligncenter\"><a data-id=\"36191\" href=\"https:\/\/www.hackread.com\/mirai-botnet-linked-to-dyn-dns-ddos-attacks\/\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-36191\" src=\"http:\/\/quotulatiousness.ca\/blog\/wp-content\/uploads\/2016\/10\/October-botnet-attack-simulation.gif\" alt=\"Hackread\u2019s animation of what happened last Friday. Click the image to see the source.\" width=\"800\" height=\"490\" class=\"size-full wp-image-36191\" \/><\/a><p id=\"caption-attachment-36191\" class=\"wp-caption-text\">Hackread\u2019s animation of what happened last Friday. Click the image to see the source.<\/p><\/div>\n<p>On Friday, October 21, 2016 at around 6:00 a.m. EDT, a botnet made up of what could be up to tens of millions of machines \u2014 a large number of which were IoT devices \u2014 mounted a denial-of-service attack on Dyn, disrupting DNS over a large part of the internet in the U.S.. This in turn led to a large internet outage on the U.S. east coast, slowing down the internet for many users and rendered a number of big sites inaccessible, including Amazon, Netflix, Reddit, Spotify, Tumblr, and Twitter.<\/p>\n<p>Flashpoint, a firm that detects and mitigates online threats, <a href=\"https:\/\/www.flashpoint-intel.com\/mirai-botnet-linked-dyn-dns-ddos-attacks\/\" target=\"_blank\">was the first to announce that the attack was carried out by a botnet of compromised IoT devices controlled by Mirai malware<\/a>. Dyn later corroborated Flashpoint\u2019s claim, <a href=\"http:\/\/hub.dyn.com\/dyn-blog\/dyn-statement-on-10-21-2016-ddos-attack\" target=\"_blank\">stating that their servers were under attack from devices located at millions of IP addresses<\/a>.<\/p>\n<p>The animation above is a visualization of the attack based on the devices\u2019 IP addresses and IP geolocation (a means of approximating the geographic location of an IP address; for more, <a href=\"http:\/\/stackoverflow.com\/a\/1996129\" target=\"_blank\">see this explanation on <em>Stack Overflow<\/em><\/a>). Note that the majority of the devices were at IP addresses (and therefore, geographic locations) outside the United States.<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"<p>Joey DeVilla provides a convenient layman&#8217;s terms description of last Friday&#8217;s denial of service attacks on Dyn: If you\u2019ve been reading about the cyberattack that took place last Friday and are confused by the jargon and technobabble, this primer was written for you! By the end of this article, you\u2019ll have a better understanding of [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":35193,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[15,13],"tags":[58,1030,334],"class_list":["post-36189","post","type-post","status-publish","format-standard","hentry","category-technology","category-usa","tag-internet","tag-internetofthings","tag-security"],"jetpack_featured_media_url":"https:\/\/quotulatiousness.ca\/blog\/wp-content\/uploads\/2016\/06\/favicon.png","jetpack_shortlink":"https:\/\/wp.me\/p2hpV6-9pH","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/posts\/36189","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/comments?post=36189"}],"version-history":[{"count":1,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/posts\/36189\/revisions"}],"predecessor-version":[{"id":36192,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/posts\/36189\/revisions\/36192"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/media\/35193"}],"wp:attachment":[{"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/media?parent=36189"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/categories?post=36189"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/tags?post=36189"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}