(This is Part III of The D Live Culture Series)
(Scroll to the bottom for the most recent updates!)
Much of the internet appears to be broken. And it’s all because of one cyber attack.
A distributed denial of service (DDoS) attack has taken down systems run by Dyn, Inc, one of the largest providers of internet services in the world. And as a result it seems to be causing problems for a variety of websites – including Reddit, Spotify and Twitter.
This story is developing…
UPDATE 1: from Gizmodo.com: “This Is Probably Why Half the Internet Shut Down Today [Update: It’s Getting Worse]“
Twitter, Spotify and Reddit, and a huge swath of other websites were down or screwed up this morning. This was happening as hackers unleashed a large distributed denial of service (DDoS) attack on the servers of Dyn, a major DNS host. It’s probably safe to assume that the two situations are related.
Update 12:28 PM EST: Dyn says it is investigating yet another attack, causing the same massive outages experienced this morning. Based on emails from Gizmodo readers, this new wave of attacks seems to be affecting the West Coast of the United States and Europe. It’s so far unclear how the two attacks are related, but the outages are very similar.
A list of websites that are currently down:
Here’s a list of websites that readers have told us they are having trouble accessing:
Squarespace Customer Sites
Starbucks rewards/gift cards
Wix Customer Sites
New York Times
Elder Scrolls Online
This is nuts eh? I blame the alt-right and video game culture.
Stay tuned for more updates!
UPDATE 2: Here’s a video about what’s going on:
UPDATE 3: A possible reason.
The attack on DYN comes just hours after DYN researcher Doug Madory presented a talk on DDoS attacks in Dallas, Texas at a meeting of the North American Network Operators Group (NANOG).
Cyber Warfare. Nerds can’t shoot a gun, so they hack instead.
Updates will continue!
Some think the attack was a political conspiracy, like an attempt to take down the internet so that people wouldn’t be able to read the leaked Clinton emails on Wikileaks. Others think it’s the usual Russian assault. No matter who did it, we should expect incidents like this to get worse in the future. While DDoS attacks used to be a pretty weak threat, we’re entering a new era.
Maybe we can go back to old-timey living like farms, buggy and carriage, and that can-and-string thing we used to talk through. Simpler times.
Shit is getting real.
More updates to come!
UPDATE 5 (sort of): A fellow blogger dropped this in the comments. This isn’t new as this video was released on October 18th. But this is new to me. After watching this it certainly helps us connect some dots.
What the heck is a DDoS attack anyway?
These complex and devastating problems are a result of multiple systems (botnets) target a single resource. This incoming traffic overwhelms that target, essentially shutting it down and preventing legitimate traffic from getting through. The target of today’s problem appears to be a major DNS (Domain Name Servers) Dyn. If your DNS can’t direct you to your favorite website, such as Pinterest or Etsy, then you’re not getting there.
UPDATE 6: October 21st, 2016
Put a marker down on this day. It is one to be remembered.
And what are DNS’s?
For those not in the know, a DNS or Domain Name Servers fundamentally act as the tool that sees through a user’s request to access any given webpage ensuring that the internet user reaches the right destination. If you clicked on this article via a Twitter link or on Google, the DNS host used by Hacked took care of your request to then facilitate your access to this page. If our DNS provider is down, we’re out of luck in trying to get you to visit this website. It’s a pretty big deal.
Now I’ve got a better idea of what is going on. If you have any updates drop them in the comments below.
I’ll keep updating this post as long as this story (and me) have steam.
UPDATE 7: The Russians! Red Dawn is upon us.
No one has claimed responsibility yet, says CNN. That hasn’t stopped the conspiracy theories from flying that Russia could be behind the attack or even that the United States perpetrated it in a “false flag” attack to blame Russia.
My bet is that it’s some shitlords just messing with us for the simple reason, because they can.
UPDATE 8: Big Brother hack
We may already know at least one method the hackers are using. According to security intelligence firm Flashpoint, their researchers have observed a Mirai botnet attacking Dyn…
…In previous incidents, botnets of more than 25,000 cameras have been used in attacks that often start in Asia, in particular China, South Korea, Taiwan, and Vietnam. One Chinese camera-maker appears to have accounted for nearly half of the camera bots used in recent DDoS attacks.
Also, here is an internet outage map as of 3:30 pm ET:
UPDATE 9: Twitter is back! – 4:36pm ET
Perhaps the attack is over. Can I come out of my bunker now?
UPDATE 10: The Internet of Things and How Our LG Fridges Will Kill Us All (not actual title)
The Internet of Things has been held up as the next big technology revolution that will lower business costs and make employees more productive, but it brings with it major baggage for corporate leaders.
Cybersecurity experts warn that IoT is one of the most vulnerable areas in the enterprise, and massive IoT device armies are one of the most effective ways to launch cyberattacks.
DDos attacks like this are really just the beginning
Only the beginning. Right, sure. Like our toasters are gonna come after us for all those times we burnt our poppy seed gluten free bagels.
Right now, civilization seems to be on the losing side, as researchers with Akamai say as many as two million devices have been taken over by hackers. And since most devices are designed to be left alone after being set up, it’s almost impossible for an average user to know their device has been compromised.
“There was an expectation with PCs that you would upgrade them over time, but there’s not that expectation with your toaster,” Matthew Prince, CEO of CloudFlare, told Business Insider. “Consumers and businesses are trained to install all of these devices and never think about them again. So if there is a vulnerability, getting those vulnerabilities fixed is the real challenge.”
We’re all dead.
UPDATE 11: It was the White Wizard!
“Heavily armed ‘police’ appear outside Ecuadorian Embassy in London where Julian Assange has political asylum.”
Wikileaks on DDoS: “We ask supporters to stop taking down the US internet”
Careful what you read folks. Nobody really knows what’s going on.
UPDATE 12: This is Just a Test
Hackers Claim Responsibility
Members of a shadowy hacker collective that calls itself New World Hackers claimed responsibility for the attack via Twitter. They said they organized networks of connected “zombie” computers that threw a staggering 1.2 terabits per second of data at the Dyn-managed servers.
“We didn’t do this to attract federal agents, only test power,” two collective members who identified themselves as “Prophet” and “Zain” told an AP reporter via Twitter direct message exchange. They said more than 10 member participated in the attack. It was not immediately possible to verify the claim.
Testing the power. Well I think they passed with flying colours. Internet security however, failed miserably.