2016 Dyn cyberattack on:
[Wikipedia]
[Google]
[Amazon]
On October 21, 2016, three consecutive
distributed denial-of-service attacks were launched against the
Domain Name System
The Domain Name System (DNS) is a hierarchical and distributed naming system for computers, services, and other resources in the Internet or other Internet Protocol (IP) networks. It associates various information with domain names assigned t ...
(DNS) provider
Dyn. The attack caused major Internet platforms and services to be unavailable to large swathes of users in Europe and North America.
The groups
Anonymous and New World Hackers claimed responsibility for the attack, but scant evidence was provided.
As a DNS provider, Dyn provides to end-users the service of mapping an Internet
domain name
A domain name is a string that identifies a realm of administrative autonomy, authority or control within the Internet. Domain names are often used to identify services provided through the Internet, such as websites, email services and more. As ...
—when, for instance, entered into a
web browser
A web browser is application software for accessing websites. When a user requests a web page from a particular website, the browser retrieves its files from a web server and then displays the page on the user's screen. Browsers are used o ...
—to its corresponding
IP address
An Internet Protocol address (IP address) is a numerical label such as that is connected to a computer network that uses the Internet Protocol for communication.. Updated by . An IP address serves two main functions: network interface ident ...
. The
distributed denial-of-service
In computing, a denial-of-service attack (DoS attack) is a cyber-attack in which the perpetrator seeks to make a machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a host conne ...
(DDoS) attack was accomplished through numerous DNS lookup requests from tens of millions of IP addresses.
The activities are believed to have been executed through a
botnet
A botnet is a group of Internet-connected devices, each of which runs one or more bots. Botnets can be used to perform Distributed Denial-of-Service (DDoS) attacks, steal data, send spam, and allow the attacker to access the device and its conn ...
consisting of many
Internet-connected devices—such as
printers
Printer may refer to:
Technology
* Printer (publishing), a person or a company
* Printer (computing), a hardware device
* Optical printer for motion picture films
People
* Nariman Printer ( fl. c. 1940), Indian journalist and activist
* Jam ...
,
IP camera
An Internet Protocol camera, or IP camera, is a type of digital video camera that receives control data and sends image data via an IP network. They are commonly used for surveillance, but, unlike analog closed-circuit television (CCTV) camera ...
s,
residential gateway
A residential gateway is a small consumer-grade gateway which bridges network access between connected local area network (LAN) hosts to a wide area network (WAN) (such as the Internet) via a modem, or directly connects to a WAN (as in EttH), wh ...
s and
baby monitor
A baby monitor, also known as a baby alarm, is a radio system used to remotely listen to sounds made by an infant. An audio monitor consists of a transmitter unit, equipped with a microphone, placed near to the child. It transmits the sounds by ...
s—that had been infected with the
Mirai malware.
Affected services
Services affected by the attack included:
*
Airbnb
Airbnb, Inc. ( ), based in San Francisco, California, operates an online marketplace focused on short-term homestays and experiences. The company acts as a broker and charges a commission from each booking. The company was founded in 2008 b ...
*
Amazon.com
Amazon.com, Inc. ( ) is an American multinational technology company focusing on e-commerce, cloud computing, online advertising, digital streaming, and artificial intelligence. It has been referred to as "one of the most influential econo ...
*
Ancestry.com
Ancestry.com LLC is an American genealogy company based in Lehi, Utah. The largest for-profit genealogy company in the world, it operates a network of genealogical, historical records, and related genetic genealogy websites.
In November 2018, ...
* ''
The A.V. Club
''The A.V. Club'' is an American online newspaper and entertainment website featuring reviews, interviews, and other articles that examine films, music, television, books, games, and other elements of pop-culture media. ''The A.V. Club'' was cre ...
''
*
BBC #REDIRECT BBC #REDIRECT BBC
Here i going to introduce about the best teacher of my life b BALAJI sir. He is the precious gift that I got befor 2yrs . How has helped and thought all the concept and made my success in the 10th board exam. ...
...
* ''
The Boston Globe
''The Boston Globe'' is an American daily newspaper founded and based in Boston, Massachusetts. The newspaper has won a total of 27 Pulitzer Prizes, and has a total circulation of close to 300,000 print and digital subscribers. ''The Boston Glob ...
''
*
Box
A box (plural: boxes) is a container used for the storage or transportation of its contents. Most boxes have flat, parallel, rectangular sides. Boxes can be very small (like a matchbox) or very large (like a shipping box for furniture), and can ...
* ''
Business Insider
''Insider'', previously named ''Business Insider'' (''BI''), is an American financial and business news website founded in 2007. Since 2015, a majority stake in ''Business Insider''s parent company Insider Inc. has been owned by the German pub ...
''
*
CNN
CNN (Cable News Network) is a multinational cable news channel headquartered in Atlanta, Georgia, U.S. Founded in 1980 by American media proprietor Ted Turner and Reese Schonfeld as a 24-hour cable news channel, and presently owned by ...
*
Comcast
*
CrunchBase
*
DirecTV
DirecTV (trademarked as DIRECTV) is an American multichannel video programming distributor based in El Segundo, California. Originally launched on June 17, 1994, its primary service is a digital satellite service serving the United States. I ...
* ''
The Elder Scrolls Online
''The Elder Scrolls Online'', abbreviated ''ESO'', is a massively multiplayer online role-playing game (MMORPG) developed by ZeniMax Online Studios and published by Bethesda Softworks. It was released for Windows and OS X in April 2014. It is a ...
''
*
Electronic Arts
Electronic Arts Inc. (EA) is an American video game company headquartered in Redwood City, California. Founded in May 1982 by Apple employee Trip Hawkins, the company was a pioneer of the early home computer game industry and promoted the ...
*
Etsy
Etsy, Inc. is an American e-commerce company focused on handmade or vintage items and craft supplies. These items fall under a wide range of categories, including jewelry, bags, clothing, home décor and furniture, toys, art, as well as craft ...
*
Evergreen ILS
*
FiveThirtyEight
''FiveThirtyEight'', sometimes rendered as ''538'', is an American website that focuses on opinion poll analysis, politics, economics, and sports blogging in the United States. The website, which takes its name from the number of electors in th ...
*
Fox News
The Fox News Channel, abbreviated FNC, commonly known as Fox News, and stylized in all caps, is an American multinational conservative cable news television channel based in New York City. It is owned by Fox News Media, which itself is owne ...
* ''
The Guardian
''The Guardian'' is a British daily newspaper. It was founded in 1821 as ''The Manchester Guardian'', and changed its name in 1959. Along with its sister papers ''The Observer'' and ''The Guardian Weekly'', ''The Guardian'' is part of the Gu ...
''
*
GitHub
GitHub, Inc. () is an Internet hosting service for software development and version control using Git. It provides the distributed version control of Git plus access control, bug tracking, software feature requests, task management, continu ...
*
Grubhub
Grubhub Inc. is an American online and mobile prepared food ordering and delivery platform. The company is based in Chicago, Illinois.
Founded in 2004, it is a subsidiary of the Dutch company Just Eat Takeaway since 2021. Grubhub has been crit ...
*
HBO
*
Heroku
Heroku is a cloud platform as a service (PaaS) supporting several programming languages. One of the first cloud platforms, Heroku has been in development since June 2007, when it supported only the Ruby programming language, but now supports Jav ...
*
HostGator
*
iHeartRadio
*
Imgur
Imgur ( , stylized as imgur) is an American online image sharing and image hosting service with a focus on social gossip that was founded by Alan Schaaf in 2009. The service has hosted viral images and meme, particularly those posted on Reddit ...
*
Indiegogo
*
Mashable
*
National Hockey League
The National Hockey League (NHL; french: Ligue nationale de hockey—LNH, ) is a professional ice hockey league in North America comprising 32 teams—25 in the United States and 7 in Canada. It is considered to be the top ranked professional ...
*
Netflix
Netflix, Inc. is an American subscription video on-demand over-the-top streaming service and production company based in Los Gatos, California. Founded in 1997 by Reed Hastings and Marc Randolph in Scotts Valley, California, it offers a fi ...
* ''
The New York Times
''The New York Times'' (''the Times'', ''NYT'', or the Gray Lady) is a daily newspaper based in New York City with a worldwide readership reported in 2020 to comprise a declining 840,000 paid print subscribers, and a growing 6 million paid d ...
''
*
Overstock.com
Overstock.com, Inc. is an American internet retailer selling primarily furniture headquartered in Midvale, Utah, near Salt Lake City. Businessman Patrick M. Byrne founded Overstock.com in 1999. The company initially sold exclusively surplus and ...
*
PayPal
PayPal Holdings, Inc. is an American multinational financial technology company operating an online payments system in the majority of countries that support online money transfers, and serves as an electronic alternative to traditional paper ...
*
Pinterest
Pinterest is an American image sharing and social media service designed to enable saving and discovery of information (specifically "ideas") on the internet using images, and on a smaller scale, animated GIFs and videos, in the form of pinboard ...
*
Pixlr
Pixlr is a cloud-based set of image editing tools and utilities, including a number of photo editors and a photo sharing service. It was acquired by Autodesk in 2011. The suite is intended from the range of simple to advanced photo editing. It ...
*
PlayStation Network
*
Qualtrics
Qualtrics is an American experience management company, with co-headquarters in Seattle, Washington, and Provo, Utah, in the United States. The company was founded in 2002 by Scott M. Smith, Ryan Smith, Jared Smith, and Stuart Orgill.
Qualtri ...
*
Quora
Quora () is a social question-and-answer website based in Mountain View, California. It was founded on June 25, 2009, and made available to the public on June 21, 2010. Users can collaborate by editing questions and commenting on answers that ...
*
Reddit
Reddit (; stylized in all lowercase as reddit) is an American social news aggregation, content rating, and discussion website. Registered users (commonly referred to as "Redditors") submit content to the site such as links, text posts, imag ...
*
Roblox
''Roblox'' () is an online game platform and game creation system developed by Roblox Corporation that allows users to program games and play games created by other users. Created by David Baszucki and Erik Cassel in 2004 and released i ...
*
Ruby Lane
* ''
RuneScape
''RuneScape'' is a fantasy massively multiplayer online role-playing game (MMORPG) developed and published by Jagex, released in January 2001. ''RuneScape'' was originally a browser game built with the Java programming language; it was lar ...
''
*
SaneBox
*
Seamless
Seamless may refer to:
* Seamless (company), an online food ordering company
* "Seamless", a 2015 song by Sabrina Carpenter from '' Eyes Wide Open''
* "Seamless", a song by American Head Charge from the 1999 album ''Trepanation'' and the 2001 alb ...
* ''
Second Life
''Second Life'' is an online multimedia platform that allows people to create an avatar for themselves and then interact with other users and user created content within a multi player online virtual world. Developed and owned by the San Fra ...
''
*
Shopify
Shopify Inc. is a Canadian multinational e-commerce company headquartered in Ottawa, Ontario. Shopify is the name of its proprietary e-commerce platform for online stores and retail point-of-sale systems. The Shopify platform offers online ret ...
*
Slack
*
SoundCloud
SoundCloud is an online audio distribution platform and music sharing website that enables its users to upload, promote, and share audio. Founded in 2007 by Alexander Ljung and Eric Wahlforss, SoundCloud is one of the largest music streaming s ...
*
Squarespace
Squarespace, Inc. is an American website building and hosting company which is based in New York City, USA. It provides software as a service for website building and hosting, and allows users to use pre-built website templates and drag-and-drop ...
*
Spotify
Spotify (; ) is a proprietary Swedish audio streaming and media services provider founded on 23 April 2006 by Daniel Ek and Martin Lorentzon. It is one of the largest music streaming service providers, with over 456 million monthly active us ...
*
Starbucks
*
Storify
*
Swedish Civil Contingencies Agency
The Swedish Civil Contingencies Agency ( sv, Myndigheten för samhällsskydd och beredskap, ) is a Swedish administrative authority, organised under the Ministry of Justice. The agency is responsible for issues concerning civil protection, public ...
[Joel Westerholm.]
Så sänktes Twitter och Regeringen.se i attacken
, Sveriges Radio, 24 October 2016. Retrieved 30 October 2016.
*
Swedish Government
*
Tumblr
Tumblr (stylized as tumblr; pronounced "tumbler") is an American microblogging and social networking website founded by David Karp in 2007 and currently owned by Automattic. The service allows users to post multimedia and other content to a sho ...
*
Twilio
Twilio () is an American company based in San Francisco, California, which provides programmable communication tools for making and receiving phone calls, sending and receiving text messages, and performing other communication functions using i ...
*
Twitter
Twitter is an online social media and social networking service owned and operated by American company Twitter, Inc., on which users post and interact with 280-character-long messages known as "tweets". Registered users can post, like, and ...
*
Verizon Communications
Verizon Communications Inc., commonly known as Verizon, is an American multinational telecommunications conglomerate and a corporate component of the Dow Jones Industrial Average. The company is headquartered at 1095 Avenue of the Americas in ...
*
Visa
Visa most commonly refers to:
*Visa Inc., a US multinational financial and payment cards company
** Visa Debit card issued by the above company
** Visa Electron, a debit card
** Visa Plus, an interbank network
*Travel visa, a document that allows ...
*
Vox Media
Vox Media, Inc. is an American mass media company based in Washington, D.C., and New York City. The company was established in November 2011 by Jim Bankoff and Trei Brundrett to encompass ''SB Nation'' (a sports blog network founded in 2005 b ...
*
Walgreens
Walgreen Company, d/b/a Walgreens, is an American company that operates the second-largest pharmacy store chain in the United States behind CVS Health. It specializes in filling prescriptions, health and wellness products, health information, a ...
* ''
The Wall Street Journal
''The Wall Street Journal'' is an American business-focused, international daily newspaper based in New York City, with international editions also available in Chinese and Japanese. The ''Journal'', along with its Asian editions, is published ...
''
*
Wikia
Fandom (formerly known as Wikicities before 2007 and later Wikia before 2019) is a wiki hosting service that hosts wikis mainly on entertainment topics (i.e. video games, TV series, movies, entertainers, etc.). Its domain is operated by Fandom, ...
* ''
Wired
''Wired'' (stylized as ''WIRED'') is a monthly American magazine, published in print and online editions, that focuses on how emerging technologies affect culture, the economy, and politics. Owned by Condé Nast, it is headquartered in San ...
''
*
Wix.com
Wix.com Ltd. ( he, וויקס.קום) is an Israeli software company, publicly listed in the US, that provides cloud-based web development services. It allows users to create HTML5 websites and mobile sites through the use of online drag and ...
*
WWE Network
WWE Network is a subscription video on-demand over-the-top streaming service and digital television
Digital television (DTV) is the transmission of television signals using digital encoding, in contrast to the earlier analog television t ...
*
Xbox Live
*
Yammer
Yammer () is an enterprise social networking service that is part of the Microsoft 365 family of products. It is used mainly for private communication within organizations but is also used for networks spanning various organizations. Access to ...
*
Yelp
Yelp Inc. is an American company that develops the Yelp.com website and the Yelp mobile app, which publish crowd-sourced reviews about businesses. It also operates Yelp Guest Manager, a table reservation service. It is headquartered in San F ...
*
Zillow
Zillow Group, Inc., or simply Zillow, is an American tech real-estate marketplace company that was founded in 2006, and was created by Rich Barton and Lloyd Frink, former Microsoft executives and founders of Microsoft spin-off Expedia; Spencer ...
Investigation
The
US Department of Homeland Security
The United States Department of Homeland Security (DHS) is the U.S. federal executive department responsible for public security, roughly comparable to the interior or home ministries of other countries. Its stated missions involve anti-terr ...
started an investigation into the attacks, according to a
White House
The White House is the official residence and workplace of the president of the United States. It is located at 1600 Pennsylvania Avenue NW in Washington, D.C., and has been the residence of every U.S. president since John Adams in ...
source.
No group of hackers claimed responsibility during or in the immediate aftermath of the attack. Dyn's chief strategist said in an interview that the assaults on the company's servers were very complex and unlike everyday DDoS attacks.
, a member of the advisory board of the United States
Election Assistance Commission, said such attacks could affect
electronic voting
Electronic voting (also known as e-voting) is voting that uses electronic means to either aid or take care of casting and counting ballots.
Depending on the particular implementation, e-voting may use standalone ''electronic voting machines'' ( ...
for overseas military or civilians.
Dyn disclosed that, according to business risk intelligence firm FlashPoint and
Akamai Technologies
Akamai Technologies, Inc. is an American content delivery networkJ. Dilley, B. Maggs, J. Parikh, H. Prokop, R. Sitaraman, and B. Weihl. (CDN), cybersecurity, and cloud service company, providing web and Internet security services. Akamai's Inte ...
, the attack was a
botnet
A botnet is a group of Internet-connected devices, each of which runs one or more bots. Botnets can be used to perform Distributed Denial-of-Service (DDoS) attacks, steal data, send spam, and allow the attacker to access the device and its conn ...
coordinated through numerous
Internet of Things-enabled (IoT) devices, including
camera
A camera is an optical instrument that can capture an image. Most cameras can capture 2D images, with some more advanced models being able to capture 3D images. At a basic level, most cameras consist of sealed boxes (the camera body), with a ...
s,
residential gateway
A residential gateway is a small consumer-grade gateway which bridges network access between connected local area network (LAN) hosts to a wide area network (WAN) (such as the Internet) via a modem, or directly connects to a WAN (as in EttH), wh ...
s, and
baby monitor
A baby monitor, also known as a baby alarm, is a radio system used to remotely listen to sounds made by an infant. An audio monitor consists of a transmitter unit, equipped with a microphone, placed near to the child. It transmits the sounds by ...
s, that had been infected with
Mirai malware. The attribution of the attack to the Mirai botnet had been previously reported by BackConnect Inc., another security firm. Dyn stated that they were receiving malicious requests from tens of millions of
IP address
An Internet Protocol address (IP address) is a numerical label such as that is connected to a computer network that uses the Internet Protocol for communication.. Updated by . An IP address serves two main functions: network interface ident ...
es.
Mirai is designed to
brute-force the security on an IoT device, allowing it to be controlled remotely.
Cybersecurity investigator
Brian Krebs
Brian Krebs (born 1972) is an American journalist and investigative reporter. He is best known for his coverage of profit-seeking cybercriminals.Perlroth, Nicole.Reporting From the Web's Underbelly. ''The New York Times''. Retrieved February 28, ...
noted that the source code for Mirai had been released onto the Internet in an
open-source manner some weeks prior, which made the investigation of the perpetrator more difficult.
On 25 October 2016, US President Obama stated that the investigators still had no idea who carried out the cyberattack.
On 13 December 2017, the Justice Department announced that three men (Paras Jha, 21, Josiah White, 20, and Dalton Norman, 21) had entered guilty pleas in cybercrime cases relating to the Mirai and clickfraud botnets.
Perpetrators
In correspondence with the website ''
Politico
''Politico'' (stylized in all caps), known originally as ''The Politico'', is an American, German-owned political journalism newspaper company based in Arlington County, Virginia, that covers politics and policy in the United States and intern ...
'',
hacktivist
In Internet activism, hacktivism, or hactivism (a portmanteau of '' hack'' and '' activism''), is the use of computer-based techniques such as hacking as a form of civil disobedience to promote a political agenda or social change. With roots in h ...
groups SpainSquad,
Anonymous, and New World Hackers claimed responsibility for the attack in retaliation against
Ecuador
Ecuador ( ; ; Quechua: ''Ikwayur''; Shuar: ''Ecuador'' or ''Ekuatur''), officially the Republic of Ecuador ( es, República del Ecuador, which literally translates as "Republic of the Equator"; Quechua: ''Ikwadur Ripuwlika''; Shuar: ' ...
's rescinding Internet access to
WikiLeaks
WikiLeaks () is an international non-profit organisation that published news leaks and classified media provided by anonymous sources. Julian Assange, an Australian Internet activist, is generally described as its founder and director and ...
founder
Julian Assange, at their
embassy in London, where he had been granted
asylum
Asylum may refer to:
Types of asylum
* Asylum (antiquity), places of refuge in ancient Greece and Rome
* Benevolent Asylum, a 19th-century Australian institution for housing the destitute
* Cities of Refuge, places of refuge in ancient Judea
...
.
This claim has yet to be confirmed.
WikiLeaks alluded to the attack on
Twitter
Twitter is an online social media and social networking service owned and operated by American company Twitter, Inc., on which users post and interact with 280-character-long messages known as "tweets". Registered users can post, like, and ...
, tweeting "Mr. Assange is still alive and WikiLeaks is still publishing. We ask supporters to stop taking down the US internet. You proved your point."
New World Hackers has claimed responsibility in the past for similar attacks targeting sites like
BBC #REDIRECT BBC #REDIRECT BBC
Here i going to introduce about the best teacher of my life b BALAJI sir. He is the precious gift that I got befor 2yrs . How has helped and thought all the concept and made my success in the 10th board exam. ...
...
and