Internet of Shit takes down the Web


Kaum bin ich ein paar Tage nicht da, is' hier DDoS-per-Internet-of-Shit-Apocalypse: Böse Menschen haben offenbar den neulich erst veröffentlichten Sourcecode für IoT-Botnetze dazu genutzt, um gezielt den DNS-Provider Dyn lahmzuliegen (DNS/Domain Name System ist sowas wie ein Nachschlagewerk für URLs). Als Ergebnis waren viele der größten Websites in großen Teilen der USA über einen längeren Zeitraum nicht erreichbar, unter anderem: Twitter, Reddit, Github, Spotify, Amazon, AirBnB, CNN, Etsy, Guardian, Imgur, Paypal, Pinterest, Playstation Network, The Verge, Urbandictionary, Netflix, New York Times, BBC, Soundcloud, Squarespace, Recode, Wired, Yelp, Disqus, Wall Street Journal, Vox, Financial Times.

cyberBrian Krebs: Hacked Cameras, DVRs Powered Today’s Massive Internet Outage

Allison Nixon, director of research at Flashpoint, said the botnet used in today’s ongoing attack is built on the backs of hacked IoT devices — mainly compromised digital video recorders (DVRs) and IP cameras made by a Chinese hi-tech company called XiongMai Technologies. The components that XiongMai makes are sold downstream to vendors who then use it in their own products.

“It’s remarkable that virtually an entire company’s product line has just been turned into a botnet that is now attacking the United States,” Nixon said, noting that Flashpoint hasn’t ruled out the possibility of multiple botnets being involved in the attack on Dyn.

“At least one Mirai [control server] issued an attack command to hit Dyn,” Nixon said. “Some people are theorizing that there were multiple botnets involved here. What we can say is that we’ve seen a Mirai botnet participating in the attack.”