Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: InfoSec Handlers Diary Blog - One year Anniversary of Dyn DDOS InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

One year Anniversary of Dyn DDOS

Published: 2017-10-20
Last Updated: 2017-10-21 03:57:20 UTC
by Rick Wanner (Version: 1)
0 comment(s)

Today,  October 21st, marks the one year anniversary of the DDOS attack on Dyn. The attack impacted Dyn's DNS service, and caused degradation, or inavailability of several popular websites, including amazon.com. Airbnb, BBC, CNN, Paypal and many others.  The attack was attributed to the Mirai botnet of compromised Internet of Things (IoT) devices, but despite numerous investigations, the attack was not definitively attributed to any one perpetrator or group.  It did, however, highlight the fragility of the underlying Internet infrastructure, and sent a lot of service providers on a quest to shore up their pieces of that infrastructure.

Typically I have seen combinations of a few approaches.  Somehave added extra capacity.  Others have added geo-redundancy. Still others have added or increased their ability to shed DDOS traffic.  

What, if any, has your ISP done to minimize the impact of a DDOS against its infrastructure?

-- Rick Wanner MSISE - rwanner at isc dot sans dot edu - http://namedeplume.blogspot.com/ - Twitter:namedeplume (Protected)

Keywords: ddos dns dyndns
0 comment(s)
Diary Archives