DDoS attack against US sites including Twitter, Spotify, and Netflix - Polidicks

isnt only for US, im getting this and im all the way in the middle east. truely a global one

[QUOTE=Kyle902;51240323] This DDos mainly affects americans[/QUOTE] Oh, I guess finnish netflix with nothing on it is still hosted in US. Das dum

No issues yet except for [url]http://dyn.com/[/url] being unreachable but that's kind of obvious. Can't wait for the cached DNS entries to expire.

Yeah twitter has been down for over an hour. I can still receive tweets from my twitter client though, can't post anything at all.

That's odd, I'm in Texas and I'm not having any DNS resolving issues for any of these sites.

[QUOTE=Valiantttt;51240062]The sites themself aren't down, the DNS server that is linking to these sites are down and that is why people outside the USA can access the sites. Major difference. Well unless you think that the USA is the world I guess.[/QUOTE] Thats ver batum what the article said though..?

Google DNS seems to be keeping a persistent cache. Find it weird more providers aren't using multiple root DNS.

[QUOTE=Map in a box;51240411]Google DNS seems to be keeping a persistent cache. Find it weird more providers aren't using multiple root DNS.[/QUOTE] Must still be regional, I'm on Google DNS and twitter/github aren't resolving for me :/

I really hope this isn't some major attack to get personnal information, I REALLY don't want to deal with this kind of bullshit

[QUOTE=Ninja Gnome;51240307]at least facepunch isn't down[/QUOTE] [t]http://i.imgur.com/QSUirI7.gif[/t] Facepunch is down, are you?

I was just on Netflix trying to finish Narcos, when it wouldn't load.

[QUOTE=DEMONSKUL;51240421]I really hope this isn't some major attack to get personnal information, I REALLY don't want to deal with this kind of bullshit[/QUOTE] Just because you can't access the sites doesn't mean that those managing it aren't still babysitting them. Knocking down a DNS server is only risky if someone plans to MITM it, which is no minor feat.

[QUOTE=DEMONSKUL;51240421]I really hope this isn't some major attack to get personnal information, I REALLY don't want to deal with this kind of bullshit[/QUOTE] [url=https://www.schneier.com/blog/archives/2016/09/someone_is_lear.html]It's probably just China.[/url]

I lost FP for a while, and still can't get to my work email. The outage map for the US looks pretty bad: [t]http://i.imgur.com/jdHgdKt.png[/t] There's now some issues appearing in Argentina too, which is odd but w/e

Pretty good chance this is connected to the Mirai botnet malware getting released recently. For those who don't know what Mirai is, it's an piece of malware that crawls the net seeking IoT devices, hijacking them, and then it wipes any security features and/or competing malware before joining the breached devices into a botnet. Less than a month ago Mirai was used against Brain Kreb's website with an over 600 Gb/sec DDOS attack, and in an attack on a French ISP that topped out at over 1 Tb/sec in traffic.

It's the DNSpocalypse 2016

[QUOTE=Trebgarta;51240613]When do we ban IoT again[/QUOTE] Never, just do the smart thing and get people to recognize their smart home shit can be logged in to and get them to CHANGE THEIR DAMN PASSWORDS. Literally the vast majority of vulnerable IoT devices are easy to breach due to default/embedded passwords.

[QUOTE=ScriptKitt3h;51240624]Never, just do the smart thing and get people to recognize their smart home shit can be logged in to and get them to CHANGE THEIR DAMN PASSWORDS. Literally the vast majority of vulnerable IoT devices are easy to breach due to default/embedded passwords.[/QUOTE] Here's the fucking thing YOU CAN'T FOR MOST OF THEM! Also here Comes the Regulation.

[QUOTE=ScriptKitt3h;51240624]Never, just do the smart thing and get people to recognize their smart home shit can be logged in to and get them to CHANGE THEIR DAMN PASSWORDS. Literally the vast majority of vulnerable IoT devices are easy to breach due to default/embedded passwords.[/QUOTE] IoT still has a ton of security issues even if we let out the fault of the user. Things like passwords should never stay on some default settings if the software would force people to change it during setup etc.

[QUOTE=OmniConsUme;51240628]Here's the fucking thing YOU CAN'T FOR MOST OF THEM! Also here Comes the Regulation.[/QUOTE] For some, yes. You cannot. But for the devices that support it, people need to do so. And yeah, at this rate stricter rules regarding device security are definitely in the pipeline for the near future.

[QUOTE=ScriptKitt3h;51240624]Never, just do the smart thing and get people to recognize their smart home shit can be logged in to and get them to CHANGE THEIR DAMN PASSWORDS. Literally the vast majority of vulnerable IoT devices are easy to breach due to default/embedded passwords.[/QUOTE] Just ban default creds in general.

[video=youtube;BcDZS7iYNsA]http://www.youtube.com/watch?v=BcDZS7iYNsA[/video] Not sure if im allowed to post videos but when i saw this post this exactly came to mind.

Twitter just got back up for me

work sites are back up too, along with the government timesheet thing I use to log my hours. Guess the attack is over? Interesting to see what the response to this is, and what exactly went down as we learn more.

So who has a guess where this originated from? I always find this shit fascinating. Scary as hell, but still fascinating.

That moment when you wake up from sleep when most of the outages are fixed

Isn't this the same type of attack someone(s) kept using recently to take out battle.net?

[QUOTE=Teddybeer;51240935][url]http://map.norsecorp.com/#/[/url] sort of show the attack are mostly coming and going to the US. And attacker Microsoft Corporation. Mostly at SMTP. [IMG]http://i.imgur.com/wbBR04O.gif[/IMG][/QUOTE] how strange. microsoft has considerable datacenters though, including a number located right in redmond. so looks like someone is borrowing their hardware for nefarious purposes? or could they just route through that way and obscure themselves a bit? [editline]21st October 2016[/editline] that livemap is offline now :v:

this is just warning to the west what will happen if they touch mighty Russia and China ...

Wikileaks twitter said it's being done by wikileaks supporters.