In one of the most significant outages to ever hit the Internet, major sites including Twitter, Paypal, Netflix, Spotify, and Reddit were down today for many hours in what appears to be a major DDoS attack on DNS servers run by Dyn. Dyn has kept updates throughout the day at https://www.dynstatus.com/incidents/nlr4yrr162t8.
From the update page “On Friday October 21, 2016 at approximately 11:10 UTC, Dyn came under attack by a large Distributed Denial of Service (DDoS) attack against our Managed DNS infrastructure in the US-East region. Customers affected may have seen regional resolution failures in US-East and intermittent spikes in latency globally. Dyn’s engineers were able to successfully mitigate the attack at approximately 13:20 UTC, and shortly after, the attack subsided.
At roughly 15:50 UTC a second DDoS attack began against the Managed DNS platform. This attack was distributed in a more global fashion. Affected customers may have seen intermittent resolution issues as well as increased global latency. At approximately 17:00 UTC, our engineers were again able to mitigate the attack and service was restored.”
What’s amazing is how quickly these major sites were taken offline. Not small sites run by individuals but some of the biggest websites in the world. One would think there would be some redundancies in the DNS system to mitigate these types of attacks, but clearly that is not the case.
In an interesting twist, Wikileaks suggested in a Tweet that their supporters were behind the attacks. The Tweet read “Mr. Assange is still alive and WikiLeaks is still publishing. We ask supporters to stop taking down the US internet. You proved your point.”