On 21st of October, i.e. Friday, some of the top known and frequently visited websites such as Twitter, Reddit and Netflix were not accessible on the East Coast of the United States. This was caused as a result of Malware attack on Dyn Inc., later it was also reported that the attacks were much more global and U.S were not the only one to be affected.
Dyn is a company that is used to provide web services for the above-mentioned sites including many other websites too. The Malware is called as Mirai, and it is considered to be so simple that any person without much experience will be able to launch DDoS attacks by taking over Internet-connected devices.
Network Operations Center (NOC) at the Dyn was quickly able to resolve this issue and the services were restored for the customers within two hours of the initial attack. (Attack was initiated around 7:00 am ET). The second attack was noticed by Dyn around noon ET and this attack was much more global and was not limited to the East Coast. Even this attack was soon mitigated and services were restored within an hour.
It was noted that around 10 percent of the nodes that make up the Mirai botnet was used for the attack, which was about half a million nodes. The Mirai bot consists of a large number of unsecured IoT devices which is nearly impossible to secure or update, such as security cameras. The attack on Friday was highly distributed attack and is said to have involved 10s of million of IP addresses.
Even worse, the source code for the Mirai is known to be existing on the dark web. All the insecure IoT devices along with the Mirai can only be just the beginning of the future attacks.