时间:2024-09-20 09:11:13 来源:网络整理编辑:探索
On Friday, a massive distributed denial of services attack (DDoS) knocked out access to a number of
On Friday, a massive distributed denial of services attack (DDoS) knocked out access to a number of major websites. Although the incident appeared to target the U.S., its effects rippled out internationally.
While facts are still emerging, it seems the attack centred on Dyn, a domain name systems (DNS) provider that essentially acts like a phone book for major sites such as Twitter, Amazon, Tumblr, Reddit and Spotify.
The DDoS attack aimed a firehouse of traffic at the company, apparently making use of millions of insecure internet-connected devices like baby monitors, digital video recorders and smart fridges, rendering it unusable.
What's worse, all those Internet of Things (IoT) devices could have been located anywhere, including Australia.
SEE ALSO:Why hackers choose DDoS attacksAccording to a statement from Dyn's chief strategy officer Kyle York, the initial attack mainly impacted internet users on the East Coast of the U.S., however a second wave "was more global in nature."
There were reports of users unable to access sites in Europe, and according to the digital performance monitoring company Dynatrace, Australian sites affected included banks such as ANZ and Westpac, and supermarkets Coles and Woolworths, among others.
A Westpac spokesperson toldMashablethe company "did not experience any service impact." ANZ, Coles and Woolworths have been contacted by Mashablefor comment on Dynatrace's report.
"It also looks like Australia was impacted by all three of the US attacks," Dave Anderson, data expert at Dynatrace, told Mashablein an email.
"While not as severe as the US, Australian sites were definitely experiencing performance problems as a result of the DDoS attacks overnight. Of the sites we've monitored, we can see that the average DNS connect time spiked to about 8 seconds, when normally it would average 3 milliseconds."
Dyn opened a Sydney office in 2014 and has also been contacted by Mashablefor comment.
While he couldn't comment on the impact of the DDos attack in Australia, Liviu Arsene, senior analyst at internet security software company Bitdefender, told Mashableany type of internet infrastructure, regardless of its location, could be vulnerable to a similar attack.
"Why? It's pretty simple. You can use that massive botnet to disrupt anything," he explained. "We are so interconnected ... You can target two or three or four hubs, and you can really paralyse the global internet infrastructure, and that will cause a serious outage."
"It's pretty simple. You can use that massive botnet to disrupt anything."
Michael Sentonas, vice president of technology strategy at CrowdStrike, said Friday's event certainly had potential flow-on effects for online platforms around the world.
In the future, Australia can't count itself out as a target. "You can point fake junk traffic at any type of online target," he said. "There's no reason this could not be targeted at infrastructure in this part of the world."
So far, there has not been an incident on such a significant scale in Australia, although he suggested we saw a classic DDoS event as users tried to logon to complete the 2016 Census, an incident that allegedly cost Australian taxpayers A$30 million ($22.78 million).
After Friday, some experts have called for regulators to get involved and ensure smart devices with little or no security can't be turned into some sort of DDoS zombie army.
Sentonas suggested a balance must be found between IoT innovation and ensuring people aren't building insecure products. "Some of them don't have any capability to be updated and secured in an easy fashion," he pointed out. "That needs to change for obvious reasons."
"Something has to happen," he added. "We can't have a situation where devices with factory settings can be used to do what we saw on the weekend."
At the very least, consider this a PSA: If you own a smart fridge or baby monitor, change your password (if the manufacturer was smart enough to give you that option).
"I would recommend for the average user who has internet connected devices, is at least make sure they have the latest security update. At least make sure you change the default password," Arsene said. "We need to all make sure these smart devices cannot be used to disrupt services."
Aly Raisman catches Simone Biles napping on a plane like a champion2024-09-20 09:06
李瑋鋒頭號難題是讓廣州城找回自信 執教天海已展現能力2024-09-20 09:02
187球!9000萬帝星爆發,創3大紀錄,孔蒂甩利物浦5分,劍指冠軍2024-09-20 08:53
700萬歐元!穆裏尼奧引進6強援 ,劍指冠軍 ,米蘭二隊難逃連敗厄運2024-09-20 08:35
Tyler, the Creator helped Frank Ocean celebrate 'Blonde' release in a delicious way2024-09-20 07:55
國米關窗前再出鬧劇三巨頭分歧再也無法掩飾2024-09-20 07:09
記者 :主治醫師今日回訪伊布,檢查一切順利&康複進程按計劃進行2024-09-20 07:03
隊報:蓋耶由巴黎轉會埃弗頓事宜進展順利 ,仍有一些細節需要處理2024-09-20 06:52
Dog elected for third term as mayor of Minnesota town2024-09-20 06:31
斯基拉:尤文無意引進道格拉斯2024-09-20 06:29
This 'sh*tpost' bot makes terrible memes so you don't have to2024-09-20 08:55
泰晤士報 :巴黎關注坎特合同狀況 ,可能明夏尋求免簽2024-09-20 08:38
前拜仁球員 :德甲缺乏刺激感 ,拜仁應該離開德甲參加超級聯賽2024-09-20 08:20
歐文 :阿森納越來越接近曼城和利物浦 相信他們能打進前四2024-09-20 08:19
Man stumbles upon his phone background in real life2024-09-20 07:57
圖片報 :拜仁簽下日本中場新星福井太智,球員已隨二隊訓練2024-09-20 07:45
維埃拉 :加拉格爾現在是切爾西球員 對於引援我們有很清楚的認知2024-09-20 07:33
意天空:皮亞察重返薩格勒布迪納摩的交易告吹 ,球員將留在尤文2024-09-20 07:32
Ivanka Trump's unpaid interns share cringeworthy financial advice2024-09-20 07:09
意天空:皮亞察重返薩格勒布迪納摩的交易告吹,球員將留在尤文2024-09-20 06:48