{"id":181015,"date":"2016-10-27T20:57:00","date_gmt":"2016-10-28T01:57:00","guid":{"rendered":"https:\/\/www.panix.com\/~msaroff\/40years\/2016\/10\/27\/we-are-doomed-3\/"},"modified":"2016-10-27T20:57:00","modified_gmt":"2016-10-28T01:57:00","slug":"we-are-doomed-3","status":"publish","type":"post","link":"https:\/\/www.panix.com\/~msaroff\/40years\/2016\/10\/27\/we-are-doomed-3\/","title":{"rendered":"We Are Doomed"},"content":{"rendered":"<div>It now appears that the recent hack against DYN was <a href=\"https:\/\/techcrunch.com\/2016\/10\/26\/dyn-dns-ddos-likely-the-work-of-script-kiddies-says-flashpoint\/\">the work of script kiddies<\/a>.<\/div>\n<p>Heaven help us if the pros decide to do something like this:<\/p>\n<blockquote><p><span style=\"color: blue;\">Business risk intelligence firm FlashPoint has put out a preliminary analysis of <a href=\"https:\/\/techcrunch.com\/2016\/10\/21\/many-sites-including-twitter-and-spotify-suffering-outage\/\">last week\u2019s massive denial of service attack against Dyn DNS<\/a>, and its conclusion is it was likely the work of amateur hackers \u2014 rather than, as some had posited, state-sponsored actors perhaps funded by the Russian government. <\/p>\n<p>The DDoS attack against Dyn\u2019s domain name system impacted access to a range of sites in parts of the U.S. last Friday, including PayPal, Twitter, Reddit, GitHub, Amazon, Netflix, Spotify and RuneScape. <\/p>\n<p>Aside from suspicion falling on Russia, various entities have also claimed or implied responsibility for the attack, including a hacking group called the New World Hackers and \u2014 bizarrely \u2014 WikiLeaks, which put out a (perhaps joke) <a href=\"https:\/\/twitter.com\/wikileaks\/status\/789574436219449345\">tweet<\/a> suggesting some of its supporters might be involved. <\/p>\n<p>FlashPoint dubs these claims \u201cdubious\u201d and \u201clikely to be false\u201d, and instead comes down on the side of the script kiddies theory. <\/p>\n<p>Its reasoning is based on a few factors, including a detail it unearthed during its investigation of the attack: namely that the infrastructure used in the attack also targeted a well-known video game company. <\/p>\n<p>\u201cWhile there does not appear to have been any disruption of service, the targeting of a video game company is less indicative of hacktivists, state-actors, or social justice communities, and aligns more with the hackers that frequent online hacking forums,\u201d writes FlashPoint\u2019s Allison Nixon, John Costello and Zach Wikholm in their <a href=\"https:\/\/www.flashpoint-intel.com\/action-analysis-mirai-botnet-attacks-dyn\/\">analysis<\/a>.<\/span><\/p><\/blockquote>\n<p>This is going to get very ugly very fast.<\/p>\n<p>I might suggest that making sure that equipment manufacturers can be held liable for these sort of bone-headed vulnerabilities.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>It now appears that the recent hack against DYN was the work of script kiddies. Heaven help us if the pros decide to do something like this: Business risk intelligence firm FlashPoint has put out a preliminary analysis of last week\u2019s massive denial of service attack against Dyn DNS, and its conclusion is it was &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[],"tags":[767,768,897],"class_list":["post-181015","post","type-post","status-publish","format-standard","hentry","tag-computer","tag-fail","tag-security"],"_links":{"self":[{"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/posts\/181015"}],"collection":[{"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/comments?post=181015"}],"version-history":[{"count":0,"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/posts\/181015\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/media?parent=181015"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/categories?post=181015"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/tags?post=181015"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}