Lots of sites down?

DJnVa

DJnVa

Dorito Dawg
SoSH Member
Dec 16, 2010
54,017
Is it just me or...

There's a number of sites that I normally visit that I can't get to open up today--for instance, amc.com just spins and doesn't open for me. I went to downforeveryone.com and it says it's up. I opened the app and it moves really slow and says the internet connection is down. If I type www.amc.com in my address bar it spins and then shows me the Google search page for amc. I can't load it on Firefox, IE, or Safari on my phone. And my phone isn't connected to wireless at this point, it's trying to use cellular data.

The same with the site I use for budgeting. It also has an app, and that app won't sync this morning.

There's a few other sites I use as well there this is happening.
 
dbn

dbn

Member
SoSH Member
Feb 10, 2007
7,785
La Mancha.
I'm going right now to buy as much bottled water, canned food, and ammunition that I can fit in my car.*


* I drive a TT, so that's not much. I'll probably be one of the first to go. Nice knowing all of you.
 
WoburnDiaspora

WoburnDiaspora

Member
SoSH Member
Dec 28, 2003
3,092
Wake Forest, NC
I was wondering when having so many sites located at one provider would cause problems. A DNS issue at Amazon Web Services takes down a large portion of the internet.
 
JimD

JimD

Member
SoSH Member
Nov 29, 2001
8,691
In addition to losing Twitter, I had my SoundCloud podcasting app just stop in the middle of a podcast this morning. I thought the app went bad and I'd have to re-install it, but I tried it again a short while ago and it's working fine again. Really sucked though since I was in the middle of my commute and couldn't search for an alternate app while I was driving.
 
Kenny F'ing Powers

Kenny F'ing Powers

posts way less than 18% useful shit
SoSH Member
Nov 17, 2010
14,472
Yep. My office IT sent out the following email:

"
XXX's external DNS vendor is experiencing a DDOS attack that is impacting services across XXX's Networks. This issue is impacting companies across the Eastern US.



The vendor is actively working to remediate the issue and we will provide an update as soon as we have more information.


Thank you,"
 
uncannymanny

uncannymanny

Member
SoSH Member
Jan 12, 2007
9,095
WoburnDiaspora said:
I was wondering when having so many sites located at one provider would cause problems. A DNS issue at Amazon Web Services takes down a large portion of the internet.
Click to expand...
It's not just AWS. I'm an engineer at Squarespace (platform is run our own hardware) and we've been having issues all day.
 
S

savage362

Member
SoSH Member
Apr 16, 2003
1,389
Vermont
The ad agency for one of my customers was affected but a couple of hours ago my customer reported that all relevant logs and security measures have been reviewed and we can return to normal operation. That was right around the time the second wave appears to have begun.
 
DJnVa

DJnVa

Dorito Dawg
SoSH Member
Dec 16, 2010
54,017
Some of the ones from this morning came up, but have now gone back down again.
 
Kenny F'ing Powers

Kenny F'ing Powers

posts way less than 18% useful shit
SoSH Member
Nov 17, 2010
14,472
savage362 said:
The ad agency for one of my customers was affected but a couple of hours ago my customer reported that all relevant logs and security measures have been reviewed and we can return to normal operation. That was right around the time the second wave appears to have begun.
Click to expand...
We were back, and then got a note from our IT team that a second DDOS attack occurred around 330PM.
 
Blacken

Blacken

Robespierre in a Cape
SoSH Member
Jul 24, 2007
12,152
It should be unnerving, but it's not exactly news. This has been going on for a decade at this point, and DNS has been a predictable weak link the entire time.

Google DNS (don't use OpenDNS, they're a shitty company) will help with some of the palliative measures they're employing around rebroadcasting for Dyn, but this is endemic to how the Internet works.

WoburnDiaspora said:
I was wondering when having so many sites located at one provider would cause problems. A DNS issue at Amazon Web Services takes down a large portion of the internet.
Click to expand...
It's not AWS and it's not sites at any of literally fifty-plus provider locations across thirteen regions at all, but sure, blather on, you're very smart.
 
dirtynine

dirtynine

Member
SoSH Member
Dec 17, 2002
8,418
Philly
Interesting - I normally use 8.8.8.8 and 8.8.4.4 but a switch to OpenDNS today seemed to help. I'll try to switch back tonight.

Anyway, thanks a bunch, Internet of Things! Very comforting that we're approaching an age where toasters and refrigerators can play a role in state-sponsored warfare.
 
Kenny F'ing Powers

Kenny F'ing Powers

posts way less than 18% useful shit
SoSH Member
Nov 17, 2010
14,472
Blacken said:
It should be unnerving, but it's not exactly news. This has been going on for a decade at this point, and DNS has been a predictable weak link the entire time.

Google DNS (don't use OpenDNS, they're a shitty company) will help with some of the palliative measures they're employing around rebroadcasting for Dyn, but this is endemic to how the Internet works.


It's not AWS and it's not sites at any of literally fifty-plus provider locations across thirteen regions at all, but sure, blather on, you're very smart.
Click to expand...
Did you ever work for Dyn? I know some folks over there.
 
Monbo Jumbo

Monbo Jumbo

Hates the crockpot
Lifetime Member
SoSH Member
Dec 5, 2003
25,234
the other Athens
Hacked Cameras, DVRs Powered Today’s Massive Internet Outage

...said the botnet used in today’s ongoing attack is built on the backs of hacked IoT devices — mainly compromised digital video recorders (DVRs) and IP cameras made by a Chinese hi-tech company called XiongMai Technologies. The components that XiongMai makes are sold downstream to vendors who then use it in their own products....
Click to expand...
 
crystalline

crystalline

Member
SoSH Member
Oct 12, 2009
5,771
JP
This sounds like the simplest explanation for the motivation:

https://krebsonsecurity.com/2016/10/ddos-on-dyn-impacts-twitter-spotify-reddit/

Security people working at Dyn just gave a talk about how DDoS mitigation firms have some ties to the criminal types that launch the DDOS attacks. A few weeks ago Krebs gave a similar talk and his firm got hit with a similar attack.

No surprise that the DDoS attackers don't like these guys and what they're talking about.

----



I'm looking forward to a world where every refrigerator has an IPV6 address on the public internet. Great.
In seriousness we probably need a regulator to step in and require randomized default admin passwords for all internet-connected devices. Apparently these compromised devices all shipped with the same default admin password.

Of course then you have to worry about entropy in the default passwords as attackers shift to guessing attacks.
 
NortheasternPJ

NortheasternPJ

Member
SoSH Member
Nov 16, 2004
19,329
Blacken said:
It should be unnerving, but it's not exactly news. This has been going on for a decade at this point, and DNS has been a predictable weak link the entire time.

Google DNS (don't use OpenDNS, they're a shitty company) will help with some of the palliative measures they're employing around rebroadcasting for Dyn, but this is endemic to how the Internet works.


It's not AWS and it's not sites at any of literally fifty-plus provider locations across thirteen regions at all, but sure, blather on, you're very smart.
Click to expand...
What's your issue with OpenDNS? How they treat employees? The fact they're part of Cisco now? or something about the technology?

Not sarcastic in anyway but I've not heard anything but good things about OpenDNS, know a bunch of people who work there and it seems to be the opposite of your opinion.
 
Blacken

Blacken

Robespierre in a Cape
SoSH Member
Jul 24, 2007
12,152
NortheasternPJ said:
What's your issue with OpenDNS?
Click to expand...
They are forfuckingever on my shit list for capturing NXDOMAINs and redirecting people to ad pages. I don't care that they no longer do it; you cannot under any circumstances scrub off that stain. They are scum that happily abused ignorant users and in a functioning culture nobody who ever worked for them would find a respectable job again.

I would sooner work for a spammer than OpenDNS.
 
NortheasternPJ

NortheasternPJ

Member
SoSH Member
Nov 16, 2004
19,329
That was actually the reason why I didn't use them for a few years, until they stopped doing it. It didn't bother me as much as ISPs, including Comcast (my ISP at the time) were doing it as well and they had no real revenue stream so it was not unusual.

I don't see it as that different as Google or anyone else providing you "free services" and selling off and mining everything they can about you. Free services aren't really free as you know. If you're using them then you're likely trading off paying for something for either an invasion of privacy, ad sales etc.

If you're talking about their Enterprise Level and redirecting NXDomains, then i agree. I didn't work with their commercial product then so I don't know if that existed at that point.
 
You must log in or register to reply here.
Top Bottom