Major cyberattack knocks Twitter, Paypal, Spotify offline Friday
Not yet clear who is responsible for attack, but FBI is investigating
Cyberattacks targeting a little known internet infrastructure company, Dyn, disrupted access to dozens of websites on Friday, preventing some users from accessing PayPal, Twitter and Spotify.
Dyn, whose customers include some of the world's most widely visited websites, said it did not know who was responsible for the outages that began in the Eastern United States, then spread to other parts of the country and overseas.
- Syrian dissidents targeted by Iranian hackers, Citizen Lab report suggests
- Cyberattacks on infrastructure a 'major threat,' says CSIS chief
The outages were intermittent, making it difficult to identify all the victims. But technology news site Gizmodo named some five dozen sites that were affected by the attack. They included CNN, HBO Now, Mashable, the New York Times, People.com, the Wall Street Journal and Yelp.
Dyn said attacks were coming from tens of millions of internet-connected devices — such as webcams, printers and thermostats — infected with malicious software that turns them into "bots" that can be used in massive denial-of-service attacks.
The U.S. Department of Homeland Security last week issued a warning about this powerful new approach, noting it was concerned about the potential for new incidents after code for malware used in these crimes was published on the internet.
Dyn said late on Friday that it was fighting the third major wave of cyberattacks launched from locations spread across the globe, making them harder to fight.
"The complexity of the attacks is what's making it very challenging for us," said Dyn's chief strategy officer, Kyle York.
Services have been restored to normal as of 13:20 UTC.
—@Dyn
The U.S. Department of Homeland Security and the Federal Bureau of Investigation said they were investigating.
Fears of cyber threat
The disruptions come at a time of unprecedented fears about the cyber threat in the United States, where hackers have breached political organizations and election agencies.
Dyn said it had resolved one morning attack, which disrupted operations for about two hours, but disclosed a second a few hours later that was causing further disruptions.
Dyn said early on Friday that the outage was limited to the Eastern United States. Amazon later reported that the issue was affecting users in Western Europe. Twitter and some news sites could not be accessed by some users in London late on Friday evening.
PayPal Holdings Inc. said that the outage prevented some customers in "certain regions" from making payments. It apologized to customers for the inconvenience and said that its networks had not been hacked.
Amazon.com Inc.'s web services division, one of the world's biggest cloud computing companies, also reported a related outage, which it said was resolved early Friday afternoon.
Dyn is a Manchester, N.H.-based provider of services for managing domain name servers (DNS), which act as switchboards connecting internet traffic. Requests to access sites are transmitted through DNS servers that direct them to computers that host websites.
Dyn said it was still trying to determine how the attack led to the outage, but that its first priority was restoring service.
Attacking a large DNS provider can create massive disruptions because these companies are responsible for forwarding large volumes of internet traffic.
The upstream DNS incident has been resolved. We continue to monitor our systems while they deliver a backlog of webhook events.
—@githubstatus
Uh oh, we’re having some issues right now and investigating. We’ll keep you updated!
—@SpotifyStatus
Phew! Everything should be back to normal now. Let <a href="https://twitter.com/SpotifyCares">@SpotifyCares</a> know if you’re still having issues.
—@SpotifyStatus