Dyn a cloud-based DNS service under DDoS attack and took down major sites such as Twitter/Reddit/Spotify/Paypal and others

A massive DDoS (distributed denial-of-service) attack against a popular cloud-based DNS provider Dyn.COM took down major websites. The DYN.COM confirmed it on twitter:

Following sites are having issues due to DNS problems:

  1. Twitter
  2. SoundCloud
  3. Spotify
  4. Netflix
  5. Reddit
  6. Disqus
  7. PayPal
  8. Basecamp
  9. Business Insider
  10. CNN
  11. Esty
  12. Github
  13. Guardian.co.uk
  14. Imgur
  15. HBO Now
  16. Pinterest
  17. Recode
  18. The Verge
  19. Wired and more

You can verify NS with the following standard Unix command:
$ host -t ns twitter.com

twitter.com name server ns2.p34.dynect.net.
twitter.com name server ns1.p34.dynect.net.
twitter.com name server ns4.p34.dynect.net.
twitter.com name server ns3.p34.dynect.net.

From the official announcement:

This attack is mainly impacting US East and is impacting Managed DNS customers in this region. Our Engineers are continuing to work on mitigating this issue. Services have been restored to normal as of 13:20 UTC on 21/Oct/2016. But, I’m still seeing problems.

This DDoS attack may also be impacting Dyn Managed DNS advanced services with possible delays in monitoring. Our Engineers are continuing to work on mitigating this issue. — Oct 21, 2016 – 16:48 UTC

See the “DDoS Attack Against Dyn Managed DNS” update page for up to date information.

(Image credit)

In Category: Link

Vivek Gite

Vivek Gite, nixCraft creator, and professional Unix sysadmin/DevOps is obsessed with optimizing the servers and making sure data center stays online 24x7.

Show 4 Comments
  • Zsolt Pinter October 21, 2016, 6:14 pm
  • Raj October 21, 2016, 7:39 pm

    So this is a bad idea to use one dns for the Internet?

  • Charles October 24, 2016, 9:44 pm

    As a customer who suffered the outage, I’m considering setting up a secondary DNS infrastructure using AWS EC2 and BIND. Dyn would still be primary. Any thoughts?

    • Vivek Gite October 25, 2016, 8:24 pm

      Sounds like a good idea. Make sure TTL is set correct as well.

Leave a Comment