Several websites, such as Twitter, Spotify, eBay and Reddit, were affected by a major DDoS cyberattack that affected most of the East Coast last week. The attack was targeted at Dyn, company that offers a platform to optimize websites’ online performance headquartered in New Hampshire. There were a total two attacks that took place within a few hours from each other.
Dyn’s DNS service acts like an address book for the internet, bridging human-readable domain names and IP addresses that the internet understands. The DDoS attack sent an overwhelming amount of lookup requests to the DNS to cause the network to crash. It’s possible that the attack was a part of a genre of DDoS attack that infects Internet of Things devices with malware and turns them into botnet armies to flood malicious traffic toward a target.
Dirty Cow is a silly name, but it’s a serious Linux kernel exploit. The name comes from a race condition in the way the Linux kernel’s memory subsystem handles copy-on-write (COW) breakage of private read-only memory mappings. The security hole allows an underprivileged local attacker to gain write access to otherwise read-only memory mappings and increase their privileges on the system.
Researchers are taking the flaw very seriously as it’s not difficult to develop exploits and this vulnerability is located in a section of the Linux kernel that’s a part of every distribution of open-sourced OS released in the last decade.
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.