【eroticism】Refreshing your browser made that huge DDoS attack seem much worse

While much of the internet was frantically trying to refresh their browsers on eroticismFriday, the folks at Dyn were facing a huge digital assault that appeared to be coming from just about everywhere.

Their servers were swamped and, because Dyn provides domain name services to many of the most popular sites on the internet, that's all the online community was talking about.

SEE ALSO: How an attack on a company you've never heard of crushed the internet

The attack -- known as a distributed denial of service (DDoS) -- was indeed bad. DDoS attacks are defined by a flood of "junk data" that clogs a specific site so legitimate users can't get through.

---

You May Also Like

---

---

Original image has been replaced. Credit: Mashable

Someone -- Dyn won't comment on who, but more on that later -- had hacked a significant number of video cameras and digital video recorders hooked up to the internet, and hurled that junk data at Dyn.

The domino effect left websites such as Twitter, Spotify and others sluggish or unreachable to the average user, so users naturally refreshed their pages again and again.

Mashable Trend Report Decode what’s viral, what’s next, and what it all means. Sign up for Mashable’s weekly Trend Report newsletter. By clicking Sign Me Up, you confirm you are 16+ and agree to our Terms of Use and Privacy Policy. Thanks for signing up!

That was all legitimate traffic, but according to a Wednesday post on Dyn's website, it was hard to distinguish legitimate from malicious traffic at the time. They thought they were defending themselves from something even greater, as many IP addresses generated 10 to 20 times their normal amount of traffic.

"When DNS traffic congestion occurs, legitimate retries can further contribute to traffic volume," Scott Hilton, the executive vice president of product at Dyn, wrote in Wednesday's post. "We saw both attack and legitimate traffic coming from millions of IPs across all geographies. It appears the malicious attacks were sourced from at least one botnet, with the retry storm providing a false indicator of a significantly larger set of endpoints than we now know it to be."

Original image has been replaced. Credit: Mashable

Dyn now estimates the attack came from around 100,000 "malicious endpoints," rather than millions as previously expected.

Though they're not saying who hacked the devices needed to mount the attack, Dyn and Flashpoint, a cybersecurity firm, have confirmed that the hackers used a malware known as Mirai to break into the cameras and DVRs.

Flashpoint hasn't confirmed a perpetrator either, but they have reason to believe the attack came from a hacker or group of hackers who just wanted to show off.

The cybersecurity firm found the attackers also hit a video game company while they were sending waves of junk data at Dyn, something that's not typical of a state actor or a group trying to steal money.

Instead, Flashpoint believes the hacker or the group is "likely connected to the English-language hacking forum community, specifically users and readers of the forum 'hackforums[.]net,'" a forum frequented by hackers who often launch similar types of attacks.

• relaxation
• recreation
• fashion
• hotspot
• synthesize
• explore
• focus
• knowledge

• ‘Okko’s Inn’: A Non
• Wordle today: Here's the answer and hints for July 19
• 'Minx' Season 2 review: Why in the world did Max cancel this?
• YouTube Premium and YouTube Music are now more expensive
• FandangObon and Encuentro This Weekend at JACCC
• Apple's iCloud KeyChain just got a lot more useful
• How to watch the Premier League Summer Series: The best streaming deals to tune in live
• Mark Zuckerberg, win this war with Elon Musk's Twitter
• ‘442’ Book Launch at Giant Robot 2
• Google is reportedly developing a journalism AI

• The biggest outer space moments of 2022
• Elon Musk's Twitter to face EU sanctions for 'arbitrary suspension of journalists'
• Twitter HQ is liquidating chairs, appliances, and other office supplies in a big auction
• Here's what went down during the FTX Congressional hearing
• 'Avatar: The Way of Water's' 3D high frame rate scenes, explained
• Major Tesla investor wants Elon Musk out as CEO
• 'Quordle' today: See each 'Quordle' answer and hints for December 20
• 'The White Lotus' Season 2 ending: All the clues in the opening credits
• Apple will allow third
• 'High on Life' won me over with its 'Tammy and the T

• Warner Bros. CEO Issues Apology Amid Allegation of Inappropriate Conduct
• Netflix password sharing restrictions are now global
• Netflix password sharing restrictions are now global
• Review: 'The Venture Bros.: Radiant Is the Blood of the Baboon Heart'
• Opening Reception for ‘Ibasho: Arts Activism in Little Tokyo’
• Wordle today: Here's the answer and hints for July 14
• How to get gum out of pubic hair
• Google Meet is testing AI
• JA Women Speak (JAWS) Presents ‘Seeds Of Our Grandmothers’ Dream’
• 'Quordle' today: See each 'Quordle' answer and hints for July 17

• Tales of Bronzeville
• 16 of the best podcasts for children and families
• Prime Day electric scooter deals: Razer, Segway, more
• The EU will require all smartphones to have replaceable batteries by 2027
• A Poetic Afternoon
• Mark Zuckerberg, win this war with Elon Musk's Twitter
• LIVE: Amazon Prime Day deals end today — 350+ Prime Day 2 deals still available
• Google slapped with a lawsuit for 'secretly stealing' data to train Bard
• Tea Afar: Jordan at James Irvine Garden
• 'Oppenheimer' features 'sex as only Nolan could stage it.' What does that mean?