Cyber Round Up: Double-Dip Internet of Things botnet attack felt across the internet; Cyberattacks disrupts Access to Facebook, Twitter, Netflix; WikiLeaks claims its supporters are behind the massive DDoS cyberattack

  • Double-Dip Internet of Things (IoT) botnet attack felt across the internet (ARSTechnica): In this article, Sean Gallagher states that distributed denial of service (DDoS) attacks against dynamic domain name service provider (DDNS) Dyn have been occurring for the past couple of days.  According to the article, part of this attack seems to have arisen from the code for the Marai botnet that was released earlier this month.  Apparently, the Marai botnet code had been used to leverage IoT devices in order to help launch this DDoS attack, according to the article.  This raises some serious concerns for IoT devices which often lack robust security as interoperability and ease-of-use are some of the primary market factors in adoption of IoT devices.  This will be an area to watch, no pun intended. The full text of the article can be found here.
  • Cyberattacks disrupt access to Facebook, Twitter, Netflix (ABC7News): Some of the direct effects of the DDoS attack described above were that users were unable to properly resolve the IP addresses of Twitter, Facebook, and Netflix (among others, of course), according to this report.  The article quotes Intel Security Chief Technology Officer Steve Grobman as saying “… anything that’s smart and connected that has vulnerability or a weakness could be compromised and then become part of the attack.”
  • WikiLeaks claims its supporters are behind the massive DDoS cyberattack (WA Today): according to the article, the massive DDoS attack which mainly affected US and European users was claimed to have been conducted by supporters of WikiLeaks.  This apparently came on the heels of remarks by Ms. Clinton that the email hacks and dumps of data filtered through WikiLeaks was undermining the US election process, according to the article.  The article indicates that WikiLeaks later tweeted that “Mr. Assange is still alive and WikiLeaks is still publishing. We ask supporters to stop taking down the US internet.  You proved your point.”  Apparently the latest email hack and dump which revealed the contents of some of Clinton’s Wall Street speeches precipitated the Ecuadorian government’s disruption of internet services at the London embassy where Assange is rumored to be hiding, according to the article.  The full text of the article is here.

Opinion: So all of these IoT devices which are exploding in worldwide adoption and have weak or nonexistent security controls (think the security through obscurity model) are now being used to wreak havoc on our daily lives?   Yet another reason why security needs to be baked in, not an afterthought and why a rush to market and ease of use are foolish reasons to flood the marketplace with products.  It will be interesting to see how the cost models hold up once liability begins to attach to manufacturers that put IoT devices in the marketplace knowing full well that they lacked even the most rudimentary accoutrement of security features. See the post: Input to the Commission on Enhancing National Cybersecurity, for a discussion of taking a “baked-in” approach to security with IoT devices.

Share:

Tags: , ,

Authors

Untitled Document
Professor William Snyder

Professor William C. Snyderis a member of the faculty of the Institute for National Security and Counter-terrorism at Syracuse University after fifteen years with the United States Department of Justice.

Ryan D. White

Ryan D. WhiteRyan is currently a third year law student at Syracuse University College of Law, and is also pursuing a Master of Public Administration degree from Syracuse’s Maxwell School of Citizenship and Public Affairs. Ryan spent time with Homeland Security Investigations while pursuing his undergraduate degree at Wesleyan University, and spent his first summer of law school as clerk for the U.S. Attorney’s Office in the Western District of New York. He is a member of Syracuse Law Review, the Journal on Terrorism and Security Analysis, and participates in the Veteran’s Legal Clinic. Full biography

Shelby E. Mann

Ryan D. WhiteShelby is a second year law student at the Syracuse University College of Law. During her final year at the University of Missouri, she served as a full-time news producer for ABC 17 News. Shelby spent her first summer of law school at the Shelby County District Attorney General's Office in Memphis, Tenn., in the Public Corruption and Economic Crimes Unit. She is a member of Syracuse Law Review, the Journal on Terrorism and Security Analysis, and the senior editor for the Syrian Accountability Project. Full biography

Christopher w. FolkChristopher W. Folk

is a 2017 graduate of SU College of Law. A non-traditional student, Christopher returned to academia after spending nearly twenty years in the high tech industry. Christopher served in the Marine Corps, graduated from Cornell University with a B.S. In Applied Economics and Business Management, attended Northeastern University’s High-Tech MBA Program and received a M.S. In Computer Information Systems. Christopher previously worked in Software Engineering. Christopher is currently serving his second term as Town Justice for the Town of Waterloo. Christopher externed with a Cybersecurity firm in the Washington, D.C. area between his first and second year at SU College of Law. Full biography

Anna Maria Castillo

is 2016 graduate of Syracuse College of Law. She also holds a Master of Arts in International Relations from Syracuse University's Maxwell School of Citizenship and Public Affairs. She has interned at a London-based think-tank that specializes in transnational terrorism and global security and at the legal department of a defense contractor. She served as an executive editor in the Syracuse Law Review. Full biography

Jennifer A. CamilloJennifer A. Camillo

is a 2015 graduate of Syracuse College of Law and is a prosecutor. She has served as a law clerk in the United States Attorney’s Office for the Northern District of New York and the Cayuga County District Attorney’s Office and as an extern in the Oneida County District Attorney’s Office. She was a member of the Syracuse National Trial Team and was awarded the Tiffany Cup by the New York Bar Association for her trial advocacy achievements.

Tara J. PistoreseTara J. Pistorese

holds Juris Doctor and Masters of Public Administration degrees from Syracuse University's Maxwell School of Citizenship and Public Affairs and its College of Law. She wrote for this blog when a student. She is now a member of the U.S. Army Judge Advocate General's Corps.

Benjamin Zaiser

is both a scholar and a Federal Agent of the Federal Criminal Police Office of Germany. (Opinions expressed here are his own and not any part of official duty.) Full biography

Categories