A massive and sustained Internet attack that has caused outages
and network congestion today for a large number of Web sites was
launched with the help of hacked “Internet of Things” (IoT)
devices, such as CCTV video cameras and digital video recorders,
new data suggests. […]
According to researchers at security firm Flashpoint, today’s
attack was launched at least in part by a Mirai-based botnet.
Allison Nixon, director of research at Flashpoint, said the botnet
used in today’s ongoing attack is built on the backs of hacked IoT
devices — mainly compromised digital video recorders (DVRs) and
IP cameras made by a Chinese hi-tech company called XiongMai
Technologies. The components that XiongMai makes are sold
downstream to vendors who then use it in their own products.
“It’s remarkable that virtually an entire company’s product line
has just been turned into a botnet that is now attacking the
United States,” Nixon said, noting that Flashpoint hasn’t ruled
out the possibility of multiple botnets being involved in the
attack on Dyn.