On October 21, 2016, three consecutive distributed denial-of-service attacks were launched against the

Domain Name System The Domain Name System (DNS) is a hierarchical and distributed name service that provides a naming system for computers, services, and other resources on the Internet or other Internet Protocol (IP) networks. It associates various information ...

(DNS) provider Dyn. The attack caused major Internet platforms and services to be unavailable to large swathes of users in Europe and North America. The groups

Anonymous Anonymous may refer to: * Anonymity, the state of an individual's identity, or personally identifiable information, being publicly unknown ** Anonymous work, a work of art or literature that has an unnamed or unknown creator or author * Anonym ...

and New World Hackers claimed responsibility for the attack, but scant evidence was provided. As a DNS provider, Dyn provides to end-users the service of mapping an Internet

domain name In the Internet, a domain name is a string that identifies a realm of administrative autonomy, authority, or control. Domain names are often used to identify services provided through the Internet, such as websites, email services, and more. ...

—when, for instance, entered into a

web browser A web browser, often shortened to browser, is an application for accessing websites. When a user requests a web page from a particular website, the browser retrieves its files from a web server and then displays the page on the user's scr ...

—to its corresponding

IP address An Internet Protocol address (IP address) is a numerical label such as that is assigned to a device connected to a computer network that uses the Internet Protocol for communication. IP addresses serve two main functions: network interface i ...

. The distributed denial-of-service (DDoS) attack was accomplished through numerous DNS lookup requests from tens of millions of IP addresses. The activities are believed to have been executed through a

botnet A botnet is a group of Internet-connected devices, each of which runs one or more Internet bot, bots. Botnets can be used to perform distributed denial-of-service attack, distributed denial-of-service (DDoS) attacks, steal data, send Spamming, sp ...

consisting of many Internet-connected devices—such as

printers Printer may refer to: Technology * Printer (publishing), a person * Printer (computing), a hardware device * Optical printer for motion picture films People * Nariman Printer (fl. c. 1940), Indian journalist and activist * James Printer (1 ...

, IP cameras,

residential gateway A residential gateway is a small consumer-grade gateway which bridges network access between connected local area network (LAN) hosts to a wide area network (WAN) (such as the Internet) via a modem, or directly connects to a WAN (as in EttH), ...

s and baby monitors—that had been infected with the Mirai malware.

Affected services

Services affected by the attack included: *

Airbnb Airbnb, Inc. ( , an abbreviation of its original name, "Air Bed and Breakfast") is an American company operating an online marketplace for short-and-long-term homestays, experiences and services in various countries and regions. It acts as a ...

Amazon.com Amazon.com, Inc., doing business as Amazon, is an American multinational technology company engaged in e-commerce, cloud computing, online advertising, digital streaming, and artificial intelligence. Founded in 1994 by Jeff Bezos in Bellevu ...

* Ancestry.com * ''

The A.V. Club ''The A.V. Club'' is an online newspaper and entertainment website featuring reviews, interviews, and other articles that examine films, music, television, books, games, and other elements of pop-culture media. ''The A.V. Club'' was created in ...

'' *

BBC The British Broadcasting Corporation (BBC) is a British public service broadcaster headquartered at Broadcasting House in London, England. Originally established in 1922 as the British Broadcasting Company, it evolved into its current sta ...

* ''

The Boston Globe ''The Boston Globe,'' also known locally as ''the Globe'', is an American daily newspaper founded and based in Boston, Massachusetts. The newspaper has won a total of 27 Pulitzer Prizes. ''The Boston Globe'' is the oldest and largest daily new ...

'' *

Box A box (plural: boxes) is a container with rigid sides used for the storage or transportation of its contents. Most boxes have flat, parallel, rectangular sides (typically rectangular prisms). Boxes can be very small (like a matchbox) or v ...

* ''

Business Insider ''Business Insider'' (stylized in all caps: BUSINESS INSIDER; known from 2021 to 2023 as INSIDER) is a New York City–based multinational financial and business news website founded in 2007. Since 2015, a majority stake in ''Business Inside ...

'' *

CNN Cable News Network (CNN) is a multinational news organization operating, most notably, a website and a TV channel headquartered in Atlanta. Founded in 1980 by American media proprietor Ted Turner and Reese Schonfeld as a 24-hour cable ne ...

Comcast Comcast Corporation, formerly known as Comcast Holdings,Before the AT&T Broadband, AT&T merger in 2001, the parent company was Comcast Holdings Corporation. Comcast Holdings Corporation now refers to a subsidiary of Comcast Corporation, not th ...

CrunchBase Crunchbase is a company that provides information about businesses. Their content includes investment and funding information, individuals in leadership positions, and corporate news. History Crunchbase was founded in 2007 by Michael Arring ...

DirecTV DirecTV, LLC is an American Multichannel television in the United States, multichannel video programming distributor based in El Segundo, California. Originally launched on June 17, 1994, its primary service is a digital Satellite television, s ...

* ''

The Elder Scrolls Online ''The Elder Scrolls Online'', abbreviated ''ESO'', is a massively multiplayer online role-playing game (MMORPG) developed by ZeniMax Online Studios and published by Bethesda Softworks. The game is a part of the '' Elder Scrolls'' series. It was ...

'' *

Electronic Arts Electronic Arts Inc. (EA) is an American video game company headquartered in Redwood City, California. Founded in May 1982 by former Apple Inc., Apple employee Trip Hawkins, the company was a pioneer of the early home computer game industry ...

Etsy Etsy, Inc. is an American e-commerce company with an emphasis on the selling of handmade or vintage items and craft supplies. These items fall under a wide range of categories, including jewelry, bags, clothing, home decor, religious items, furni ...

* Evergreen ILS *

FiveThirtyEight ''FiveThirtyEight'', also rendered as ''538'', was an American website that focused on opinion poll analysis, politics, economics, and sports blogging in the United States. The website, which took its name from the number of electors in the U ...

Fox News The Fox News Channel (FNC), commonly known as Fox News, is an American Multinational corporation, multinational Conservatism in the United States, conservative List of news television channels, news and political commentary Television stati ...

* ''

The Guardian ''The Guardian'' is a British daily newspaper. It was founded in Manchester in 1821 as ''The Manchester Guardian'' and changed its name in 1959, followed by a move to London. Along with its sister paper, ''The Guardian Weekly'', ''The Guardi ...

'' *

GitHub GitHub () is a Proprietary software, proprietary developer platform that allows developers to create, store, manage, and share their code. It uses Git to provide distributed version control and GitHub itself provides access control, bug trackin ...

* Grubhub *

HBO Home Box Office (HBO) is an American pay television service, which is the flagship property of namesake parent-subsidiary Home Box Office, Inc., itself a unit owned by Warner Bros. Discovery. The overall Home Box Office business unit is based a ...

* Heroku * HostGator *

iHeartRadio iHeartRadio (often shortened to just "iHeart") is an American freemium broadcast, podcast, radio streaming and Music Streaming platform owned by iHeartMedia. Founded in August 2008, iHeartRadio serves as the national umbrella brand for iHeart ...

Imgur Imgur ( , stylized as imgur) is an American online image sharing and image hosting service with a focus on social gossip that was founded by Alan Schaaf in 2009. The service has hosted viral images and memes, particularly those posted on ...

Indiegogo Indiegogo is an American crowdfunding website founded in 2008 by Danae Ringelmann, Slava Rubin, and Eric Schell. Its headquarters are in San Francisco, California. The site is one of the first sites to offer crowd funding. Indiegogo allows peo ...

Mashable Mashable is a Online newspaper, news website, digital media platform and entertainment company founded by Pete Cashmore in 2005. History Mashable was founded by Pete Cashmore while living in Aberdeen, Scotland, in July 2004. Early iterations o ...

National Hockey League The National Hockey League (NHL; , ''LNH'') is a professional ice hockey league in North America composed of 32 teams25 in the United States and 7 in Canada. The NHL is one of the major professional sports leagues in the United States and Cana ...

Netflix Netflix is an American subscription video on-demand over-the-top streaming service. The service primarily distributes original and acquired films and television shows from various genres, and it is available internationally in multiple lang ...

* ''

The New York Times ''The New York Times'' (''NYT'') is an American daily newspaper based in New York City. ''The New York Times'' covers domestic, national, and international news, and publishes opinion pieces, investigative reports, and reviews. As one of ...

'' *

Overstock.com Beyond, Inc. (formerly known as Overstock, Inc.) is an American internet retailer, online retailer that owns the "Bed Bath & Beyond" brand except for within Mexico and the "Overstock" brand, and runs online stores named with those brands. The M ...

PayPal PayPal Holdings, Inc. is an American multinational financial technology company operating an online payments system in the majority of countries that support E-commerce payment system, online money transfers; it serves as an electronic alter ...

Pinterest Pinterest is an American social media service for publishing and discovery of information in the form of digital Bulletin board, pinboards. This includes recipes, home, style, motivation, and inspiration on the Internet using image sharing. Pint ...

* Pixlr *

PlayStation Network PlayStation Network (PSN) is a digital media entertainment service provided by Sony Interactive Entertainment. Launched in November 2006, PSN was originally conceived for the PlayStation video game consoles, but soon extended to encompass smartp ...

Qualtrics Qualtrics is an American experience management company, with co-headquarters in Seattle, Washington, and Provo, Utah, in the United States. The company was founded in 2002 by Scott M. Smith, Ryan Smith, Jared Smith, and Stuart Orgill. Qualtric ...

Quora Quora is an American social question-and-answer website and online knowledge market headquartered in Mountain View, California. It was founded on June 25, 2009, and made available to the public on June 21, 2010. Users can post questions, answ ...

Reddit Reddit ( ) is an American Proprietary software, proprietary social news news aggregator, aggregation and Internet forum, forum Social media, social media platform. Registered users (commonly referred to as "redditors") submit content to the ...

Roblox Roblox (, ) is an online game platform and game creation system developed by Roblox Corporation that allows users to program and play games created by themselves or other users. It was created by David Baszucki and Erik Cassel in 200 ...

* Ruby Lane * ''

RuneScape ''RuneScape'' is a fantasy massively multiplayer online role-playing game (MMORPG) developed and published by Jagex, released in January 2001. ''RuneScape'' was originally a browser game built with the Java (programming language), Java progr ...

'' * SaneBox * Seamless * ''

Second Life ''Second Life'' is a multiplayer virtual world that allows people to create an Avatar (computing), avatar for themselves and then interact with other users and user-created content within a multi-user online environment. Developed for person ...

'' *

Shopify Shopify Inc., stylized as ''shopify'', headquartered in Ottawa, Ontario, operates an e-commerce platform for retail point-of-sale systems that offers payments, marketing, shipping, inventory management, transaction management, and customer eng ...

* Slack *

SoundCloud SoundCloud is a German audio streaming service owned and operated by SoundCloud Global Limited & Co. KG. The service enables its users to upload, promote, and share audio. Founded in 2007 by Alexander Ljung and Eric Wahlforss, SoundCloud is ...

* Squarespace *

Spotify Spotify (; ) is a List of companies of Sweden, Swedish Music streaming service, audio streaming and media service provider founded on 23 April 2006 by Daniel Ek and Martin Lorentzon. , it is one of the largest providers of music streaming services ...

Starbucks Starbucks Corporation is an American multinational List of coffeehouse chains, chain of coffeehouses and Starbucks Reserve, roastery reserves headquartered in Seattle, Washington. It was founded in 1971 by Jerry Baldwin, Zev Siegl, and Gor ...

* Storify * Swedish Civil Contingencies AgencyJoel Westerholm.
Så sänktes Twitter och Regeringen.se i attacken
,

Sveriges Radio Sveriges Radio Aktiebolag, AB (; "Sweden's Radio") is Sweden's national publicly funded radio programming, radio broadcaster. Sveriges Radio is a public limited company, owned by an independent foundation, previously funded through a television ...

, 24 October 2016. Retrieved 30 October 2016. * Swedish Government *

Tumblr Tumblr (pronounced "tumbler") is a microblogging and Social networking service, social networking website founded by David Karp in 2007 and is owned by American company Automattic. The service allows users to post multimedia and other content ...

* Twilio *

Twitter Twitter, officially known as X since 2023, is an American microblogging and social networking service. It is one of the world's largest social media platforms and one of the most-visited websites. Users can share short text messages, image ...

Verizon Communications Verizon Communications Inc. ( ), is an American telecommunications company headquartered in New York City. It is the world's second-largest telecommunications company by revenue and its mobile network is the largest wireless carrier in the ...

* Visa *

Vox Media Vox Media, Inc. is an American mass media company founded in Washington, D.C. with operational headquarters in Lower Manhattan, New York City. The company was established in November 2011 by CEO Jim Bankoff and Trei Brundrett to encompass ''S ...

Walgreens Walgreens is an American pharmacy store chain. It is the second largest in the United States, behind CVS Pharmacy. As of March 2025, the company operated more than 8,700 stores in the U.S. Walgreens has been the subject of a number of lawsuit ...

* ''

The Wall Street Journal ''The Wall Street Journal'' (''WSJ''), also referred to simply as the ''Journal,'' is an American newspaper based in New York City. The newspaper provides extensive coverage of news, especially business and finance. It operates on a subscriptio ...

'' *

Wikia Fandom (formerly known as Wikicities and Wikia) is a wiki hosting service that hosts wikis mainly on entertainment topics (i.e., video games, TV series, movies, entertainers, etc.). The Privately held company, privately held for-profit Delaware ...

* ''

Wired Wired may refer to: Arts, entertainment, and media Music * ''Wired'' (Jeff Beck album), 1976 * ''Wired'' (Hugh Cornwell album), 1993 * ''Wired'' (Mallory Knox album), 2017 * "Wired", a song by Prism from their album '' Beat Street'' * "Wired ...

'' * Wix.com *

WWE Network WWE Network is a subscription video on-demand over-the-top streaming service and digital television network owned by the American professional wrestling promotion WWE, a division of TKO Group Holdings. The service relied on technology develo ...

Xbox Live The Xbox network, formerly known and commonly referred to as Xbox Live, is an online multiplayer gaming and digital media delivery service created and operated by Microsoft Gaming for the Xbox brand. It was first made available to the origina ...

Yammer Viva Engage (formerly Yammer) is an enterprise social networking service that is part of the Microsoft 365 family of products. It is used mainly for private enterprise social software, communication within organizations but is also used for net ...

Yelp Yelp Inc. is an American company that develops the Yelp.com website and the Yelp mobile app, which publishes crowd-sourced reviews about businesses. It also operates Yelp Guest Manager, a table reservation service. It is headquartered in S ...

Zillow Zillow Group, Inc., or simply Zillow, is an American tech real-estate marketplace company that was founded in 2006 by co-executive chairmen Rich Barton and Lloyd Frink, former Microsoft executives and founders of Microsoft spin-off Expedia; Spen ...

Investigation

The US Department of Homeland Security started an investigation into the attacks, according to a

White House The White House is the official residence and workplace of the president of the United States. Located at 1600 Pennsylvania Avenue Northwest (Washington, D.C.), NW in Washington, D.C., it has served as the residence of every U.S. president ...

source. No group of hackers claimed responsibility during or in the immediate aftermath of the attack. Dyn's chief strategist Kyle York said in an interview that the assaults on the company's servers were very complex and unlike everyday DDoS attacks. Barbara Simons, a member of the advisory board of the United States

Election Assistance Commission The Election Assistance Commission (EAC) is an independent agency of the United States government created by the Help America Vote Act of 2002 (HAVA). The Commission serves as a national clearinghouse and resource of information regarding elec ...

, said such attacks could affect

electronic voting Electronic voting is voting that uses electronic means to either aid or handle casting and counting ballots including voting time. Depending on the particular implementation, e-voting may use standalone '' electronic voting machines'' (also ...

for overseas military or civilians. Dyn disclosed that, according to business risk intelligence firm FlashPoint and

Akamai Technologies Akamai Technologies, Inc. is an American company specialized in content delivery networkJ. Dilley, B. Maggs, J. Parikh, H. Prokop, R. Sitaraman, and B. Weihl. (CDN), cybersecurity, DDoS mitigation, and cloud services. It is headquartered in ...

, the attack was a

coordinated through numerous

Internet of Things Internet of things (IoT) describes devices with sensors, processing ability, software and other technologies that connect and exchange data with other devices and systems over the Internet or other communication networks. The IoT encompasse ...

-enabled (IoT) devices, including

camera A camera is an instrument used to capture and store images and videos, either digitally via an electronic image sensor, or chemically via a light-sensitive material such as photographic film. As a pivotal technology in the fields of photograp ...

s, and baby monitors, that had been infected with Mirai malware. The attribution of the attack to the Mirai botnet had been previously reported by BackConnect Inc., another security firm. Dyn stated that they were receiving malicious requests from tens of millions of

es. Mirai is designed to brute-force the security on an IoT device, allowing it to be controlled remotely. Cybersecurity investigator

Brian Krebs Brian Krebs (born 1972) is an American journalist and investigative reporter. He is best known for his coverage of profit-seeking cybercriminals.Perlroth, Nicole.Reporting From the Web's Underbelly. ''The New York Times''. Retrieved February 2 ...

noted that the source code for Mirai had been released onto the Internet in an

open-source Open source is source code that is made freely available for possible modification and redistribution. Products include permission to use and view the source code, design documents, or content of the product. The open source model is a decentrali ...

manner some weeks prior, which made the investigation of the perpetrator more difficult. On 25 October 2016, US President Obama stated that the investigators still had no idea who carried out the cyberattack. On 13 December 2017, the Justice Department announced that three men (Paras Jha, 21, Josiah White, 20, and Dalton Norman, 21) had entered guilty pleas in cybercrime cases relating to the Mirai and clickfraud botnets.

Perpetrators

In correspondence with the website ''

Politico ''Politico'' (stylized in all caps), known originally as ''The Politico'', is an American political digital newspaper company founded by American banker and media executive Robert Allbritton in 2007. It covers politics and policy in the Unit ...

'',

hacktivist Hacktivism (or hactivism; a portmanteau of '' hack'' and ''activism''), is the use of computer-based techniques such as hacking as a form of civil disobedience to promote a political agenda or social change. A form of Internet activism with roo ...

groups SpainSquad,

, and New World Hackers claimed responsibility for the attack in retaliation against

Ecuador Ecuador, officially the Republic of Ecuador, is a country in northwestern South America, bordered by Colombia on the north, Peru on the east and south, and the Pacific Ocean on the west. It also includes the Galápagos Province which contain ...

's rescinding Internet access to

WikiLeaks WikiLeaks () is a non-profit media organisation and publisher of leaked documents. It is funded by donations and media partnerships. It has published classified documents and other media provided by anonymous sources. It was founded in 2006 by ...

founder

Julian Assange Julian Paul Assange ( ; Hawkins; born 3 July 1971) is an Australian editor, publisher, and activist who founded WikiLeaks in 2006. He came to international attention in 2010 after WikiLeaks published a series of News leak, leaks from Chels ...

, at their embassy in London, where he had been granted asylum. This claim has yet to be confirmed. WikiLeaks alluded to the attack on

, tweeting "Mr. Assange is still alive and WikiLeaks is still publishing. We ask supporters to stop taking down the US internet. You proved your point." New World Hackers has claimed responsibility in the past for similar attacks targeting sites like

and ESPN.com. On October 26, FlashPoint stated that the attack was most likely done by

script kiddie A script kiddie, skript kiddie, skiddie, kiddie, or skid is a pejorative term used to describe an unskilled individual who uses malicious scripts or programs developed by others or LLMs. Characteristics The term script kiddie was first used in ...

s. A November 17, 2016, a ''Forbes'' article reported that the attack was likely carried out by "an angry gamer". On December 9, 2020, one of the perpetrators pleaded guilty to taking part in the attack. The perpetrator's name was withheld due to his or her age.

References

{{DEFAULTSORT:Dyn cyberattack, October 2016 2016 in computing Denial-of-service attacks October 2016 crimes in Europe October 2016 crimes in the United States Internet of things WikiLeaks Botnets Malware Domain Name System Hacking in the 2010s Cloud infrastructure attacks and failures 2010s internet outages

Affected services

Investigation

Perpetrators

See also

References