【Lina Romay】

While much of the internet was frantically trying to refresh their browsers on Lina RomayFriday, the folks at Dyn were facing a huge digital assault that appeared to be coming from just about everywhere.

Their servers were swamped and, because Dyn provides domain name services to many of the most popular sites on the internet, that's all the online community was talking about.

SEE ALSO: How an attack on a company you've never heard of crushed the internet

The attack -- known as a distributed denial of service (DDoS) -- was indeed bad. DDoS attacks are defined by a flood of "junk data" that clogs a specific site so legitimate users can't get through.

---

You May Also Like

---

---

Original image has been replaced. Credit: Mashable

Someone -- Dyn won't comment on who, but more on that later -- had hacked a significant number of video cameras and digital video recorders hooked up to the internet, and hurled that junk data at Dyn.

The domino effect left websites such as Twitter, Spotify and others sluggish or unreachable to the average user, so users naturally refreshed their pages again and again.

Mashable Trend Report Decode what’s viral, what’s next, and what it all means. Sign up for Mashable’s weekly Trend Report newsletter. By clicking Sign Me Up, you confirm you are 16+ and agree to our Terms of Use and Privacy Policy. Thanks for signing up!

That was all legitimate traffic, but according to a Wednesday post on Dyn's website, it was hard to distinguish legitimate from malicious traffic at the time. They thought they were defending themselves from something even greater, as many IP addresses generated 10 to 20 times their normal amount of traffic.

"When DNS traffic congestion occurs, legitimate retries can further contribute to traffic volume," Scott Hilton, the executive vice president of product at Dyn, wrote in Wednesday's post. "We saw both attack and legitimate traffic coming from millions of IPs across all geographies. It appears the malicious attacks were sourced from at least one botnet, with the retry storm providing a false indicator of a significantly larger set of endpoints than we now know it to be."

Original image has been replaced. Credit: Mashable

Dyn now estimates the attack came from around 100,000 "malicious endpoints," rather than millions as previously expected.

Though they're not saying who hacked the devices needed to mount the attack, Dyn and Flashpoint, a cybersecurity firm, have confirmed that the hackers used a malware known as Mirai to break into the cameras and DVRs.

Flashpoint hasn't confirmed a perpetrator either, but they have reason to believe the attack came from a hacker or group of hackers who just wanted to show off.

The cybersecurity firm found the attackers also hit a video game company while they were sending waves of junk data at Dyn, something that's not typical of a state actor or a group trying to steal money.

Instead, Flashpoint believes the hacker or the group is "likely connected to the English-language hacking forum community, specifically users and readers of the forum 'hackforums[.]net,'" a forum frequented by hackers who often launch similar types of attacks.

• Deals
• Digital Culture
• Social Good
• Entertainment
• Science
• Life
• Games
• Shopping

• Put Me In, Coach!
• Samsung shows dual
• Special edition of Kia's electric EV6 announced with AR display and 300
• Trio of bears have a fun night out at Taco Bell until the cops show up
• NYT Strands hints, answers for May 5
• Bezos unleashed: 7 things we learned from 'Amazon Unbound'
• All the times Donald Trump has gotten upset about Time's 'person of the year'
• Bezos unleashed: 7 things we learned from 'Amazon Unbound'
• Exceptionally rare radio sources detected in the distant universe
• Behind the moving pop songs of Apple TV+'s 'Trying': Interview

• 'Spider
• All of Instagram is snapping the same pic of this damn pool in Morocco
• EU to launch inquiry into Apple over Spotify's complaint, report says
• 'Uno' wants you to stop pulling this illegal, but diabolical move
• 'Avengers: Endgame' sinks a long
• Dark web drug market ‘Wallstreet Market’ seized by German police
• How a former Apple CEO reinvented himself in healthcare tech
• Somehow a Starbucks coffee cup appeared on 'Game of Thrones'
• Peter Mayhew, Star Wars actor who played Chewbacca, has died at 74
• How you'd love to troll your Trump

• Fyre Festival and Trump’s Language
• Otter's assistant can automatically transcribe Zoom meetings
• Google IO 2021: Maps getting indoor Live View and detailed maps
• Trump says he turned down Time's 'Person of the Year,' and no one's buying it
• Ryzen 5 1600X vs. 1600: Which should you buy?
• Shania Twain arrives to halftime show on a dogsled in a blizzard because, well, she's Shania
• Twitter is celebrating the anniversary of Lenny Kravitz wearing a giant scarf
• YouTube adds more moderation to YouTube kids to find violent videos
• NYT Connections hints and answers for May 18: Tips to solve 'Connections' #707.
• Jennifer Lawrence and Darren Aronofsky have broken up and everyone is making the same joke

• Amazon Prime Grubhub deal: Save $10 off orders of $20 or more
• Everything to know about Disney+'s 'Loki' before it airs
• See the colossal James Webb space telescope unfurl its huge mirrors
• Two more women say Al Franken groped them
• Boeing's new VR simulator immerses astronauts in space training
• Here's how to apply for Twitter account verification
• Google is opening its first physical retail store
• People discuss the silliest things they would die on a hill for
• Best speaker deal: Save $30 on the JBL Clip 5
• Apple adds new accessibility features to its devices