CCTV Botnet source of DDoS

Frick · Jun 28, 2016

https://blog.sucuri.net/2016/06/large-cctv-botnet-leveraged-ddos-attacks.html

It all started with a small brick and mortar jewelry shop that signed up with us to help protect their site from a DDoS that had taken them down for days. By switching their DNS to the Sucuri Network, we were able to quickly mitigate the attack for them. It was a layer 7 attack (HTTP Flood) generating close to 35,000 HTTP requests per second(RPS) which was more than their web servers could handle.

Normally, this would be the end of the story. The attack would be mitigated, the attackers would move on after a few hours, and the website owner would be happy. In this case however, after the site came back up, the attacks increased their intensity, peaking to almost 50,000 HTTP requests per second. It continued for hours, which turned into days.

Since this type of long-duration DDoS is not so common, we decided to dive into what the attackers were doing, and to our surprise, they were leveraging only IoT (Internet of Things) CCTV devices as the source of their attack botnet.

Sources:

Hih-larious!

R-T-B · Jun 28, 2016

Another reason I kinda feel like the IoT buzzword is a bad thing. Let's give everything a TCP/IP stack!

We don't even fully secure consumer routers a few years after release, how could this "give it a TCPIP stack!" philosophy possibly be a good idea?

Frick · Jun 28, 2016

R-T-B said:
Another reason I kinda feel like the IoT buzzword is a bad thing. Let's give everything a TCP/IP stack!

We don't even fully secure consumer routers a few years after release, how could this "give it a TCPIP stack!" philosophy possibly be a good idea?

Can't wait for the first lightbulb botnet. It feels like there's an amazing joke to make there.

R-T-B · Jun 28, 2016

Frick said:
Can't wait for the first lightbulb botnet. It feels like there's an amazing joke to make there.

How many lightbulbs does it take to screw you?

Hockster · Jun 28, 2016

It's all fun and games until skynet takes over your refrigerator and refuses to release your beer.

remixedcat · Jun 29, 2016

Automation is a great thing but companies need to secure it better. My next house I do plan on having a ton of automation down to the drapes.

Frick · Jun 29, 2016

remixedcat said:
Automation is a great thing but companies need to secure it better. My next house I do plan on having a ton of automation down to the drapes.

Your electrical system will weep. ;_;

remixedcat · Jun 29, 2016

We will augemtn or fully power with generators/solar hopefully... we shall see after we sell this place to see what we can get.

qubit · Jun 29, 2016

Ah, so it was you Frick with the botnet.

FreedomEclipse · Jun 29, 2016

System Name	Black MC in Tokyo
Processor	Ryzen 5 5600
Motherboard	Asrock B450M-HDV
Cooling	Be Quiet! Pure Rock 2
Memory	2 x 16GB Kingston Fury 3400mhz
Video Card(s)	XFX 6950XT Speedster MERC 319
Storage	Kingston A400 240GB \| WD Black SN750 2TB \|WD Blue 1TB x 2 \| Toshiba P300 2TB \| Seagate Expansion 8TB
Display(s)	Samsung U32J590U 4K + BenQ GL2450HT 1080p
Case	Fractal Design Define R4
Audio Device(s)	Line6 UX1 + some headphones, Nektar SE61 keyboard
Power Supply	Corsair RM850x v3
Mouse	Logitech G602
Keyboard	Cherry MX Board 1.0 TKL Brown
VR HMD	Acer Mixed Reality Headset
Software	Windows 10 Pro
Benchmark Scores	Rimworld 4K ready!

System Name	Pioneer
Processor	Ryzen R9 7950X
Motherboard	GIGABYTE Aorus Elite X670 AX
Cooling	Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory	64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s)	XFX RX 7900 XTX Speedster Merc 310
Storage	2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s)	55" LG 55" B9 OLED 4K Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64

System Name	Black MC in Tokyo
Processor	Ryzen 5 5600
Motherboard	Asrock B450M-HDV
Cooling	Be Quiet! Pure Rock 2
Memory	2 x 16GB Kingston Fury 3400mhz
Video Card(s)	XFX 6950XT Speedster MERC 319
Storage	Kingston A400 240GB \| WD Black SN750 2TB \|WD Blue 1TB x 2 \| Toshiba P300 2TB \| Seagate Expansion 8TB
Display(s)	Samsung U32J590U 4K + BenQ GL2450HT 1080p
Case	Fractal Design Define R4
Audio Device(s)	Line6 UX1 + some headphones, Nektar SE61 keyboard
Power Supply	Corsair RM850x v3
Mouse	Logitech G602
Keyboard	Cherry MX Board 1.0 TKL Brown
VR HMD	Acer Mixed Reality Headset
Software	Windows 10 Pro
Benchmark Scores	Rimworld 4K ready!

System Name	Pioneer
Processor	Ryzen R9 7950X
Motherboard	GIGABYTE Aorus Elite X670 AX
Cooling	Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory	64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s)	XFX RX 7900 XTX Speedster Merc 310
Storage	2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s)	55" LG 55" B9 OLED 4K Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64

System Name	Project Neverending
Processor	i9 9900K @ 5.0GHz
Motherboard	Asus Maximus Formula XI
Cooling	Corsair HX 150i Pro, Corsair ML 120/QL 120 fans
Memory	32 GB Corsair Vengeance Pro RGB 3200
Video Card(s)	Asus RTX 2080Ti
Storage	Samsung 970 Evo NVMe, 2 Samsung 860 Evo 1TB
Display(s)	Acer Predator X34 (3440X1440), Samsung U28D590 (3840X2160)
Case	Lian Li 011 Dynamic XL
Audio Device(s)	Supreme FX X-Fi, Logitech 5.1 speaker system
Power Supply	Corsair HX 1000i
Mouse	Logitech G703
Keyboard	Logitech G105
Software	Windows 10 Pro
Benchmark Scores	Updates coming soon ®

CCTV Botnet source of DDoS

Frick

Fishfaced Nincompoop

R-T-B

Frick

Fishfaced Nincompoop

R-T-B

Hockster

remixedcat

Frick

Fishfaced Nincompoop

remixedcat

qubit

Overclocked quantum bit

FreedomEclipse

~Technological Technocrat~

System Name	RemixedBeast-NX
Processor	Intel Xeon E5-2690 @ 2.9Ghz (8C/16T)
Motherboard	Dell Inc. 08HPGT (CPU 1)
Cooling	Dell Standard
Memory	24GB ECC
Video Card(s)	Gigabyte Nvidia RTX2060 6GB
Storage	2TB Samsung 860 EVO SSD//2TB WD Black HDD
Display(s)	Samsung SyncMaster P2350 23in @ 1920x1080 + Dell E2013H 20 in @1600x900
Case	Dell Precision T3600 Chassis
Audio Device(s)	Beyerdynamic DT770 Pro 80 // Fiio E7 Amp/DAC
Power Supply	630w Dell T3600 PSU
Mouse	Logitech G700s/G502
Keyboard	Logitech K740
Software	Linux Mint 20
Benchmark Scores	Network: APs: Cisco Meraki MR32, Ubiquiti Unifi AP-AC-LR and Lite Router/Sw:Meraki MX64 MS220-8P

System Name	Quantumville™
Processor	Intel Core i7-2700K @ 4GHz
Motherboard	Asus P8Z68-V PRO/GEN3
Cooling	Noctua NH-D14
Memory	16GB (2 x 8GB Corsair Vengeance Black DDR3 PC3-12800 C9 1600MHz)
Video Card(s)	MSI RTX 2080 SUPER Gaming X Trio
Storage	Samsung 850 Pro 256GB \| WD Black 4TB \| WD Blue 6TB
Display(s)	ASUS ROG Strix XG27UQR (4K, 144Hz, G-SYNC compatible) \| Asus MG28UQ (4K, 60Hz, FreeSync compatible)
Case	Cooler Master HAF 922
Audio Device(s)	Creative Sound Blaster X-Fi Fatal1ty PCIe
Power Supply	Corsair AX1600i
Mouse	Microsoft Intellimouse Pro - Black Shadow
Keyboard	Yes
Software	Windows 10 Pro 64-bit

System Name	Codename: Icarus Mk.VI
Processor	Intel 8600k@Stock -- pending tuning
Motherboard	Asus ROG Strixx Z370-F
Cooling	CPU: BeQuiet! Dark Rock Pro 4 {1xCorsair ML120 Pro\|5xML140 Pro}
Memory	32GB XPG Gammix D10 {2x16GB}
Video Card(s)	ASUS Dual Radeon™ RX 6700 XT OC Edition
Storage	Samsung 970 Evo 512GB SSD (Boot)\|WD SN770 (Gaming)\|2x 3TB Toshiba DT01ACA300\|2x 2TB Crucial BX500
Display(s)	LG GP850-B
Case	Corsair 760T (White)
Audio Device(s)	Yamaha RX-V573\|Speakers: JBL Control One\|Auna 300-CN\|Wharfedale Diamond SW150
Power Supply	Corsair AX760
Mouse	Logitech G900
Keyboard	Duckyshine Dead LED(s) III
Software	Windows 10 Pro
Benchmark Scores	(ノಠ益ಠ)ノ彡┻━┻