On May 25, several IDC companies said in interviews that the proliferation of DNS attacks has become a common problem in the industry. The entire industry calls on the country and operators to join forces to rectify this illegal behavior of DNS attacks.
On the evening of May 19, DNS service provider DNSpod was attacked by hackers and interrupted its services. As a result, one of DNSpod's customers, Baofeng Yingyin, turned to China Telecom's DNS server and brought it down. This resulted in six outages in Jiangsu, Anhui, Guangxi, Hainan, Gansu, Zhejiang, etc. Provincial network paralysis.
In this regard, many IDC companies said in interviews that they had been attacked by similar hackers, but fortunately they did not cause widespread network paralysis. Most of them hoped that relevant national departments and telecom operators would take action to prevent similar attacks. But they have remained silent on who is responsible.
Meicheng Internet said that relevant national departments should prevent such attacks from happening at a higher level (legal, telecommunications routing). It is difficult to judge whether DNSpod and Baofengyingyin need to bear responsibility, but the attackers definitely need to bear responsibility for this.
The relevant person in charge of Wanwang suggested that telecom operators should take the initiative to upgrade equipment to resist DDOS attacks and urge security equipment manufacturers to develop and upgrade defense methods against new DNS attacks as soon as possible. On the other hand, DNS servers should be deployed in a distributed manner and DNS load balancing should be done at nodes in different cities across the country to improve the carrying capacity of DNS.
In addition, the relevant person in charge of Xinwang Internet believes that IDC companies themselves should boycott illegal content and spam domain names to avoid laying hidden dangers for future "firefights".
It is reported that the DSN service provider DNSPod and Baofeng Video Company related to the network paralysis have publicly apologized to users and reported the case to relevant departments. It is still unclear who should be responsible for this cybersecurity incident.
Review of historical events: several major DNS attacks
In 2001, Wanwang was attacked by hackers, causing a large number of websites to become unusable. Wanwang subsequently provided certain compensation to users.
Starting at 4:00 pm on September 21, 2006, Xinnet's DNS server was attacked by a large-scale hacker, causing tens of thousands of websites across the country to be inaccessible. Afterwards, Xinnet’s customer China Net Library claimed 1.5 million from it, but the result was later unknown.
On April 27, 2007, Xinnet's DNS server suffered a large-scale attack and malfunctioned, causing tens of thousands of websites to be inaccessible.
On May 8, 2009, six DNS servers of eName China were attacked by hackers. The attack traffic exceeded 15G and tens of thousands of websites could not be opened. (Text/Xiao Kefeng)