[dns-operations] DNS attacks against FR/BE/NL resolvers of Internet access providers

Viktor Dukhovni ietf-dane at dukhovni.org
Fri Sep 18 01:49:15 UTC 2020


On Thu, Sep 17, 2020 at 04:14:25PM +0200, Stephane Bortzmeyer wrote:

> On Mon, Sep 14, 2020 at 03:14:59PM +0200,
>  Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote 
>  a message of 11 lines which said:
> 
> > On 1 and 2 September 2020, several French IAPs (Internet Access
> > Providers), including SFR and Bouygues, were "down". Their DNS
> > resolvers were offline, and it does indeed seem that this was the
> > result of an attack carried out against these resolvers.
> > 
> > https://www.afnic.fr/en/resources/blog/about-the-attack-on-french-isps-dns-resolvers.html
> 
> The warning of ANSSI (the french cybersecurity agency) about recent
> extorsion campaigns (with the message from the racketeer)
> <https://www.cert.ssi.gouv.fr/actualite/CERTFR-2020-ACT-007/>

Does anyone know whether the attack on tutanota.de / tutanota.com is
related, or a coincidence?

[ Light on details: ] https://tutanota.com/blog/posts/ddos-dns-attack/
                      https://twitter.com/TutanotaTeam

-- 
    Viktor.



More information about the dns-operations mailing list