Dyn's DNS security not optimal....

[polonus]

See: http://www.dnsinspect.com/dynect.net/1477478626
and http://www.dnsinspect.com/dynect.com/1477479296
where we can conclude that there was excessive nameserver version info proliferation....

Power DNS authorative server was indeed updated to the last version,
but vertex-bind 2.0.2 is exploitable for the first nameserver mentioned.

Did they in charge of security at Dyn's check using The BIND 9 Security Vulnerability Matrix for shade-vertex? I doubt it.

Then there also are certificate installation SAN errors. Do a crypto report scan and it is all obvious.

Remember the Hacktivist dDos could attcak DNS at a central point,
and when the responsible security admin has been sleeping,
while he was instructed back then at schooling
about how to avoid excessive nameserver version info proliferation,
and protecting against exploits like shade-vertex,
we may get giant security breaches like we experienced here lately,
also when a broad iOT bot network of kettles, coffeemakers and fridges
had become available to the attackers, we all walk on frail ice, folks.

polonus

[Pondus]

we may get giant security breaches like we experienced here lately,
also when a broad iOT bot network of kettles, coffeemakers and fridges
had become available to the attackers, we all walk on frail ice, folks.

Unprotected IoT devices killed the US Internet for hours
http://www.bitdefender.com/box/mirai-IOT-security-alert.html


Can Internet of Things be the New Frontier for Cyber Extortion?
http://blog.trendmicro.com/trendlabs-security-intelligence/can-internet-of-things-be-the-new-frontier-for-cyber-extortion/


Webcam firm recalls hackable devices after mighty Mirai botnet attack
http://www.welivesecurity.com/2016/10/24/webcam-firm-recalls-hackable-devices-mighty-mirai-botnet-attack/