DDoS attacks caused StarHub broadband outages

October 28, 2016

Reading Time: 2 minutes

Singapore’s StarHub has blamed DDoS attacks originating from its customers’ own infected devices for two broadband outages over the past few days.

At a press conference yesterday, StarHub announced the latest findings of an investigation into the outages on October 22 and 24.

Both outages lasted for around two hours, leaving many home broadband customers unable to surf the web due to a spike in DNS traffic originating from infected machines.

Because the traffic originated from StarHub’s own subscribers, it appeared legitimate. But when the attack was detected, StarHub manually filtered out the traffic from the infected devices to restore services for its other customers.

StarHub announced it plans to send technicians to help customers clean up any infected devices at their homes.

Singapore’s Cyber Security Agency and the Infocomm Media Development Authority have urged operators to strengthen their defense against DDoS attacks, and noted that this marks the first time Singapore has experienced such and attack on its network infrastructure.

Darktrace managing director for APAC Sanjay Aurora said operators and ISPs are likely to find themselves increasing targets of attack.

“The core infrastructure of telecommunications companies is a very desirable target for cybercriminals [but] gaining access is extremely difficult and requires deep expertise in specialist architecture,” he said.

“What ISPs should be wary of, is the possibility of similar DNS amplification attacks on a more regular basis, given that they require relatively little skill and effort but can cause a large amount of damage. This makes them increasingly popular among hackers.”

He said DNS-based DDoS attacks can impact networks by saturating bandwidth with malicious traffic, while also increasing volumes of support calls and negatively impacting the customer experience and ultimately revenue.

Aurora added that there is a possibility that the DDoS attack was caused by Mirai, the IoT botnet responsible for the recent DDoS attack against US-based DNS service provider Dyn. This attack used infected IoT devices.

Share it:

Must read

LOTS Wholesale Solutions expands footprint with its third store in India

January 15, 2019

Hangzhou to harness Alibaba Cloud’s AI, analytics tools

October 19, 2016

TSMC suspends production of powerful GPU chip for Chinese tech firm

Apple’s 5G modem will be built by TSMC using its 3nm process node

March 9, 2023

Australia’s Zip looks to drive deeper in Asia, may consider US listing

May 26, 2021

Hidden code suggests a change in how Netflix will handle downloaded content on Android

May 29, 2020

Huawei may face criminal probe from US DoJ

May 1, 2018

iPhone 14 might be the last iPhone with a SIM tray, Apple to go full eSIM forwards

January 27, 2022

Reduced rents, high-end products help Oriental Watch stay in profit

June 30, 2020

Behind the Buzz

Retail News Asia — Your Daily Fix of What’s Happening in Asian Retail

We’re here to keep you in the loop—every single day. Whether you’re running a small local shop, scaling an online biz, or part of a global brand making moves in Asia, we’ve got something for you.

With 50+ fresh stories a week and 13.6 million readers, Retail News Asia isn’t just another news site—it’s the go-to source for all things retail across the region.