AT&T’s DNS Outage on Wednesday Resulted From DDoS Attack Targeted at Two Locations
AT&T on Thursday said that unknown attackers were responsible for intermittent disruptions that affected Internet services for its business customers on Wednesday.
The telecommunications giant would not discuss the locations or the number of customers affected. In a statement, an AT&T spokesperson told SecurityWeek that a DDoS attack targeted the company’s DNS infrastructure in two locations, and that engineers and SOC (Security Operations Center) staff worked to mitigate the situation.
Interestingly, AT&T sells business customers a DDoS Protection service, which claims to be one of the “most potent tools against Denial of Service attacks.”
“AT&T DDoS Defense, an optional feature to the AT&T Internet Protect malware-monitoring service, uses powerful, specialized devices running sophisticated algorithms to identify attacks headed toward your network. We can mitigate them before they reach your network to keep your critical infrastructure running…,” the marketing for the service explains.
It’s possible that the DDoS attack was mitigated using AT&T’s own tools, but if they were in use at the time, they didn’t stop the attack that took place on Wednesday from disrupting operations.