I saw some speculation that the attack on Dyn was practice for some kind of Russian cyberattack to disrupt the Internet on election day.
I'm not saying I buy this theory, but does anyone have any special precautions we should be taking just in case? Cancel all leaves, all hands on deck? If they do another attack like the one on Dyn, the only thing I can think of is be prepared to make our nameservers authoritative for Facebook and Netflix, and most customers won't notice there's a problem. Just kidding (mostly) about that, but during the attack on Dyn, I suspect OpenDNS users were spared because of their "last known good" feature, which uses cached DNS records after the TTL expires if the authoritative servers are unreachable. I see some major sites still have their TTL set extremely low. twitter.com - 60 seconds google.com - 60 seconds amazon.com - 60 seconds facebook.com - 120 seconds foxnews.com- 5 minutes netflix.com - 30 minutes (yay!) cnn.com - 1 day
