Archives for 

DDOS

24 Million Home Routers Expose ISPs to Massive DNS-Based DDoS amplification attacks.

Researchers from nominum identified a massive set of of  DNS-based DDoS amplification attacks have significantly increased in the recent months, targeting vulnerable home routers globally.

( A DNS amplification attack is a reflection-based distributed denial of service (DDos) attack )

dns-ddos-nominum

 

 

 

 

 

 

 

 

 

Home routers are the easiest vector of attack because most users are unaware of the security implications. The router firmware are never updated which leaves it in the open to all kinds of attacks. Hackers use this as their target and find ways to infiltrate the vulnerable routers.

Nominum researchers observed that :

  • Tens of millions of home routers expose provider networks to DNS-based DDoS
  • Stealthy, low-skill attack evades existing defenses and Best Practices
  • Attackers constantly register new “purpose built” domains only for amplification
  • Substantial network impact: DNS servers, access networks, peering and transit
  • Subscriber-perceptible attacks spike support calls, reduce satisfaction, stress ops teams

Traffic from amplification amounts to trillions of bytes a day disrupts ISP’s, websites and individuals. Impacts of such attacks on on ISPs are fourfold:

  • Network impact generated by malicious traffic saturating available bandwidth
  • Cost impact generated by a spike in support calls caused by intermittent service disruption
  • Revenue impact as poor internet experience leads to increased churn or retention expenses
  • Reputation impact as unwanted traffic is directed toward peers
“Existing in-place DDoS defenses do not work against today’s amplification attacks, which can be launched by any criminal who wants to achieve maximum damage with minimum effort,” explained Sanjay Kapoor, SVP of Strategy, Nominum. “Even if ISPs employ best practices to protect their networks, they can still become victims, thanks to the inherent vulnerability in open DNS proxies.” says Reuters
Share Button

DDoS Attack targets Major Online Games using Network Time Protocol Amplification attack ( NTP)

A new type of DDoS ( Distributed Denial of Service) attack has taken down several servers last weekend. Popular games servers for Steam, Origin, Battle.net, and League of Legends were victim of the attack The new type of DDoS abuses the Network Time Protocol (NTP), which keeps computers’ clocks synced up to Coordinated Universal Time, […]
Share Button
Continue reading →

One minute of DDOS attack costs US$183,000 fine for a Hacker

Eric Rosol from Wisconsin participated in the 2011 DDOS attack ( distributed denial o f service) with Anonymous on Koch Industries. For his participation of one minute, the judge fined $183,000 on Eric and two years of probation. Was this justified ? Well no one knows and its probobly not. For a company like Koch […]
Share Button
Continue reading →