Archives for 

DDoS attack

24 Million Home Routers Expose ISPs to Massive DNS-Based DDoS amplification attacks.

Researchers from nominum identified a massive set of of  DNS-based DDoS amplification attacks have significantly increased in the recent months, targeting vulnerable home routers globally.

( A DNS amplification attack is a reflection-based distributed denial of service (DDos) attack )

dns-ddos-nominum

 

 

 

 

 

 

 

 

 

Home routers are the easiest vector of attack because most users are unaware of the security implications. The router firmware are never updated which leaves it in the open to all kinds of attacks. Hackers use this as their target and find ways to infiltrate the vulnerable routers.

Nominum researchers observed that :

  • Tens of millions of home routers expose provider networks to DNS-based DDoS
  • Stealthy, low-skill attack evades existing defenses and Best Practices
  • Attackers constantly register new “purpose built” domains only for amplification
  • Substantial network impact: DNS servers, access networks, peering and transit
  • Subscriber-perceptible attacks spike support calls, reduce satisfaction, stress ops teams

Traffic from amplification amounts to trillions of bytes a day disrupts ISP’s, websites and individuals. Impacts of such attacks on on ISPs are fourfold:

  • Network impact generated by malicious traffic saturating available bandwidth
  • Cost impact generated by a spike in support calls caused by intermittent service disruption
  • Revenue impact as poor internet experience leads to increased churn or retention expenses
  • Reputation impact as unwanted traffic is directed toward peers
“Existing in-place DDoS defenses do not work against today’s amplification attacks, which can be launched by any criminal who wants to achieve maximum damage with minimum effort,” explained Sanjay Kapoor, SVP of Strategy, Nominum. “Even if ISPs employ best practices to protect their networks, they can still become victims, thanks to the inherent vulnerability in open DNS proxies.” says Reuters
Share Button

Modern day DDoS attacks are using Mobile apps – Prolexic

As per the Prolexic reports,DDoS attacks have increased to 26.09% compared to Q4 2012, 17.42% increase in application layer attacks 28.97% increase in infrastructure layer ( Layer 3 & 4) attacks,28.975 decrease in average attack duration9 i,e 22.88 vs 32.21 hours) Increased mobile devices usage have increased the number of malacious apps on the internet, […]
Share Button
Continue reading →