Be it a small or a multinational company, DDoS attacks are something that every user should know about. DDoS (Distributed denial of service) is a type of DOS attack, where a number of compromised systems, which are infected with Trojan or another virus, used as a target to infect other computer systems. Nowadays, it has become a serious threat to every business running online. These attacks are a weapon to extort money from victims, steal users’ confidential information and lock them until they pay the ransom, disrupt operations or even to carry out cyber war.
Earlier, only ISPs and certain organizations like gaming, e-commerce, gaming, etc. were afraid of this threat; but today it has become a problem for businesses of all sizes. An easy access to Botnet building kits and “stressors”, “booter” along with the other DDoS-for-hire services has made it quite easy to launch a DDoS attack against their target. Here are seven points that will make you understand this attack more:
Don’t rely on numbers
The actual number of DDoS attacks and their size may vary from quarter-to-quarter or even month-to-month. According to the Q2 2017 State of the Internet/Security Report from Akamai Technologies, the DDoS attacks in the second quarter have been increased. Also, the company didn’t notice any DDoS attack surpassing 100Gbps in size during Quarter two. While Verisign reported that there was one attack that exceeds 120Gbps in last quarter.
This shows that the numbers alone don’t depict mitigation strategies; the thing to understand is that these attacks have become an unavoidable threat to all the organizations.
Multi-vector attacks are all the rage
Multi-vector attacks bring together volumetric, application-level and protocol-level elements that are of major concern. Attackers use them as one vector or multi-vectors simultaneously in order to confuse the targets. There has been observed a great hike of 322% in multi-vector attacks in the last year.
Network layer or volumetric attacks are the most common ones
Network layer or volumetric attacks can be recognized by high bandwidth, packet per second rates. They directly affect the bandwidth capacity of the targeted network pipes. The most common ones are SYN, ACK, UDP, and ICMP floods. In a recent report, the increase in TCP attacks, NTP amplification attacks and multi-vector attacks have been observed.
Application-level DDoS attacks are increasing
Like the network-layer DDoS attacks, application-level attacks are also growing. These attacks affect business applications and make them unable to respond. Unlike the volumetric attacks, application-level DDoS attacks are measured in RPS or request per second. They have must much lower traffic volume. In Imperva’s Global Threat Landscape Report for Q1 2017, it has been revealed that the network-layer DDoS attacks have been decreasing for Q4, while application-level attacks have been increased to approx 1000 per week.
Most of the DDoS attacks are small and concise
DDoS attacks including volumetric-level ones have much low traffic volumes. Small DDoS attacks are frequently used as a subterfuge for data theft and to mask data breaches. In most cases, threat causes use these attacks to map a victim’s network, to embed the malware and for a ransomware attack. These attacks can cause service degradation and network congestion errors.
DDoS attacks are becoming more constant
An easy access to the tools used in launching a DDoS attack has made these threats more persistent. In Q2 2017, one gaming company has attacked an average of six times a day. The total number of attacks was 558. On a worldwide level, DDoS attacks have become shorter, but also more constant and complex. 9 from the 10 attacks a company encountered lasted under 30 minutes only.
IoT and mobile Botnet-Driven DDoS attacks are rising
The growing use of vulnerable mobiles as well as loT devices has given attackers a new opportunity to bring together massive botnets that helps in launching DDoS attacks. Such attacks have also become common as per the report of Corero. The most recent example of it is WireX, which is botnet build from compromised Android devices.
Blogs on the latest Norton product and launches Visit Norton setup