Bigger, Faster, Stronger: 2 Reports Detail the Evolving State of DDoS

  /     /     /  
Publicated : 22/11/2024   Category : security


Bigger, Faster, Stronger: 2 Reports Detail the Evolving State of DDoS


DDoS attacks continue to plague the Internet, getting bigger and more dangerous. And now, the kids are involved.



DDoS attacks dont arrive on little cat feet; they announce their presence with the subtlety of a shovel to the face. Two just-released reports show that these loud DDoS attacks are getting louder, larger, and more numerous with the passage of time.
Verisign released its
Q1 2018 DDoS Trends Report
and Akamai published its
State of the Internet/Security Summer 2018
report and neither was filled with good news if your job is defending a company or network against DDoS attacks. Together, the two reports paint a detailed and disturbing picture of the way DDoS attacks are evolving to be both more common and more dangerous.
Both reports noted the largest DDoS attack in the period, a 170 Gbps, 65 Mpps (million packets per second) operation notable for two things: its target and its originator.
The target was not a single organization or individual. It was, instead, an entire /24 subnet on the Internet. The size of the attack and the broad target meant that scores of websites and services around the world felt the effects.
Akamais report notes that the threat actor was also notable, given that it was a 12-year-old who originated the attack mechanism on YouTube and coordinated the attack through Steam (an online game-playing platform) and IRC.
When adolescents can use YouTube to launch a globe-spanning attack, it marks the dawn of a new definition of script kiddies.”
I believe [kids are] growing up faster because theyre exposed to it, says Lisa Beegle, senior manager of information security at Akamai, when asked about the age of this attack developer. They also have a greater amount of time they can commit to it. She continues, Was this kid as smart as an adult threat actor? No, but there was still a level of sophistication as to the target.
That target was hit with a reflection and massive amplification attach using
memcached
— an attack that saw a returned payload directed at the victim subnet that was 51,000 times the size of the spoofed request sent by the attacker.
While memcached has been in existence for 15 years, this attack seems to be the first major assault using the function in a malicious manner. Since it is a distributed memory object caching system, memcached becomes a very effective tool in the DDoS attackers arsenal.
While new attacks are available, the Verisign report notes that UDP floods remain the favorite DDoS mechanism, accounting for roughly half of all attacks seen in the quarter. TCP attacks were the next most common, involved in approximately one-quarter of the attacks. In many cases, though, both types (and others) could be involved, since 58% of attacks involved multiple attack types in a single event.
The nature of attacks continues to evolve through the industry. Last year, we were seeing smaller attacks that were coming in under the radar — they were causing an impact in 30 seconds, before we could see it and respond, Beegle says. Now, Ive seen attacks that were a week long, where [the attacker] changed the dynamics during the attack, she says. Moving forward, Beegle expects both types of attacks to continue. I think there will always be the mix, depending on who the target is and who the attacker is, she says. Weve seen some nation-state action and that will always be different than the script kiddies.
Related content:
Destructive Nation-State Cyberattacks Will Rise
DDoS Amped Up: DNS, Memcached Attacks Rise
Wicked Mirai Brings New Exploits to IoT Botnets
7 Variants (So Far) of Mirai

Last News

▸ DHS-funded SWAMP scans code for bugs. ◂
Discovered: 23/12/2024
Category: security

▸ Debunking Machine Learning in Security. ◂
Discovered: 23/12/2024
Category: security

▸ Researchers create BlackForest to gather, link threat data. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Bigger, Faster, Stronger: 2 Reports Detail the Evolving State of DDoS