Memcached DDoS Attack: Kill Switch, New Details Disclosed

  /     /     /  
Publicated : 22/11/2024   Category : security


Memcached DDoS Attack: Kill Switch, New Details Disclosed


Corero shares a kill switch for the Memcached vulnerability and reports the flaw is more extensive than originally believed.



Corero Network Security has disclosed a kill switch for the Memcached vulnerability to national security agencies and shared new evidence indicating the flaw is more dangerous than previously believed. For the first time, threat actors have been exploiting unsecured Memcached servers to launch distributed denial-of-service (DDoS) attacks on target businesses.
Memcached is an open-source memory caching system that stores data in RAM to accelerate access times. It was not built for Internet access; users dont have to authenticate. This exploit lets attackers create spoof requests and boost attacks up to 50,000 times.
The
attacks
, which hit businesses including GitHub, started in late February. German DDoS mitigation service provider Link11 was among the first to report the new activity, which included UDP attacks using Memcached servers to spread. Link11 found 5,000 vulnerable Memcached servers on the public internet.
Corero researchers have discovered that any exposed Memcached server that can be leveraged for a DDoS attack can also be tricked into sharing user data it has cached from its local network or host. Because Memcached servers dont require authentication, anything added to a vulnerable server can be stolen. Attackers can also modify data and reinsert it in the cache without owners knowledge.
The kill switch sends a command back to the attackers server to suppress the current DDoS exploitation. This invalidates the cache of a vulnerable server, including attackers potentially malicious payload. It has been effectively tested on live attacking servers, Corero reports.
Read more details
here
.
 
 
 
Black Hat Asia returns to Singapore with hands-on technical Trainings, cutting-edge Briefings, Arsenal open-source tool demonstrations, top-tier solutions and service providers in the Business Hall. Click for information on the
conference
 and
to register.

Last News

▸ Sony, XBox Targeted by DDoS Attacks, Hacktivist Threats ◂
Discovered: 23/12/2024
Category: security

▸ There are plenty of online tools for reporting bugs. ◂
Discovered: 23/12/2024
Category: security

▸ 27 Million South Koreans Hit by Online Gaming Theft. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Memcached DDoS Attack: Kill Switch, New Details Disclosed