Archive: 2019

Mirai Botnet Code Targets Corporate Networking Gear

Last month a report from Palo Alto Networks’ Unit 42 revealed that cyber criminals have now evolved the infamous Mirai botnet code to target corporate SD-WAN gear and recruit those assets into harmful botnets. To defend against such attacks, a security system must include comprehensive automated protections against Mirai type attack vectors.

Read more

Understanding and Stopping Multi-Vector DDoS Attacks

Multi-vector DDoS attacks present several challenges for detection and mitigation. As cybercriminals are using more sophisticated techniques, it has become much more difficult for IT security teams to prevent DDoS attacks.

Read more

What is DDoS Mitigation, and What Kinds of DDoS Protection Solutions Exist?

Every organization who relies upon the availability of its Internet presence should worry about the impact of modern DDoS attacks. However, solutions are available for organizations to defend against DDoS attacks of all sizes so that their network, application, or service performance is not impacted.

Read more

Using DDoS as a Political Weapon; Hacktivism or Cyber Warfare in Hong Kong?

In the midst of many protests in Hong Kong, the Telegram was hit with a massive DDoS attack that knocked the service offline for over an hour. The theory is that China ordered the DDoS attack because it has a vested interest in squelching communication among protesters. Will anyone ever know for sure whether the Chinese government is behind the attacks?

Read more

IoT Device Security Laws Won't Eliminate DDoS Attacks

It is now common knowledge among cyber security professionals that many of the billions of IoT-connected devices around the world are not secure and, of those, many have already been leveraged by bad actors. Given this reality of the IoT-powered world we live in, organizations should seek to protect their networks from the cyber-attacks that ensue, with one of the most common being DDoS.

Read more

Automated DDoS Protection Can Reduce CISO Stress

A recent Security Magazine UK article reports on a survey by Nominet Cybersecurity that quantified the work stress today’s CISOs endure. CISOs have a Sisyphean task of protecting every IT system and point of data, yet they commonly lack adequate budget, they often suffer a shortage of qualified cybersecurity staff, and security breaches are rampant.

Read more

DDoS Considerations for On-Premises Servers

There has been much hype around cloud computing in recent years, to the extent that it appeared the answer was to run everything in ‘the cloud’, as-a-service. Now the dust has settled somewhat, there is a level of pragmatism setting in.

Read more

What is a DDoS Attack and Why Should You Worry?

A distributed denial-of-service (DDoS) attack occurs when multiple systems overwhelm the available bandwidth or other system resources of their target; as a result, an application, service or website may either crash or suffer a significantly degraded service. In an always-on world, where many organizations rely on constant Internet connectivity to conduct business online, DDoS attacks are a serious issue.

Read more

Evolving DDoS Threat Challenges Service Provider Capacity

The DDoS threat continues to grow in sophistication as cybercriminals improve their attack techniques in an attempt to evade the trusted mitigation methodologies typically used for DDoS protection.

Read more

Enterprises Beware: Variations on the Mirai Malware Still Feeding DDoS Attacks

The Mirai Malware first attracted public attention in October 2016, when it was used to launch the notorious and massive botnet-driven distributed denial of service (DDoS) attacks against Brian Krebs’ blog and Dyn’s DNS infrastructure. Now, Tech Target reports that researchers at Palo Alto Networks have discovered another new variant of the Mirai malware that is “going after wireless presentation and display systems, indicating a potential shift in using Mirai to target enterprises.”

Read more

RSA 2019 Highlighted the Importance of Automation - Making SOCs More Efficient

Earlier this month Corero sent a team to the annual RSA Conference, where several education tracks and other exhibitors on the show floor also included discussions around the challenges of dealing with the latest wave of sophisticated distributed denial of service (DDoS) attacks.

Read more

Automated DDoS Mitigation Is Essential

Today, organizations of all types and sizes face distributed denial of service (DDoS) attacks; creating a top business continuity and security issue. The ongoing proliferation of DDoS-for-hire services, powered mainly by the continuing explosion of unsecure Internet of things (IoT) devices, has turned DDoS attacks into an everyday occurrence.

Read more

New Report: Latest DDoS Trends

The distributed denial of service threat continues to increase. Corero recently published our 2018 DDoS Trends Report, and the findings suggest that enterprises and service providers have ample reason to put DDoS mitigation at the forefront of their cybersecurity strategies.

Read more

Five Myths About DDoS Attack Protection

It’s a pity when myths get in the way of facts, especially in terms of cybersecurity, where there is little margin for error. When it comes to DDoS protection, several myths have been floating around for years, and it’s important to debunk them. Below are the top five DDoS myths, countered with the sobering facts:

Read more

Brexit and the Cybersecurity skills gap: Could automation provide a solution?

The cyber threat landscape is constantly evolving and expanding, as a result, organizations require increasing numbers of trained IT security personnel to mitigate against this threat. Unfortunately, the cybersecurity skills gap is a well-documented and growing issue within the industry.

Read more

Do Service Provider Networks Need Better Security?

How are communications service providers (CSPs) coping with network security threats these days? Heavy Reading conducted an anonymous survey of CSPs who are members of their Thought Leadership Council. According to that survey, “Council members say there are several security issues driving the development of those plans, including distributed denial of service (DDoS), illegal intercept, ransomware and data exfiltration, all of which were seen as critical issues by more than 60% of panelists.”

Read more

Minor Outages Do Matter

It’s a common misconception that distributed denial of service (DDoS) is all about the very large attacks. The highest volume attacks certainly make all the headlines, but they are actually a tiny minority of the overall DDoS threat. The fact is that small DDoS attacks are an everyday occurrence for many organizations.

Read more

The Dangerous Power of DDoS-for-Hire

It was reported in late December 2018 that law enforcement officials from the US, the UK, and the Netherlands, had seized the domains of 15 DDoS-for-hire sites. News reports suggested that the sites were taken down just before Christmas, because it is notoriously a time when hacker groups target retailers and gaming providers in a bid to disrupt their services.

Read more