Cybercriminals Use DDoS Among Themselves
Cybercriminals not only launch cyberattacks, but they too are sometimes the target, including DDoS attacks. They can’t buy solutions from legitimate DDoS protection vendors like Corero, so if a rival threat actor or law enforcement knocks them offline with a DDoS attack, they’ve had to accept the interference.
Digital Shadows, a cybersecurity research group, recently discovered some bad actors collaborating to build their own DDoS protection called EndGame, advertised on the dark web forum Dread. It’s not as effective as commercial solutions but makes it harder for law enforcement to disable dark web operations. It remains to be seen how widely adopted EndGame will be, but it could enable nefarious enterprises.
Impacts on the DDoS Landscape
What effects might this have? Attackers will likely innovate attack vectors against each other to evade EndGame, and then use those new vectors on organizations. This is bad news for organizations relying on uptime, as new vectors make DDoS attacks harder to defend.
Criminals constantly evade defenses with new methods. Whether EndGame succeeds or not, attackers will devise new vectors. Having a dynamic, intelligent DDoS solution that automatically protects against unseen attacks is critical. Avoid solutions relying solely on rigid filters and legacy techniques, which only defend against known vectors.
SmartWall® ONE Provides Dynamic Protection
To enhance protection, we created a patented, heuristic-based Smart-Rule detection and protection mechanism. Smart-Rules inspect every packet, looking for indicators of a DDoS attack. When repeated packets have matching characteristics, SmartWall ONE accurately blocks them as an attack, even if the packet type is new.
With increasing frequency, sophistication, and automation of DDoS attacks, real-time automated protection is necessary.
For over a decade, we have provided flexible, automated DDoS protection for enterprises, hosts, and providers globally. Our SmartWall ONE solutions protect on-premises, cloud, virtual, and hybrid environments.
To learn more, please contact us.