In the News

IBT

New DDoS Attack Technique Could Unleash Devastating Internet Meltdown Warn Experts

October 26, 2016
Massachusetts-based DDoS mitigation provider Corero Network Security has discovered a new amplification attack that makes use of the Lightweight Directory Access Protocol (LDAP) – a commonly-used protocol for accessing usernames and passwords from databases that is integrated in most web servers.
Read article
HelpNet Security

Terabit-Scale DDoS Events Are On the Horizon

October 26, 2016
Corero Network Security has disclosed a new DDoS attack vector observed for the first time against its customers last week. The technique is an amplification attack, which utilizes the Lightweight Directory Access Protocol (LDAP): one of the most widely used protocols for accessing username and password information in databases like Active Directory, which is integrated in most online servers.
Read article
SC

Zero-day DDoS Attack Vector Leverages LDAP to Amplify Malicious Traffic

October 26, 2016
The problem is, most servers on the open Internet should not be able to respond to LDAP requests, yet their firewalls are often configured to permit such data exchanges.
Read article
Dark Reading

New DDoS Attacks Could Reach Tens Of Terabits-Per-Second

October 26, 2016
Network security firm Corero warned that the distributed denial-of-service (DDoS) threat landscape is evolving and could reach tens of terabits-per-second in size, after discovering a new zero-day attack vector that can amplify DDoS attacks by as much as 55x.
Read article
Network World

Attackers are Now Abusing Exposed LDAP Servers to Amplify DDoS Attacks

October 26, 2016
Attackers are abusing yet another widely used protocol in order to amplify distributed denial-of-service attacks: the Lightweight Directory Access Protocol (LDAP), which is used for directory services on corporate networks.
Read article
CIO

Attackers are Now Abusing Exposed LDAP Servers to Amplify DDoS Attacks

October 26, 2016
Attackers are abusing yet another widely used protocol in order to amplify distributed denial-of-service attacks: the Lightweight Directory Access Protocol (LDAP), which is used for directory services on corporate networks.
Read article
PCWorld

Attackers are Now Abusing Exposed LDAP Servers to Amplify DDoS Attacks

October 26, 2016
Attackers are abusing yet another widely used protocol in order to amplify distributed denial-of-service attacks: the Lightweight Directory Access Protocol (LDAP), which is used for directory services on corporate networks.
Read article
IT World

Attackers are Now Abusing Exposed LDAP Servers to Amplify DDoS Attacks

October 26, 2016
Attackers are abusing yet another widely used protocol in order to amplify distributed denial-of-service attacks: the Lightweight Directory Access Protocol (LDAP), which is used for directory services on corporate networks.
Read article
ComputerWorld

Attackers Abuse Exposed LDAP Servers to Amplify DDoS Attacks

October 26, 2016
Attackers are abusing yet another widely used protocol in order to amplify distributed denial-of-service attacks: the Lightweight Directory Access Protocol (LDAP), which is used for directory services on corporate networks.
Read article
ResellerNews

Attackers Abuse Exposed LDAP Servers to Amplify DDoS Attacks

October 26, 2016
Attackers are abusing yet another widely used protocol in order to amplify distributed denial-of-service attacks: the Lightweight Directory Access Protocol (LDAP), which is used for directory services on corporate networks.
Read article
The Hacker News

Friday's Massive DDoS Attack Came from Just 100,000 Hacked IoT Devices

October 26, 2016
According to the security firm, this new attack vector uses the Lightweight Directory Access Protocol (LDAP), which if combined with an IoT botnet, could break records in DDoS power.
Read article
DataCenter Journal

Corero Warns of Powerful New DDoS Attack Vector with Potential for Terabit-Scale DDoS Events

October 25, 2016
In this case, the attacker sends a simple query to a vulnerable reflector supporting the Connectionless LDAP service (CLDAP) and using address spoofing makes it appear to originate from the intended victim. The CLDAP service responds to the spoofed address, sending unwanted network traffic to the attacker’s intended target.
Read article
Tom's Hardware

Network Security Firm Corero Warns Of Impending 'Tens Of Terabits Per Second' DDoS Attacks

October 25, 2016
LDAP is a widely used protocol for accessing username and password information in directories such as Microsoft’s Active Directory, which is found on all Windows-based servers. Corero said it has only seen a few short attacks testing this technique against some of its customers so far.
Read article
SDX Central

New Attack Vector Can Amplify DDoS by 55x

October 25, 2016
This new vector has some pretty serious implications. From this technique, Corero has seen an average amplification factor of 46x and a peak of 55x from what they are used to. Combine this with a botnet the size of Mirai, which was used in the recent attack against Brian Krebs’ website, and Corero claims the amplification can reach unprecedented levels.
Read article
SC

Are Mirai DDoS attacks a wake-up call for IoT industry?

October 24, 2016
ISPs must leverage their ability to detect spoofed IP addresses and block such malicious traffic at ingress. By doing so, DDoS attacks would “at least go down by an order of magnitude."
Read article
Tech Week

Twitter, Spotify And Other Major Sites Disrupted By DDoS Attack On Dyn DNS

October 21, 2016
An attack against a DNS host service appears to be a change of tactics, causing disruption for some of the largest sites in the world as opposed just to taking one offline.
Read article
Telegraph

Global internet outages continue as Second Wave of Cyber Attack Cripples Web Servers

October 21, 2016
Hundreds of popular websites were taken offline for hours on Friday after a critical internet point was hit by multiple cyber attacks.
Read article
Telegraph

Is Today’s DDoS Attack Part of a Troubling Trend?

October 21, 2016
Hundreds of popular websites were taken offline for hours on Friday after a critical internet point was hit by multiple cyber attacks.
Read article
CBR

Twitter, Reddit and Spotify Hit in Massive Dyn DDoS Attack

October 21, 2016
DDoS attacks targeted specifically against Domain Name Service Providers can be especially damaging – not only for the intended victim – but from the perspective that there will also be significant collateral damage.
Read article
GTB

Sierra Wireless Gateways Fall Foul of Mirai Malware

October 18, 2016
Sierra Wireless has been warning customers to change their default access credentials on AirLink gateway products after they discovered the wireless products have been compromised by Mirai malware.
Read article
Capacity Media

DDoS Attack Vector Rises as Sierra Wireless Product Compromised

October 18, 2016
Sierra’s products have been unlucky enough to become the next target, but that’s not due to anything remiss on their part, and there are many more vendors out there with products in the same position, waiting to become the next mass target. Well done to Sierra for proactively reaching out to their customers and highlighting the risk and reminding them to do, essentially, what they should have done anyway!
Read article
InfoSec Buzz

htp GmbH in Hannover Chooses Real-Time DDoS Protection from Corero Network Security

October 14, 2016
htp sought the Corero solution to mitigate against the DDoS attacks they were experiencing almost daily. The company had previously used static filters to defend against attacks, which allowed a successful attack to keep one of the carrier’s central systems unavailable for an extended period of time.
Read article
CyberWire

The CyberWire Daily Podcast 10.14.16

October 14, 2016
In today's podcast we follow the continuing story of election hacks, and the varying but convergent motives behind them. We get a side helping of good government advice from Mr. Putin. (Thanks, Vlad!) Al Qaeda tries to reach the Millennial jihadist market with ISIS-like information operations. The Internet-of-Things enhances its reputation as an Internet-of-Trouble.
Read article
Sys Con

htp GmbH in Hannover Chooses Real-Time DDoS Protection from Corero Network Security

October 12, 2016
htp sought the Corero solution to mitigate against the DDoS attacks they were experiencing almost daily. The company had previously used static filters to defend against attacks, which allowed a successful attack to keep one of the carrier’s central systems unavailable for an extended period of time.
Read article
FN

htp GmbH in Hannover Chooses Real-Time DDoS Protection from Corero Network Security

October 12, 2016
Automated DDoS Defense unmasks previously 'hidden' DDoS attacks, prevents server outages and downtime and secures the entire infrastructure.
Read article