Articles about DDoS

Roger Dingledine, leader of the Tor Project, has warned it could be the subject of an attack this week. In a blog post, he cautioned users that the project had learned that directory authorities might be seized in an attempt to incapacitate the network. Dingledine does not hint at who might be responsible for a future attack, but reassured users that anonymity would be maintained.

Directory authorities are used by Tor clients to help route traffic through the network, ensuring that users remains anonymous at each stage. An attack on directory authorities would probably have little effect to start with, but there is potential to take down the network if enough servers were targeted.

Continue reading →

Websites supporting the Occupy Central movement in Hong Kong have been hit with what is being described as one of the largest cyber attacks ever recorded.

The two sites, Apple Daily and PopVote, have been covering and vocally supporting the pro-democracy movement in Hong Kong. The two even carried out spoof elections for a new chief executive in the region.

Continue reading →

New research from DDoS protection specialist Black Lotus shows that cyber attack incidents have continued to decline throughout this year.

There were 201,721 incidents in the third quarter of this year (down from 462,621 in Q1 2014 and 276,447 in Q2). This can be attributed to the security industry's increased knowledge and filtering against NTP DrDoS types of attacks, as well as more proactive activity to stop malicious attacks before or as soon as they're detected.

Continue reading →

DDoS attacks can be extremely disruptive to business but it can be hard to quantify that disruption in financial and business terms.

A new report by security company Incapsula collates responses from 270 North American organizations of varying sizes to gauge the true impact of attacks. The findings indicate that DDoS attacks are relatively common with 45 percent of the respondents indicating their organization has been hit at some point. Of these, almost all (91 percent) reported an attack during the last 12 months, and 70 percent were targeted two or more times.

Continue reading →

We reported back in March that DDoS attacks had risen sharply to become a major threat for online businesses.

In order to help companies cope, cloud security provider Incapsula is today launching a DDoS Playbook analyzing the threat landscape and providing businesses with a how-to guide to fend off attacks.

Continue reading →

Last year, I eagerly pre-ordered the Sony Playstation 4 and got it on launch day. This was a happy moment for me, but I did have some trepidation. You see, Sony's reputation had been soiled for many years. If you recall, in 2005, the company severely impacted the security of many Windows machines with its CD rooktkit software. Any other company likely would have lost its supporters over such a disgraceful tactic, but Sony has a long history and it weathered the storm. However, fast-forward to 2011, and the PlayStation Network was hacked. This was not a small thing; personal identifying information of 77 million people were exposed. As a result, the company's reputation was severely impacted. Unfortunately, as a PlayStation 3 owner, I was included in that group and had to sign up for identity theft protection (Sony paid for a year of the service).

Somehow, I still bought the PS4 and after only owning it a very short while, I got an email from Sony that my login credentials needed to be changed for security reasons (irregular activity). Enough was enough -- I decided to return the PlayStation 4 and be done with Sony for all things that require network connectivity. Today, the PlayStation Network is once again in the spotlight as it has been taken down for hours by a denial-of-service attack. Sony has confirmed the attack, saying that so far, there is no evidence of stolen information.

Continue reading →

Back in May we reported on Incapsula's packet filtering solution for combating DDoS attacks. Today the company reveals details of how its ‘Behemoth’ system has mitigated a massive multi-vector DDoS attack.

The attack lasted 38 days, during which Incapsula's scrubbing servers filtered out 50+ petabits (51,000+ terabits) of malicious traffic. While the attackers did switch between several targets, they consistently targeted the websites of one Incapsula client -- a video game company.

Continue reading →

Cybercriminals don’t have to make their own malware these days, they can simply purchase ready-made kits. They don’t need to take out a bank loan to do so either -- malware is more affordable than you might think.

Trustwave’s security researchers did a little digging and found that depending on the type, malware can cost as little as two hundred dollars on the black market, and the tools on offer are pretty sophisticated too. Got your wallet ready? Here’s a price list of just some of the currently available malware:

Continue reading →

In recent days we've seen DDoS attacks hit some major names like Feedly and even force the CodeSpaces hosting service out of business.

In a bid to combat the threat presented by DDoS attacks, security specialist Corero Network Security has announced a powerful web-based analytics portal.

Continue reading →

If you moved to Feedly after the much lamented shut-down of Google Reader, as many RSS users did, then you may have noticed that the service is currently down. To prevent customers from wondering about the problems, the company has released an announcement.

Feedly says it is currently under a denial of service attack, with the attacker demanding money to bring an end to service interruption. In a brief post on the company blog, the developers let all customers know of the problem, and promise to update users as the situation develops.

Continue reading →

One of the greatest threats faced by online businesses is the DDoS attack. Recent research by application delivery service Incapsula shows that DDoS attacks are up 240 percent and DNS attacks are also on the rise.

In response to this the company is launching significant updates to its DDoS Protection Services to stop the onslaught of attacks and protect even the largest enterprise customer.

Continue reading →

The FCC voted recently to approve a proposal allowing select companies the ability to pay a premium price to their ISPs in order to deliver their content with a faster service, or 'fast lane' when transiting their networks. There has been considerable discussion both for and against the proposal with respect to how it adheres to the philosophy of net neutrality and how it might impact competition among businesses, particularly small entrepreneurial ventures without the resources to afford premium delivery service.

Unfortunately, the debate’s focus on faster delivery has failed to contemplate the growing need for other types of premium offerings such as 'secure services' and some vitally important questions have been overlooked in the discussion: How will this proposal alter the security threat landscape? Has the security impact of faster delivery services been fully considered and are mitigation technologies prepared to deal with potential threats introduced by this new asymmetry? Why are customers content to pay for the delivery of DDoS attacks and cyber threats under the current unsecure delivery model, and why would they pay for them to be delivered even faster than ever before? It seems counterintuitive.

Continue reading →

Businesses using 123-Reg's web hosting service were knocked offline on Wednesday evening following a reported distributed denial of service (DDoS) attack.

123-Reg is the UK's largest domain provider hosting over 1.4 million websites. The company said it was hit by a DDoS style attack that caused disruption to some customers on its shared hosting packages.

Continue reading →