‘Highly Sophisticated’ DDoS Attacks

Wednesday, October 3, 2012 @ 11:10 AM gHale

Distributed denial-of-service (DDoS) attacks ave not only increased in size, but their sophistication levels have also ratcheted up.

DDoS attacks have caused a lot of problems for organizations and in September, sites of several financial institutions in the United States suffered problems because of the assaults.

Blackhats Stealing Whitehat Tools
SQL Attacks Take Big Jump
VW: Espionage Victim
Black Hat: Persistent Threat Plan

Security frim, Prolexic Technologies, found quite a few attacks against their customers relied on the “itsoknoproblembro” DDoS toolkit. By combining the toolkit’s capabilities with other sophisticated methods, cybercriminals have been able to launch attacks that are difficult to mitigate even for specialized firms.

The security firm recorded massive sustained floods, some of which peaked at 70 Gbps and over 30 million pps.

“Itsoknoproblembro” includes a number of application layer and infrastructure attack vectors, such as UDP and SSL encrypted attack types, SYN floods, and ICMP.

An interesting note about the attacks launched with this DDoS toolkit is the botnet that powers it contains a large number of legitimate IP addresses. This allows the attack to bypass the anti-spoofing mechanisms deployed by companies.

“What we are experiencing is a dramatic uptick in the size and sophistication of DDoS attacks to a level not previously observed. Only a handful of companies around the world could survive a hit of 70 Gbps in conjunction with the complex blend of attack vectors we have witnessed,” said Prolexic Chief Executive Scott Hammack.

“The size and sophistication of this threat has created a high-alert within various industries and with good reason,” he said.

Leave a Reply

You must be logged in to post a comment.