The Unbearable Asymmetry of DDoS
Because adversaries leverage compromised and abusable online resources belonging to legitimate organizations and individuals to launch DDoS attacks, the tangible cost to attackers is nil, while...
Read the blog
-
-
Nuisance Network Traffic
While there are many obvious threats like hacktivists, nation-state adversaries and ransomware operators, there also lies a constant ever-growing undercurrent that we call nuisance traffic. The...
Read the blog
-
Carpet-Bombing
Carpet-bombing (Spread Spectrum, Subnet DDoS) attacks take place when an adversary targets a range of addresses or subnets simultaneously to saturate networks with garbage traffic while also...
Read the blog
-
DDoS Attacks Against Poland Skyrocket In Wake of New Prime Minister’s Election
Since late December, Poland has been the target of several groups as new Prime Minister Tusk was sworn in. The most notable group targeting Poland is NoName057. They have targeted several types of...
Read the blog
-
NoName057(16)
NoName057(16) relies heavily on HTTPS application-layer DDoS attacks, with many attacks repeatedly sourced from the same attack harness, networks, and targeting similar countries and industries.
Read the blog
-
Anonymous Sudan
Anonymous Sudan is a highly prolific threat actor conducting distributed denial-of-service attacks (DDoS) to support their pro-Russian, anti-Western agenda. Although the attacks attributed to this...
Read the blog
-
The Power of Names
Typically, application-layer protocols such as HTTP/s, QUIC, SIP, and others receive the lion’s share of attention in most discussions of internet traffic. But it’s the Domain Name System (DNS),...
Read the blog
-
HTTP/2 'Rapid Reset' Application-Layer DDoS Attacks Targeting Shared Cloud Computing, SaaS, and CDN Infrastructure Providers
In a joint disclosure by several well-known cloud computing, SaaS, and CDN operators, a new HTTP/2 application-layer DDoS attack vector (CVE-2023-44487) has been described which has been used in...
Read the blog
-
100% Increase in DDoS Attacks Against India
Summary NETSCOUT and ASERT have observed massive increases in DDoS attacks against Indian targets. This near doubling of DDoS attacks since the beginning of 2023 has been fueled by a rallying call...
Read the blog
-
Service Location Protocol (SLP) Reflection/Amplification Attack Mitigation Recommendations
With the computing power and internet transit capacity available to a substantial proportion of abusable SLP reflectors/amplifiers, attackers can potentially launch extremely high-volume,...
Read the blog
-
DDoS Attacks Targeting NATO Members Increasing
As the effects of COVID-19 and inflated numbers of DDoS attacks have settled into some semblance of normalcy, it has been all out DDoS war for Finland, Hungary, and Turkey.
Read the blog
-
Global DDoS-for-hire Takedown
On December 15, 2022, The U.S. Federal Bureau of Investigation (FBI), in cooperation with several international law enforcement partners, seized 49 domain names and arrested six individuals for...
Read the blog
-
DDoS Threat Landscape - Russia
Since mid-February of 2022, the NETSCOUT Arbor Security Engineering and Response Team (ASERT) has been monitoring the situation in Russia and Ukraine. We recently published an update to our...
Read the blog
-
DDoS Threat Landscape - Ukraine
The ongoing DDoS attack campaign against Ukraine increased significantly. We anticipate that DDoS activity targeting Ukraine will continue over the duration of the conflict, and will continue to...
Read the blog
-
TP240PhoneHome Reflection/Amplification DDoS Attack Vector
A new reflection/amplification distributed denial-of-service (DDoS) vector with a record-breaking potential amplification ratio of 4,294,967,296:1 has been abused by attackers in the wild to...
Read the blog
-
The Anatomy of the DDoS Attack Campaign Targeting Organizations in Ukraine
Overview Beginning on 13 February 2022, multiple governmental, military, and financial organizations within Ukraine reported that their public-facing Web sites, applications, and ancillary...
Read the blog
-
The Anatomy of the DDoS Attack Campaign Targeting Organizations in Eastern Europe
Beginning on 13 February 2022, multiple governmental, military, and financial organizations within Ukraine reported that their public-facing Web sites, applications, and ancillary supporting...
Read the blog
-
What Happened in the Second Half of 2021?
Executive Summary The second half of 2021 finally saw much of the world returning to normal, at least until the recent Omicron variant sent us packing back home. The premature return to normal...
Read the blog
-
Our New DDoS Normal Isn’t All That Normal
Attack frequency has dropped, but we are nowhere near the numbers considered normal prior to COVID-19: Threat actors launched approximately 5.4 million DDoS attacks in the first half of 2021.
Read the blog
-
The Beat Goes On
The beat goes on: Threat actors launched approximately 2.9 million DDoS attacks in the first quarter of 2021, a 31% increase from the same time in 2020.
Read the blog
-
Loading More...
