These days, there are typically three parties to a distributed denial of service attack.
You probably know about two of them: the perpetrator and the target. Less well known is the vast and growing number of third-party providers of DDoS attacks as a service. Brazenly advertising their wares online, these providers will perform an attack on the customer’s behalf and provide detailed reports of their accomplishments. Their fees are shrinking due to rapidly expanding competition and the abundant supply of readily available attack resources, such as botnets. As a result, the DDoS attack business is very much a buyer’s market.
Week two of National Cyber Security Awareness Month (NCSAM) will “showcase how organizations can protect against the most common cyber threats. The week will also look at resources to help organizations strengthen their cyber resilience, including the use of the National Institute of Standards and Technology Cybersecurity Framework.”
DDoS attacks fit the bill in two ways.
DDoS Activity in 2017
(through September 30th)
- 272 days
- 6.1 million DDoS attacks
- 15 per minute
As we approach the one year anniversary of the Dyn attack, it may seem like all has been quiet in DDoS land by comparison. After all, we have not seen major, multi-continent internet outage impacting many of the most popular online services and applications this year. That’s the good news. The bad news is, it’s not for lack of trying.
Much remains to be uncovered – or revealed publicly – about the breach of personal data at Equifax. One thing is certain: we will be hearing a lot more about Equifax in the coming months.
Unfortunately, the escalating threat environment and circumstances that led to the breach are not new. Just from what is apparent to date, it was the lack of appropriate coordination of technology, people and processes that resulted in the theft of 143 million personal records.
“There is no mention of me. Don’t you remember? I called you a loser and said if you didn’t go to college you wouldn’t amount to anything.” – courtesy of my brother, Gary. Seem harsh? Nah – that is just my brother Gary’s reaction after […]
About the Organization The Multi-National Banking Group offers a range of wholesale and retail banking, insurance, asset management and wealth management services through several different business units and regional partnerships. Delivering their innovative, client value propositions requires greater collaboration between business units and fast, secure […]
Online services like banking and e-commerce can only succeed if users trust that their transactions and sensitive, personal data are truly secure. Encryption is what makes those services possible. It only stands to reason, however, that encrypted services are among the prime targets of DDoS […]
Last week, Arbor Network’s Women on Their Way group was fortunate enough to have Dr. Melissa Grill Peterson with us via webinar. Her goal in speaking to us as women in cybersecurity was to help us separate from genetically encoded stereotypes and find our own […]
Distributed Denial of Service (DDoS) attacks are more varied than the mega-sized DDoS attacks that you hear about on the evening news. Unfortunately, DDoS attacks are quite common and affect ISPs, Hosters, and Enterprises daily. DDoS attacks range from nearly a Terabyte per second (Tbps) […]
As if enterprise security executives don’t have enough to worry about. Finding, hiring and retaining the right skill sets to protect their enterprise has become a real challenge; and it will only get harder. The eighth Global Information Security Workforce Study (GISWS), which includes feedback […]