U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Hackers Steal Data of 4.38 Million Aflac Japan Customers|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Hackers Steal Data of 4.38 Million Aflac Japan Customers|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

DDoS Attacks on the rise in Q1 2015, says Akamai

DDoS attacks even more dangerous according to the last report published by Akamai Technologies, the “Q1 2015 State of the Internet – Security Report”. According to Akamai Technologies, Q1 2015 showed that distributed denial-of-service attacks are on the rise again, and according to Akamai Technologies, Q1 set a record for the number of DDoS attacks, […]

DDoS Attacks on the rise in Q1 2015, says Akamai

DDoS attacks even more dangerous according to the last report published by Akamai Technologies, the “Q1 2015 State of the Internet – Security Report”.

According to Akamai Technologies, Q1 2015 showed that distributed denial-of-service attacks are on the rise again, and according to Akamai Technologies, Q1 set a record for the number of DDoS attacks, where the numbers of attacks by DDoS doubled comparing with Q1 2014.

Some curious numbers about DDoS compared with 2014:
DDoS

Eric Kobrin, the Akamai’s director of information security associated the increase of DDoS attacks with the continued “exploitation of network devices and associated protocols for reflection attacks, as well as the growing popularity of DDoS-for-hire sites.”

“(It’s) very inexpensive to launch attacks DDoS being used as a preferred attack method for malicious actors,” explained Kobrin. “As a result, we have noticed an increase within our customer base as well an overall higher demand for cloud-based DDoS mitigation services.” 

More useful information extracted from the study is that Akamai registered eight major DDoS attacks, “Mega attacks” that reached more than 100 Gigabits per second, with a peak of 170 Gbps:

DDoS 2

The attackers practically every attack technique, including Service Discovery Protocol (SSDP), SYN floods, DNS, ICMP, etc.

To have a cleared idea of the attack vectors, in the picture below are reported DDoS attack types:
ddos attack vectors

“Some of the growth is likely related to new vulnerability disclosures and the commercialization of DDoS botnets,”,”Some of it may be an artifact of our evolving measurement systems.”

The report mentions also a possible evolution of DDoS attacks with the adoption of the IPv6 protocol.

“Because IPv6 grants each user a large address space…security solutions may be bypassed by attackers appearing to come from multiple addresses without needing to purchase or steal more connectivity,” . “Additionally, software designed for IPv4, which had IPv6 shoehorned in, may not have duplicated the protections which had been added for v4 vulnerabilities to the v6 side of the codebase.”

Enjoy the report!

About the Author Elsio Pinto

Elsio Pinto (@high54security) is at the moment the Lead Mcafee Security Engineer at Swiss Re, but he also as knowledge in the areas of malware research, forensics, ethical hacking. He had previous experiences in major institutions being the European Parliament one of them. He is a security enthusiast and tries his best to pass his knowledge. He also owns his own blog http://high54security.blogspot.com/

Edited by Pierluigi Paganini

(Security Affairs – DDoS, Akamai)