Feeds

Online payment firm in DDoS drama

Protx tries to protect itself

  • alert
  • submit to reddit

Using blade systems to cut costs and sharpen efficiencies

Online payments processing firm Protx is continuing to fight a sustained internet attack which has severely impacting its services for the fourth successive day.

Since Sunday (31 October), Protx's systems have been reduced to a crawl because of a malicious DDoS attack. Although Protx felt it was on top of the problem by Monday (1 November) the attack once again intensified, prompting the company to draft in heavy duty DDoS defences which it hopes will finally thwart the assault.

In a statement, Mat Peck, chief technical officer, Protx said: "Earlier today [1 November] the parties responsible for the Distributed Denial of Service attack on our systems stepped up their assault, this time pushing our systems beyond their capacity to cope. A large number of compromised machines from a wide range of spoofed IP addresses have been attacking our site in a varied and well structured manner. We have been working all day with Globix, our ISP, to implement a specific DDoS solution which can burst up to 1Gb connectivity during periods of peak load whilst also analysing and killing traffic generated by zombie machine on the Net."

"We have migrated the WWW site across to this system first to check the functionality and now that's working, we will be moving the payment servers in the next few hours. This new service, whilst expensive, still mainly developmental and bleeding edge, should enable us to continue to process transactions even under DDoS attacks ten times the size we've seen so far. Future attacks will be dealt with in a matter of minutes instead of hours (or days as many victims of such attacks have found). We're continuing to work closely with the National High Tech Crimes Unit (NHTCU) to bring the perpetrators to task," he added.

On 2 November Globix said it was also beefing up the hardware used by its systems in the process of moving across to a new platform. "Whilst all the payment services are available, some of the auxiliary services will not be available until tomorrow," Peck wrote in an update.

However Register readers report problems processing payments through the service today. "Thousands of small transactional websites, like mine, have been affected," Reg reader Bruce Stidston tells us.

At the time of writing Protx's website was unavailable but you can get an insight into what's going on through Google's cache of the firm's status page. ®

Related stories

WorldPay struggles under DDoS attack (again)
US credit card firm fights DDoS attack
Feds bust DDoS 'Mafia'
DDoSers attack DoubleClick
Online extortionists target Cheltenham

Boost IT visibility and business value

More from The Register

next story
14 antivirus apps found to have security problems
Vendors just don't care, says researcher, after finding basic boo-boos in security software
Secure microkernel that uses maths to be 'bug free' goes open source
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
Only '3% of web servers in top corps' fully fixed after Heartbleed snafu
Just slapping a patched OpenSSL on a machine ain't going to cut it, we're told
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Israel's Iron Dome missile tech stolen by Chinese hackers
Corporate raiders Comment Crew fingered for attacks
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Securing Web Applications Made Simple and Scalable
Learn how automated security testing can provide a simple and scalable way to protect your web applications.