Articles about Attack Traffic

cloud

Big Switch takes big bet it can beat off big denial of service attacks

Big Switch Networks is taking aim at the kinds of IoT-based attacks that have rocked the Internet this year. Headlining its BigSecure Architecture release today is a service chaining solution the company's chief product officer Prashant Gandhi told Vulture South can scale up to deflect a terabit-scale attack in about ten …

In the three years since IETF said pervasive monitoring is an attack, what's changed?

Feature After three years of work on making the Internet more secure, the Internet Engineering Task Force (IETF) still faces bottlenecks: ordinary peoples' perception of risk, sysadmins worried about how to manage encrypted networks, and – more even than state snooping – an advertising-heavy 'net business model that relies on collecting …

CloudFlare warns of another massive botnet, er, flaring up

CloudFlare has warned of another massive botnet that appears to be ramping up and targeting the US West Coast. In a blog post, the content delivery network said it has been watching a flood of attack traffic that started two weeks ago and appears to have been coming from one person testing out its abilities before moving it to …
Kieren McCarthy, 05 Dec 2016

If your smart home gear hasn't updated recently, throw it in the trash

When was the last time your smart thermostat, lights, hub, camera, or power socket was updated? If it was a while ago, you may want to think about chucking it in the garbage. That's according to DNS mage and security expert Paul Vixie, who has been using his status in the internet world to increasingly warn about the dangers …
Kieren McCarthy, 05 Dec 2016
Robots massed photo via Shutterstock

Dyn Dyn Dyn – we have a buyer: Oracle gobbles Internet of Things DDoS victim

Oracle is buying Dyn, the internet infrastructure outfit whose A-list customers were struck by a global DDoS from internet-attached "things" in October. The software giant is buying Dynamic Network Services (Dyn) to speed up cloud computing traffic. Financial terms were not disclosed Dyn's platform controls and optimises …
Gavin Clarke, 21 Nov 2016

How many Internet of S**t devices knocked out Dyn? Fewer than you may expect

With more time to analyse its logs, DNS provider Dyn reckons about 100,000 Mirai-infected home web-connected gadgets knocked it out last Friday. In its latest analysis, product executive veep Scott Hilton writes: “We are still working on analyzing the data but the estimate at the time of this report is up to 100,000 malicious …
Image by Daniel Wiedemann http://www.shutterstock.com/gallery-89719p1.html

Hacktivist crew claims it launched last week's DDoS mega-attack

A group called New World Hackers has claimed responsibility for a DDoS attack that rendered significant portions of the web unreachable last Friday. A series of assaults carefully targeted at Dyn, the managed DNS provider, knocked the service offline for much of the day, causing disruption to multiple sites that rely on its …
John Leyden, 24 Oct 2016
DDOS

Thanks, IoT vendors: your slack attitude will get regulators moving

Last Friday's Mirai botnet attack against Dyn must force everybody's hands – vendors, regulators, and Internet infrastructure operators. It's going to be a while before research gets as far as attribution to an attacker, but in the meantime, there's plenty of culpability to go around. Two things are clear, however: the …

IBM throws ISP under a bus for Australia's #Censusfail

IBM has blamed a supplier for causing the failure of Australia's online census, which went offline on the very night millions of households were required to describe their disposition. Big Blue's submission (PDF) to Australia's Standing Committees on Economics, which is conducting an Inquiry into the Preparation, …
Simon Sharwood, 21 Oct 2016

Internet of Things botnets: You ain’t seen nothing yet

Internet of Things (IoT) botnet "Mirai" is the shape of things to come and future assaults could be even more severe, a leading security research firm warns. Mirai powered the largest ever DDoS attack ever, spawning a 620Gbps DDoS against KrebsOnSecurity. Source code for the malware was released on hacker forums last week. …
John Leyden, 10 Oct 2016

Security man Krebs' website DDoS was powered by hacked Internet of Things botnet

The huge distributed denial of service (DDoS) attack which wiped security journalist Brian Krebs' website from the internet came from a million-device-strong Internet of Things botnet. "Attack appears to include numerous IoT devices, including security cameras. Still itemizing them," an Akamai spokesman told El Reg by email. …
Gareth Corfield, 26 Sep 2016
Image by robodread http://www.shutterstock.com/gallery-529180p1.html

Google rushes in where Akamai fears to tread, shields Krebs after world's-worst DDoS

Google has provided free distributed denial of service attack (DDoS) mitigation services to security publication Krebs on Security, stepping in after Akamai withdrew support. The information security site was last week hammered with a 620Gbps DDoS attack, widely rated one of the world's largest by volume of junk data. …
Darren Pauli, 26 Sep 2016

Avaya explains its 'hyper-segmentation' approach to security

Interview It's way too easy to get past a firewall, map out an enterprise's network, and start tapping IP addresses looking for vulnerable machines – so why are we using Layer 3 addressing as the basis of the enterprise network? Avaya's new software-defined-networking-based architecture proposes to stop TCP/IP-based attack traffic at …

DDoS attacks: For the hell of it or targeted – how do you see them off?

Distributed Denial of Service (DDoS) attacks can be painful and debilitating. How can you defend against them? Originally, out-of-band or scrubbing-centre DDoS protection was the only show in town, but another approach, inline mitigation, provides a viable and automatic alternative. DDoS attacks can be massive, in some cases …
Danny Bradbury, 22 Sep 2016
A grey beard

Greybeards beware: Hair dye for blokes outfit Just For Men served trojan

Malware writers have penetrated the website of hair-dye-for-greying-blokes outfit Just For Men, foisting a password-stealing trojan at visitors, Malwarebytes researcher Jerome Segura says. Attackers are using the RIG exploit kit, which recently dethroned Neutrino as the most popular of the off-the-shelf crime kits that make …
Team Register, 21 Sep 2016

Meet DDoSaaS: Distributed Denial of Service-as-a-Service

Analysis It’s not often an entirely new and thriving sector of the “digital economy” – one hitherto unmentioned by the popular press – floats to the surface of the lake in broad daylight, waving a tentacle at us. This is the DDoS-for-hire industry, and it’s fascinating for a few reasons. This shady marketplace has done everything a …
Andrew Orlowski, 12 Sep 2016

Networking wonks say lousy planning, not DDOS, caused #Censusfail

The failure of the Australian census seems to be a failure of planning. The Federal Government is blaming a distributed denial of service attack (DDoS) and an abundance of caution for sending the once-every-five-years Antipodean citizen survey into a grinding halt beginning last night and continuing as of the time of writing …
Darren Pauli, 10 Aug 2016

DDoS trends: Bigger, badder but not longer

DDoS attacks once again escalated in both size and frequency during the first six months of 2016. Netscout's DDoS mitigation arm Arbor Networks warns that attacks greater than 100Gbps are far from uncommon. The security firm has monitored 274 attacks over 100Gbps in the first half of 2016, versus 223 in all of 2015. The …
John Leyden, 19 Jul 2016

Chinese gambling site served near record-breaking complex DDoS

A chinese gambling company has been pulverised with multiple nine-vector, 470 Gbps, 110 million packet-per-second distributed denial of service (DDoS) attacks, some of the biggest and most complex ever recorded. The unnamed company was attacked by DDoS that used nine vectors in a very rare bid to bypass Incapsula's mitigation …
Darren Pauli, 01 Jul 2016

Anonymous whales on Denmark, Iceland with OpKillingBay DDoS

A pair of Akamai researchers are warning that entities using the name and iconography of hacker collective Anonymous will soon expand a six-year distributed denial of service (DDoS) attack campaign against Japan to other whale-and-dolphin-eating nations. The operation, dubbed KillingBay, is detailed in a report [PDF] and is …
Darren Pauli, 22 Apr 2016

DNS root server attack was not aimed at root servers – infosec bods

The internet's root servers were not the target of a distributed denial-of-service (DDoS) attack in December which for a short time took out four of the 13 pillars of the global network. That's according to two security researchers who will present their findings at a conference in Argentina on Friday. Instead, they conclude …
Kieren McCarthy, 29 Mar 2016
Rose and Jack drowning scene Titanic. Pic: Fox pictures

Cloud sellers who acted on Heartbleed sink when it comes to DROWN

Response to the critical web-crypto-blasting DROWN vulnerability in SSL/TLS by cloud services has been much slower than the frantic patching witnessed when the Heartbleed vulnerability surfaced two years ago. DROWN (which stands for Decrypting RSA with Obsolete and Weakened eNcryption) is a serious design flaw that affects …
John Leyden, 08 Mar 2016
Tor

Lose the onion tears, Tor fanboys: CloudFlare may consider binning CAPTCHAs, says CEO

Tor users crying over CloudFlare's CAPTCHAs will soon be able to put away their onions, rather than their .onions, the company has suggested. CloudFlare CEO Matthew Prince told The Register he would love to create a no-more-tears system allowing the anonymizing network's legitimate users to access CloudFlare-hosted websites …

Roses are red, violets are blue, Valentine's Day means DDoS for you

Net scum have bashed florists with distributed denial of service attacks over Valentine's Day in a bid to extract ransoms, security analysts say. The attacks affected almost a dozen florists who were customers of security company Incapsula, and likely many others not monitored by the firm. Security bods Ofer Gayer and Tim …
Darren Pauli, 15 Feb 2016

Internet's root servers take hit in DDoS attack

The internet's root servers came under a concerted distributed denial of service (DDoS) attack last week that effectively knocked three of the 13 critical pillars of the internet offline for several hours. The attack came just days before the Janet academic network received a similar DDoS attack. According to a first analysis …
Kieren McCarthy, 08 Dec 2015
Wordpress logo

WordPress blogger patch foot-drag nag: You're tempting hackers

Misconfigured and unpatched WordPress sites are causing a rash of problems both to themselves and the wider internet. In fact, this ever-present internet security threat has flared up again over the last week because of several new issues. The most pressing problem involves a recent brute force amplification attack on …
John Leyden, 20 Oct 2015

FBI takes down Dridex botnet, seizes servers, arrests suspect

The FBI has teamed up with security vendors to disrupt the operations of Dridex banking Trojan. Multiple command-and-control (C&C) servers used by the Dridex Trojan have been taken down and seized in a co-ordinated action after the FBI obtained court orders. The take-down operation is geared towards crippling the malware’s …
John Leyden, 14 Oct 2015

DDoS defences spiked by CloudPiercer tool - paper

The real IP addresses of some 70 per cent of websites protected by popular distributed denial of service attack protection providers like CloudFlare, Prolexic and Incapsula can be revealed using a simple web tool built on newly uncovered flaws, according to a recent paper. Sensitive websites admins wishing to protect against …
Darren Pauli, 08 Oct 2015

Mobile advertising DDoS JavaScript drip serves site with 4.5bn hits

CloudFlare has turned up an unusual form of denial-of-service attack: mobile advertisements that are pumping out around 275,000 HTTP requests per second. The cloud outfit didn't name the victim, but said the Layer 7 HTTP floods hitting the target is the latest example of a once-theoretical attack turning up in the real world …
Darren Pauli, 28 Sep 2015
NBN Logo

NBN vaults Australia into global top-10 … DDoS attack sources

Australia has won the dubious honour of being named in the global top-10 DDoS sources, and in its quarterly State of the Internet report, Akamai reckons our tiny number of high-speed fibre broadband users are the cause. In its Q2 report, Akamai says that attack traffic coming from Australia topped 4 per cent of global DDoS …
steam_dota_character_648

Unable to log on to online games? Blame cheap-rate DDoSers

Running botnets-for-hire to mount DDoS attacks has become cheaper and easier than ever, according to a new research. Imperva Incapsula reckons botnet-for-hire services might be acquired for for as little $19.99 per month, via underground forums and payable in Bitcoins. Short, single-vector attacks associated with botnet-for-hire …
John Leyden, 10 Jun 2015
Moose

There's a Moose loose aboot this hoose: Linux worm hijacks Twitter feeds for spam slinging

ESET researchers Olivier Bilodeau and Thomas Dupuy have found malware capable of compromising routers and embedded devices, seizing control of social networking accounts, and booting out competitors. The duo report the Moose malware exploits weak login credentials in the networking gear, and does not require vulnerabilities to …
Darren Pauli, 26 May 2015
Two upended shopping trolleys in an alleyway. Photo by Cyron, licensecd under CC 2.0

Bank-card-sniffing shop menace Punkey pinned down in US Secret Service investigation

Security researchers have identified a new strain of point-of-sale (POS) malware during an investigation led by the US Secret Service. Stolen payment card information and the IP addresses of more than 75 infected sales tills were found by security researchers at Trustwave during the probe. It's unclear how many victims the so- …
John Leyden, 16 Apr 2015
Great Wall of China

GitHub jammed by injected JavaScript, servers whacked by DDoS

GitHub's servers are being hammered by web traffic from an army of unwitting cyber-foot-soldiers. It appears when thousands of people visit websites that serve ads and tracking code from Baidu – China's answer to Google – from outside the Middle Kingdom, network gateways on the Chinese border silently inject a JavaScript …
Shaun Nichols, 27 Mar 2015

BT Home Hub SIP backdoor blunder blamed for VoIP fraud

Flaws in a BT Home Hub set-up are being blamed for helping facilitate a VoIP scam. El Reg reader Keith Harbridge, an independent IT consultant, said his client, a firm of solicitors, is just one of number of companies stung by the scam, which occurred in early March. Independent security consultants at Pen Test Partners …
John Leyden, 25 Mar 2015

Want an Internet of Stuff? Not so 4K-ing fast ... yet – Akamai

Analysis Akamai’s quarterly State of the Internet report paints a pretty grim picture for 4K adoption. As well as charting IPv6 uptake, an important step forward to catering for the billions of new connected objects that account for the Internet of Things (IoT), the report finds that internet speeds in many countries still lag behind the …
Faultline, 19 Jan 2015

PEAK IPV4? Global IPv6 traffic is growing, DDoS dying, says Akamai

Broadband and IPv6 are hot – and distributed denial-of-service attacks and IPv4 are not. Well, that's according to Akamai. The cache-and-carry-on biz said in its latest State of the Internet report that, for the first time ever, the average connection speed for netizens is more than 4Mbps, meaning your average punter has a " …
Shaun Nichols, 30 Sep 2014
Popvote DDoS

'Most sophisticated DDoS' ever strikes Hong Kong democracy poll

One of the largest and most sophisticated distributed denial of service (DDOS) attacks has hit a controversial online democracy poll canvassing opinion on future Hong Kong elections. Over the weekend some 680,000 people cast votes in the unofficial poll that offered residents of special administrative region to highlight their …
Darren Pauli, 23 Jun 2014
Collapsed house

MUM's WordPress recipe blog USED AS ZOMBIE in DDoS attacks

Tens of thousands of vulnerable WordPress sites have been co-opted into a server-based botnet being used to run DDoS attacks. More than 160,000 legitimate WordPress sites were abused to run a large HTTP-based (layer 7) distributed flood attack against a target, which called in cloud security firm Sucuri for help. Security …
John Leyden, 12 Mar 2014
Spam

SPAM supposedly spotted leaving the fridge

It's still silly season, it seems. Tell the world that a bunch of small business broadband routers have been compromised and recruited into botnets, and the world yawns. Add in a television or a multi-media centre, and there's a faint flicker of interest – perhaps a raised eyebrow, but not much more. Add in the word “ …
Hacker baseball cap

Old JBoss vuln in the wild, needs patching

JBoss sysadmins need to get busy hardening their systems, with a rising number of attacks against the system, according to Imperva. The attacks are based on an exploit that was published back in October by Andrea Micalizzi. The exploit code gave remote attackers arbitrary code execution access to HP's PCM Plus and Application …

Indonesia becomes MOST DANGEROUS place on the internet

Indonesia has had the dubious honour of supplanting China as the number one source of attack traffic globally in the second quarter, according to the latest stats from content delivery and security firm Akamai. The vendor’s State of the Internet report for Q2 found Indonesia accounted for 38 per cent of the world’s attack …
Phil Muncaster, 17 Oct 2013

Taiwan bids to bolster security with free malware database

Taiwan’s National Centre for High-Performance Computing (NCHC) has launched what it claims to be the world’s first free malware database designed to help businesses, academics and researchers better identify and defend against criminally-coded attacks. The centre, one of the 11 which comprise Taiwan’s National Applied Research …
Phil Muncaster, 02 Sep 2013
Carna botnet

US remains global sluggard in broadband speed rankings

Akamai's latest State or the Internet report shows that the US is making little headway in becoming a top-ranked broadband nation, and is being outpaced by Asia and Europe based on traffic analysis from the first quarter of the year. The US ranked ninth in average measured connection speed which, while a 27 per cent increase, …
Iain Thomson, 24 Jul 2013
The Register breaking news

CISPA row: Slurped citizen data is ENORMO HACK TARGET - infosec boss

The ability to identify common patterns in real-world attacks makes crowd-sourcing threat intelligence extremely useful, according to a study from security tools firm Imperva. The report arrives just as a privacy row rages over the new Cyber Intelligence Sharing and Protection Act (CISPA) law in the US. But the head of the …
John Leyden, 23 Apr 2013

BIGGEST DDoS in history FAILS to slash interweb arteries

Analysis The massive 300Gbit-a-second DDoS attack against anti-spam non-profit Spamhaus this week didn't actually break the internet's backbone, contrary to many early reports. The largest distributed denial-of-service (DDoS) assault in history began on 18 March, and initially hit the Spamhaus website and CloudFlare, the networking biz …
John Leyden, 28 Mar 2013
Network Cables Index Image

BIGGEST DDoS ATTACK IN HISTORY hammers Spamhaus

Anti-spam organisation Spamhaus has recovered from possibly the largest ‪DDoS‬ attack in history. A massive 300Gbps was thrown against Spamhaus' website but the anti-spam organisation was able to recover from the attack and get its core services back up and running. CloudFlare, the content delivery firm hired by Spamhaus last …
John Leyden, 27 Mar 2013
The Register breaking news

Asia has fastest internet, launches most cyber-attacks

Not only is Asia home to the world's fastest internet connections, but it's also the source of the most internet attack traffic, according to new data from content delivery provider Akamai. The latest edition of the company's quarterly "State of the Internet" report once again crowns Hong Kong as home of the fastest broadband …
Neil McAllister, 24 Jan 2013
The Register breaking news

US gov blames Iran for cyberattacks on American banks

Denial-of-service attacks against US banks' web systems were the work of Iran rather than Islamic activists, says a former American government official. A group called the Izz ad-Din al-Qassam Cyber Fighters claimed responsibility for two waves of cyber-attacks against US banks including US Bancorp, Bank of America, Citigroup, …
John Leyden, 09 Jan 2013
The Register breaking news

Hackers warn: We'll hit US banks... again

Hackers who claimed responsibility for a series of denial of service attacks against US banks in September have warned the US they plan to renew their assault shortly. The Izz ad-Din al-Qassam Cyber Fighters named US Bancorp, JP Morgan Chase, Bank of America, PNC Financial Services Group and SunTrust as possible attack targets …
John Leyden, 17 Dec 2012