The New DDoS Attack
1. WS-Discovery Attacks - Attackers use a protocol called WS-Discovery (WSD) which allows unauthenticated traffic to flow through and amplify attacks. Amplification as a method is not new and has been used in the past under the names of Simple Network Management Protocol and Simple Service Delivery Protocol.
2. Multi-modal DDoS Attacks - Instead of just one single form of attack, multi-modal involve the launch of several different types of attacks at one point in time. For example, an attacker will launch one attack, and as the mitigation solution tries to mitigate it, another vector is launched, one which could penetrate the network.
3. Ransom DDoS Attacks – or RDDoS as they are known are attacks that are launched with ransom demands as the underlying motive. Attackers launch small attacks with the promise of a larger attack on their web applications unless their demands are met. The whitepaper, `The Anatomy of Ransom Related DDoS Attacks', dives deep into this type of attack.
4. Zero-Day Attacks - These are attacks that involve vectors that haven't been previously used by attackers. As they are new and unknown, mitigation solutions are unaware of them, and therefore, blocking them is not possible. In parallel, they target unknown vulnerabilities in the network.
5. IoT DDoS Attacks - IoT devices are constantly increasing; there are thousands of them out there. As IoT devices are created to serve an array of purposes their manufacturers are not primarily concerned with ensuring security within these new devices. DDoS attackers are not interested in corrupting a single device. They on the other hand look to penetrate the network using the vulnerabilities in the IoT devices to launch DDoS attacks.
6. Low-rate attacks – Most enterprises struggle to distinguish between the low-rate attacks and the legitimate traffic, and at the same time, find it difficult to maintain a low false-negative rate. Like the big attacks, small size attacks can bring down the services rapidly and can create an equivalent impact on the businesses; urging companies to be prepared and review their web security arrangements.
7. Small Sized Attacks - Research confirms that large attacks of 100Gbps and above have fallen by 64% in 2019. However, there has been a startling 158% increase in attacks sized 5Gbps. or less. Enterprises struggle to distinguish between the low-rate attacks and the legitimate traffic, and at the same time, find it difficult to maintain a low false-negative rate. Similar to the big attacks, small size attacks can bring down the services rapidly and can create an equivalent impact on the businesses; urging companies to be prepared and review their web security arrangements.
Recurrent DDoS Attacks Despite Mitigation
The Only Complete DDoS Protection for the Digital World
MazeBolt's new patented technology, RADAR™, is the only 24/7 automatic DDoS attack simulator on a live environment with ZERO downtime/ disruption. It automatically detects, analyses, and prioritizes the remediation of DDoS vulnerabilities in any mitigation system. Raising the efficiency of your Mitigation solution, delivering the ultimate DDoS protection.
Benefits of RADAR™
Israel-based MazeBolt is an innovation leader in cybersecurity, with over two decades of experience in pioneering DDoS protection solutions. The company’s new flagship product, RADAR™, is a patented, new technology. It offers DDoS protection through automated DDoS simulations on live production, with zero downtime. Working in conjunction with any mitigation solution installed. Its unique capabilities have ensured business continuity and full DDoS security posture for enterprises worldwide including Fortune 1000 & NASDAQ-listed companies.