Why Your DDoS Mitigation Just Failed

 

why-ddos-mitigation-fails

 

DDoS Attacks Penetrate the Best of Mitigation Solutions

Last year, New Zealand’s stock exchange, NZX, fell under a massive distributed denial-of-service attack and despite its mitigation vendor's efforts to mitigate the attack, NZX experienced multiple days of downtime.

Customers with Telstra's default DNS settings found themselves unable to access the internet on a Sunday morning in August 2020 as the telco was facing a DDoS attack which mitigation could not resolve.

Along with the large attacks, there were several more attacks of all sizes and durations that impacted companies across industry segments. Publicly available information (which is only an indication of the actual attacks) shows a barrage of major DDoS attacks this year on banking and financial services, government, and retail. More details of these attacks in our monthly blog `Worldwide list of DDoS attacks

For attackers, these are cheap attacks and can be obtained for as little as $10 per hour on the Dark Web. However, the impact for organizations can be devastating with the average cost of downtime for an enterprise reaching up to $2 million. Enterprises that have been attacked have suffered from loss of revenue from downtime, loss of customers from session disruption, and productivity loss. The blog `Simple Steps to Calculate DDoS Attack Costs’ shares relevant information about these costs.

Continuous Monitoring - Keeping DDoS Protection Up to Speed      

Most companies that were attacked in the last decade have the best mitigation solutions in place. However, despite this, damaging DDoS attacks continue to penetrate them. One of the key reasons for this is that mitigation solutions are powerful, but need to be continuously monitored, and configured. However, in today's climate, it's impossible, as network vulnerabilities frequently change as new services and applications are added. As a result, changing current configurations leave systems open to ongoing new DDOS vulnerabilities. In parallel, DDoS attacks are also evolving in complexity and volume. They are becoming quicker and sneakier and common mitigation solutions are unable to respond quickly enough to new attacks.

Statistics Prove the Unreliability

Lack of new and ongoing configuration changes leave an inline vulnerability of >48% - Based on 420 DDoS vulnerability tests conducted by MazeBolt on enterprises between 2016 to the end of 2019, configurations leave an inline vulnerability of >48%, allowing DDoS attack to penetrate the best of DDoS mitigation solutions.

Introducing RADAR™

patented-ddos-protection-from-mazebolt

RADAR™, MazeBolt's new patented DDoS protection solution is part of the MazeBolt security platform. RADAR™ simulates DDoS attacks continuously and non-disruptively.

With RADAR™ organizations achieve, maintain, and verify the continuous closing of their DDoS vulnerability gaps. Reducing and maintaining the vulnerability level of damaging DDoS attacks from an average of 48% to under 2% ongoing.

RADAR™ moves the mitigation focus from reacting to each specific attack after it occurs to detecting and eliminating the risk of potential attacks BEFORE they occur.      

The Benefits

  • End-to-end full DDoS protection solution.
  • Detecting all DDoS attack vectors, dramatically maximizing mitigation efficiency.
  • Providing automated DDoS protection that assesses DDoS vulnerabilities 24/7 on live production systems. Ensuring that installed mitigation systems are up-to-date on all DDoS vulnerabilities.
  • Cutting down the possibilities of harmful and damaging DDoS attacks from 45% to under 2% on an on-going basis.
  • Validating that any DDoS attack gets blocked automatically in the shortest time.
  • Elimination of the chances of any service downtime

About MazeBolt 

MazeBolt is an innovation leader in cybersecurity and part of the DDoS mitigation space. Offering full DDoS risk detection and elimination and working with any mitigation system to provide end to end full coverage. Supporting organizations in avoiding downtime and closing DDoS vulnerabilities before an attack happens.

Picture of Alon Yafe

About Alon Yafe

Alon is the Head of Professional Services at MazeBolt and is in charge of all technical services, customer success, and DDoS research activities.