Posts Tagged ‘DDoS’
Distributed denial of service (DDoS) attacks have become a part of having a presence on the web. While the question used to be if you will be attacked, today it is only a matter of when. Because of this, it is more important than ever to have a defense strategy in place. But, for all the media coverage and attention any DDoS attack may receive, their purpose and how to best defend against them are not always well understood.
According to the 2016 Verizon data breach incident report (DBIR), DDoS and web app attacks have increased substantially over the last year. Successful data breaches of web app attacks where data was stolen increased from 7% to 40% with targeted data including:
- Credit card data
- Personal information
- Financial credentials
If you want to ensure that your business is ready for a DDoS attack there are a number of best practices you should keep in mind. What follow are 5 recommendations from our 10 years of experience managing over 80,000 servers. If you want an even more in depth overview, as well 5 more recommendations, you can download the full white paper here.
The first half of 2015 saw a 50% increase in DDoS attacks. They are not only becoming more frequent but they are getting more sophisticated too. On average, a DDoS attack will cost an SMB company €45,000 and an enterprise €400,000 – not to mention the damage done to the corporate image or share price. In other words, a DDoS attack might not only paralyze your online presence but could also be disastrous to your overall business continuity.
Data breaches and DDoS attacks are the most common threats to your website. Just take a look at these statistics: according to Kaspersky Labs, 74% of companies that suffer a DDoS attack face another security incident at the same time; 26% of these incidents are data breach attempts or data leaks which means these attacks are not primarily meant to take your website offline but are a diversion to get to your data. These are so-called layer 7 attacks: the hackers divert your attention to get your eye off the ball by disrupting the availability of the website while they quietly try to exploit any vulnerabilities in your web applications.
As the administrator of .nl, SIDN is responsible for the functional stability and development of the Netherlands’ country-code top-level domain (TLD). LeaseWeb recently became the first company to implement SIDN’s local anycast technology in its network. Marco Davids, Technical Advisor at SIDN, explains how local anycast differs from regular anycast.
At SIDN we operate an impressive DNS-infrastructure: available at all times, under all circumstances, and designed to reply to thousands of DNS-queries per second. The downside of such a powerful infrastructure is that it can function quite well as a reflector for amplifying DDoS-traffic. And thus, besides using open resolvers, the bad guys also abuse (our) powerful authoritative name servers to amplify their malicious DDoS-traffic.