DDoS Attacks Go Pro: Nexusguard Sees Less Generic Bandwidth Flooding, More Target-Specific Exploits
Nexusguard’s information security researchers outline recent large-scale DDoS attacks and conclude that they are quickly becoming as threatening and sophisticated as APT attacks.
(PRWEB) May 31, 2013
In the quest to reduce required resources and increase effectiveness, newer techniques that DDoS attackers have developed no longer emphasize on bandwidth flooding–the latest DDoS attacks are organized, targeted and more sophisticated than ever.
Speaking at Defcon and HTCIA 2012, Tony Miu, Information Security Researcher for Nexusguard, discussed the rapid increase of targeted DDoS attacks in the APAC region: a 548% increase in 2012 alone, with hundreds of targeted DDoS attacks recorded in the second half of the year.
Frank Tse, Information Security Researcher for Nexusguard, spoke at Info Security 2013, further warning that DDoS attacks are increasingly adopting characteristics from advanced persistent threats (APT), a type of targeted, persistent theats that exemplify the evolution of cyber attacks.
Tse believes that this marks a significant departure from earlier DDoS attacks, which were loosely organized and more akin to pranks. The new generation of attackers comprise a tightly-knit team of professionals that are able to launch highly organized plans and carry out long-term objectives. With clear targets and goals, they can devise attacks that are designed to penetrate specific organizations.
Naming a few recent DDoS attacks, Tse warns that the stakes are higher than ever:
1. Attackers developed Outflare, a piece of malware that is designed specifically to circumvent anti-DDoS services. It takes control over client PCs to attack enterprise servers.
2. Attacks on US financial institutions are even more targeted, with attacker hacking into enterprise servers to attack those of the financial institutions. Tse says this allowed the attackers to have more consistent and powerful resources at their disposal–while costing them less.
3. South Korea’s recent “DarkSeoul” incident was a case in which the attackers crippled the victim’s network by deploying malware. This was a direct attack on company computers to break their system from the inside, making it more invasive and threatening.
Emphasizing that DDoS attacks are no longer as simple as bandwidth flooding, Tse believes they are now as threatening as APT attacks.
Tse recommends that corporations should have a basic understanding of their network infrastructure and work with their anti-DDoS service providers to secure their systems and networks. For more information, please visit http://www.nexusguard.com.
Nexusguard is an industry-leading Internet security service provider, proven by years of experience mitigating thousands of attacks per month. Established in 2008, Nexusguard continues to provide innovative end-to-end, cloud-based Internet security solutions. By protecting clients against the ever-increasing and evolving multitude of Internet threats, Nexusguard’s cloud-based security solutions empower clients around the globe with uninterrupted services. For more information, please visit http://www.nexusguard.com.
Press Contact :
Stanley Liu – Senior Marketing Executive, Hong Kong
Ivy Wu – Marketing & PR Executive, Taiwan
For the original version on PRWeb visit: http://www.prweb.com/releases/prweb2013/5/prweb10787921.htm