Presentation is loading. Please wait.

Presentation is loading. Please wait.

Sub-Saturating DDoS Attacks The Silent Bandwidth Thief

Published byBerenice Ward Modified over 6 years ago

Similar presentations

Presentation on theme: "Sub-Saturating DDoS Attacks The Silent Bandwidth Thief"— Presentation transcript:

1 Sub-Saturating DDoS Attacks The Silent Bandwidth Thief
Sean Newman Director Product Management © 2016 Corero

2 20+ Years of DoS Attacks 500 Gbps Hong Kong attack
France swarmed after terror attack PlayStation & Xbox hit at Christmas First Hacktivist event: Zapatista National Liberation Army Anon hits Church of Scientology Spamhaus attack: Reported to reach 310 Gbps Spammers discover botnets Panix.net hit with first major DDoS ProtonMail attack MafiaBoy DDoS: Yahoo!, Amazon, Dell, CNN, Ebay, Etrade Estonia: Parliament, banks, media, Estonia Reform Party Coordinated US bank attacks: Grew to 200 Gbps, and continue today Rio Olympics 540 Gbps DoS for Notoriety Organized crime: Extortion 1993 1995 1997 1999 2001 2003 2005 2007 2009 2011 2013 2015 2017

3 Latest DDoS Attack Vectors
Use of NTP for reflection attacks is on the decline Significant vulnerabilities patches released early in 2016 New DDoS Reflection vector leveraging TFTP (port 69) Small request packet, with spoofed source IP, requesting file TFTP Server sends 60x larger response to spoofed target Many TFTP Servers accessible from the public Internet TFTP is Unauthenticated TFTP Attacks already seen in the wild… © 2016 Corero

4 New Breed of Smarter ‘Surgical’ DDoS Attacks
84% OF ATTACKS ARE LESS THAN 10 MINUTES 93% OF ATTACKS ARE 1 Gbps OR LESS IN SIZE © 2016 Corero

5 Sophisticated Multi-Layered Attacks
Just enough volume to cripple target destination Advanced DoS attacks crafted to avoid detection Short duration to avoid legacy DDoS scrubbing-center mitigation Volume ramped to 68Gb for a few minutes duration when attack not succeeding Initial Attack ramps Ongoing low-level, background attacks © 2016 Corero

6 The Challenge - DoS is part of the new-normal
Thousands of attacks every day: Many Motives Political / Beliefs Ransom / Extortion Targeted Attack Smokescreens Anyone can launch an attack: Free tools and how to videos DDoS for hire sites Increasingly Sophisticated Harder to Detect and Mitigate © 2014 Corero

7 Why Should You Care? …are you?
Cost - Increasing volume of bandwidth being wasted Traditional Scrubbing is either blind, or too slow to react Even if your customers protect themselves, you still suffer Reputation – Many businesses believe their provider protects them Opportunity – Protect your infrastructure and sell on as a service Businesses believe DDoS protection is not their problem; expectation is service providers already dealing with it! …are you? © 2016 Corero

8 Thank You! Thank You!

Download ppt "Sub-Saturating DDoS Attacks The Silent Bandwidth Thief"

Similar presentations

 Natural consequence of the way Internet is organized o Best effort service means routers don’t do much processing per packet and store no state – they.

 Natural consequence of the way Internet is organized o Best effort service means routers don’t do much processing per packet and store no state – they.
Lecture 9 Page 1 CS 236 Online Denial of Service Attacks that prevent legitimate users from doing their work By flooding the network Or corrupting routing.

Lecture 9 Page 1 CS 236 Online Denial of Service Attacks that prevent legitimate users from doing their work By flooding the network Or corrupting routing.
Radware DoS / DDoS Attack Mitigation System Orly Sorokin January 2013.

Radware DoS / DDoS Attack Mitigation System Orly Sorokin January 2013.
©2012 Check Point Software Technologies Ltd. [PROTECTED] — All rights reserved. Check Point DDoS Protector June 2012.

©2012 Check Point Software Technologies Ltd. [PROTECTED] — All rights reserved. Check Point DDoS Protector June 2012.
DFence: Transparent Network-based Denial of Service Mitigation CSC7221 Advanced Topics in Internet Technology Presented by To Siu Sang Eric (07016080)

DFence: Transparent Network-based Denial of Service Mitigation CSC7221 Advanced Topics in Internet Technology Presented by To Siu Sang Eric ( )
Jak zwiększyć bezpieczeństwo i wysoką dostępność aplikacji wg

Jak zwiększyć bezpieczeństwo i wysoką dostępność aplikacji wg
COEN 252: Computer Forensics Router Investigation.

COEN 252: Computer Forensics Router Investigation.
Worldwide Infrastructure Security Report C F Chui, Arbor Networks.

Worldwide Infrastructure Security Report C F Chui, Arbor Networks.
SocialFilter: Introducing Social Trust to Collaborative Spam Mitigation Michael Sirivianos Telefonica Research Telefonica Research Joint work with Kyungbaek.

SocialFilter: Introducing Social Trust to Collaborative Spam Mitigation Michael Sirivianos Telefonica Research Telefonica Research Joint work with Kyungbaek.
DDoS Attack and Its Defense1 CSE 5473: Network Security Prof. Dong Xuan.

DDoS Attack and Its Defense1 CSE 5473: Network Security Prof. Dong Xuan.
ISSA Nashville Chapter, May 17 th 2013 Alexander Karstens Senior Systems Engineer IXIA Communications Preparing your organization for DDoS.

ISSA Nashville Chapter, May 17 th 2013 Alexander Karstens Senior Systems Engineer IXIA Communications Preparing your organization for DDoS.
BOTNETS & TARGETED MALWARE Fernando Uribe. INTRODUCTION  Fernando Uribe   IT trainer and Consultant for over 15 years specializing.

BOTNETS & TARGETED MALWARE Fernando Uribe. INTRODUCTION  Fernando Uribe   IT trainer and Consultant for over 15 years specializing.
Lecture 22 Page 1 Advanced Network Security Other Types of DDoS Attacks Advanced Network Security Peter Reiher August, 2014.

Lecture 22 Page 1 Advanced Network Security Other Types of DDoS Attacks Advanced Network Security Peter Reiher August, 2014.
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 8 – Denial of Service.

Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 8 – Denial of Service.
It’s Not Just You! Your Site Looks Down From Here Santo Hartono, ANZ Country Manager March 2014 Latest Trends in Cyber Security.

It’s Not Just You! Your Site Looks Down From Here Santo Hartono, ANZ Country Manager March 2014 Latest Trends in Cyber Security.
--Harish Reddy Vemula Distributed Denial of Service.

--Harish Reddy Vemula Distributed Denial of Service.
Cyber Attacks Response of the Criminal Law Margus Kurm State Prosecutor Office of the Prosecutor General of Estonia.

Cyber Attacks Response of the Criminal Law Margus Kurm State Prosecutor Office of the Prosecutor General of Estonia.
DISTRIBUTED tcpdump CAPABILITY FOR LINUX Research Paper EJAZ AHMED SYED Dr. JIM MARTIN Internet Research Group. Department Of Computer Science – Clemson.

DISTRIBUTED tcpdump CAPABILITY FOR LINUX Research Paper EJAZ AHMED SYED Dr. JIM MARTIN Internet Research Group. Department Of Computer Science – Clemson.
Lecture 18 Page 1 Advanced Network Security Distributed Denial of Service Attacks Advanced Network Security Peter Reiher August, 2014.

Lecture 18 Page 1 Advanced Network Security Distributed Denial of Service Attacks Advanced Network Security Peter Reiher August, 2014.
Where Cloud Storage Makes Sense For The Enterprise (And Where it Doesn’t) Andrew Reichman Senior Analyst Forrester Research January 22, 2009.

Where Cloud Storage Makes Sense For The Enterprise (And Where it Doesn’t) Andrew Reichman Senior Analyst Forrester Research January 22, 2009.

Similar presentations

Ads by Google