Just like everything else in computing, DDoS attacks are evolving and becoming more destructive to business. Attack sizes are increasing, growing from 150 requests per second in the 1990s – which would bring a server of that era down – to the recent DYNDNS attack and GitHub attack at 1.2 TBs and 1.35 TBs respectively. The goal in both of these attacks was to disrupt two major sources of productivity across the globe.
These attacks used new techniques to achieve their huge bandwidth numbers. The Dyn attack used an exploit found in Internet of Things (IoT) devices to create a botnet, called the Mirai Botnet attack. Mirai used open telnet ports and default passwords to take over WiFi-enabled cameras to execute the attack. This attack was a childish prank but presented a major vulnerability that comes with the proliferation of the IoT devices.
This method is a bit more hands-on than other approaches for WordPress DDoS protection. It involves monitoring which IP addresses are trying to access your website, and blacklisting those that show suspicious activity, such as:
Repeated login attempts
An unreasonably high number of visits
IP clusters flooding your website with traffic
The GitHub attack exploited the many thousands of servers running Memcached on the open internet, an open-source memory caching system. Memcached happily responds with huge amounts of data to simple requests, so leaving these servers on the open internet is a definite no-no
More Info: what is a distributed denial of service attack
These attacks used new techniques to achieve their huge bandwidth numbers. The Dyn attack used an exploit found in Internet of Things (IoT) devices to create a botnet, called the Mirai Botnet attack. Mirai used open telnet ports and default passwords to take over WiFi-enabled cameras to execute the attack. This attack was a childish prank but presented a major vulnerability that comes with the proliferation of the IoT devices.
This method is a bit more hands-on than other approaches for WordPress DDoS protection. It involves monitoring which IP addresses are trying to access your website, and blacklisting those that show suspicious activity, such as:
Repeated login attempts
An unreasonably high number of visits
IP clusters flooding your website with traffic
The GitHub attack exploited the many thousands of servers running Memcached on the open internet, an open-source memory caching system. Memcached happily responds with huge amounts of data to simple requests, so leaving these servers on the open internet is a definite no-no
More Info: what is a distributed denial of service attack
No comments:
Post a Comment