Upload File

dawn of the ddos of things - it security guru · ddos-for-hire services are empowering low-level...

  • Home
  • Documents
  • DAWN OF THE DDoS OF THINGS - IT Security Guru · DDoS-for-hire services are empowering low-level hackers with highly damaging network-layer bursts of 30 minutes or less. This relentless
1
How the ‘DDoS of Things’ Is Powering Bigger, Smarter & More Devastating Multi-Vector Attacks WHAT ARE MULTI-VECTOR DDOS ATTACKS? A GLOBAL CRISIS DAMAGE Unlike single-vector DDoS attacks, multi-vector DDoS attacks are coordinated assaults that simultaneously target applications, networks and bandwidth. Total countries targeted by DDoS attacks in Q3 2016 alone. ii 73% 67 TOP 3 TARGETED COUNTRIES DAWN OF THE 72.6% CHINA SOUTH KOREA 6.3% ANYTHING 75 percent of today’s DDoS attacks target multiple vectors. vii Colossal DDoS attacks have become the norm. 300 Gbps used to be considered massive; today, attacks often push past 1 Tbps. How do DDoS attacks push the 1 Tbps threshold so quickly? Consider Mirai, malware that enables threat actors to compromise more than 200,000 IoT devices to build global botnets. xv 60/40 30 The percentage split of DDoS attacks that target your organization’s application and network layers, respectively. viii DDoS-for-hire services are empowering low-level hackers with highly damaging network-layer bursts of 30 minutes or less. This relentless attack strategy systemically hurts corporations. ix EXHAUSTS SECURITY OPS TEAMS DEGRADES SERVICE USED AS MISDIRECTION FASTER, SMARTER & HYPER-CONNECTED Australian Bureau of Statistics (ABS) Census Website Peak Bandwidth: Unknown x Rio Olympics (IoT Botnet Attack) Peak Bandwidth: 540 Gbps xi Krebsonsecurity.com (IoT Botnet Attack) Peak Bandwidth: 620 Gbps xii OVH (IoT Botnet Attack) Peak Bandwidth: 1 Tbps xiii Dyn (IoT Botnet Attack) Peak Bandwidth: 1.2 Tbps xiv AUG 2016 SEP 2016 OCT 2016 82% 6X $2.35 Million 3,700 More than 3,700 DDoS attacks occur each day. iii Once attacked, there’s an 82 percent chance of being hit again. iv Of victim organizations, 45 percent were attacked six or more times. v While cost varies, attacks can run businesses anywhere from $14,000 to $2.35 million per incident. vi Almost three quarters of all global brands, organizations and companies have been victims of a DDoS attack. i 1 TBPS & GROWING While 57 percent of global DDoS attacks target gaming companies, any business that performs online services is a target. And few, if any, can afford downtime. xvi Even a moment of service downtime damages your revenue, brand and user experience. With the ability to mitigate DDoS attacks up to 300 Gbps in capacity (or 2.4 Tbps in a synchronized cluster), A10 Thunder TPS is your agile, efficient and battle-tested defense against the full spectrum of DDoS attacks. xvii WITH THUNDER MITIGATION UP TO 300 Gbps or 2.4 Tbps ST P VISIT A10NETWORKS.COM/TPS 57% GAMING SERVICES 4% MEDIA & ENTERTAINMENT 4% INTERNET & TELECOM 3% OTHER 1% EDUCATION 26% SOFTWARE & TECHNOLOGY 5% FINANCIAL SERVICES A10 THUNDER TPS DDoS NOW i https://ns-cdn.neustar.biz/creative_services/biz/neustar/www/resources/whitepapers/it-security/ddos/2016-apr-ddos-report.pdf ii https://securelist.com/analysis/quarterly-malware-reports/76464/kaspersky-ddos-intelligence-report-for-q3-2016/ iii https://www.a10networks.com/resources/ddos-trends-report iv http://www.networkworld.com/article/3064677/security/hit-by-ddos-you-will-likely-be-struck-again.html v https://ns-cdn.neustar.biz/creative_services/biz/neustar/www/resources/whitepapers/it-security/ddos/2016-apr-ddos-report.pdf vi http://www.datacenterknowledge.com/archives/2016/05/13/number-of-costly-dos-related-data-center-outages-rising/ vii https://www.a10networks.com/resources/ddos-trends-report viii https://lp.incapsula.com/rs/804-TEY-921/images/2015-16%20DDoS%20Threat%20Landscape%20Report.pdf ix https://lp.incapsula.com/rs/804-TEY-921/images/2015-16%20DDoS%20Threat%20Landscape%20Report.pdf x https://www.a10networks.com/blog/ddos-attacks-spark-australian-census-site-shutdown xi http://www.securityweek.com/iot-botnet-targets-olympics-540gbps-ddos-attacks xii https://krebsonsecurity.com/2016/09/krebsonsecurity-hit-with-record-ddos/ xiii http://www.securityweek.com/hosting-provider-ovh-hit-1-tbps-ddos-attack xiv https://www.theguardian.com/technology/2016/oct/26/ddos-attack-dyn-mirai-botnet xv https://www.a10networks.com/blog/investigating-mirai-inside-malware-powers-iot-botnets xvi https://www.statista.com/statistics/440600/ddos-attack-traffic-by-industry/ xvii https://www.a10networks.com/news/stop-multi-vector-ddos-disruption-expanded-thunder-tps-solution SERVICE USA 12.8% 3 4 out of Minutes or Less IMMUNE NO INDUSTRY IS BUT RANDOM TO BUSINESS FIGHT DDoS Part Number: A10-GR-70319-EN-01 FEB 2017 DDoS OF THINGS

Upload: others

Post on 28-Sep-2020

7 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: DAWN OF THE DDoS OF THINGS - IT Security Guru · DDoS-for-hire services are empowering low-level hackers with highly damaging network-layer bursts of 30 minutes or less. This relentless

How the ‘DDoS of Things’ Is Powering Bigger, Smarter & More Devastating Multi-Vector Attacks

WHAT ARE MULTI-VECTOR DDOS ATTACKS?

A GLOBAL CRISIS

DAMAGE

Unlike single-vector DDoS attacks, multi-vector DDoS attacks are coordinated assaults that simultaneously target applications, networks and bandwidth.

Total countries targeted by DDoS attacks in Q3 2016 alone. ii

73% 67

TOP 3 TARGETED COUNTRIES

D A W N O F T H E

72.6%CHINA

SOUTH KOREA

6.3%

ANYTHING

75 percent of today’s DDoS attacks target multiple vectors.vii

Colossal DDoS attacks have become the norm. 300 Gbps used to be considered massive; today, attacks often push past 1 Tbps.

How do DDoS attacks push the 1 Tbps threshold so quickly? Consider Mirai, malware that enables threat actors to compromise more than 200,000 IoT devices to build global botnets.xv

60/40

30

The percentage split of DDoS attacks that target your organization’s application and network layers, respectively.viii

DDoS-for-hire services are empowering low-level hackers with highly damaging network-layer bursts of 30 minutes or less. This relentless attack strategy systemically hurts corporations.ix

EXHAUSTS SECURITY OPS TEAMS

DEGRADES SERVICE

USED ASMISDIRECTION

FASTER, SMARTER & HYPER-CONNECTED

Australian Bureau of Statistics (ABS) Census WebsitePeak Bandwidth: Unknownx

Rio Olympics (IoT Botnet Attack)Peak Bandwidth: 540 Gbpsxi

Krebsonsecurity.com (IoT Botnet Attack)Peak Bandwidth: 620 Gbpsxii

OVH (IoT Botnet Attack)Peak Bandwidth: 1 Tbpsxiii

Dyn (IoT Botnet Attack)Peak Bandwidth: 1.2 Tbpsxiv

AUG 2016

SEP 2016

OCT 2016

82%

6X

$2.35Million

3,700 More than 3,700 DDoS attacks occur each day.iii

Once attacked, there’s an 82 percent chance of being hit again.iv

Of victim organizations, 45 percent were attacked six or more times.v

While cost varies, attacks can run businesses anywhere from $14,000 to $2.35 million per incident.vi

Almost three quarters of all global brands, organizations and companies have been victims of a DDoS attack.i

1TBPS& GROWING

While 57 percent of global DDoS attacks target gaming companies, any business that performs online services is a target. And few, if any, can afford downtime.xvi

Even a moment of service downtime damages your revenue, brand and user experience.

With the ability to mitigate DDoS attacks up to 300 Gbps in capacity (or 2.4 Tbps in a

synchronized cluster), A10 Thunder TPS is your agile, efficient and battle-tested

defense against the full spectrum of DDoS attacks.xvii

WITH THUNDER

MITIGATION UP TO300 Gbps or 2.4 Tbps

ST P

VISIT A10NETWORKS.COM/TPS

57%GAMING

SERVICES

4%MEDIA & ENTERTAINMENT

4%INTERNET & TELECOM

3%OTHER

1%EDUCATION

26%SOFTWARE &

TECHNOLOGY

5%FINANCIALSERVICES

A10 THUNDER TPS

DDoSN O W

i https://ns-cdn.neustar.biz/creative_services/biz/neustar/www/resources/whitepapers/it-security/ddos/2016-apr-ddos-report.pdfii https://securelist.com/analysis/quarterly-malware-reports/76464/kaspersky-ddos-intelligence-report-for-q3-2016/iii https://www.a10networks.com/resources/ddos-trends-reportiv http://www.networkworld.com/article/3064677/security/hit-by-ddos-you-will-likely-be-struck-again.htmlv https://ns-cdn.neustar.biz/creative_services/biz/neustar/www/resources/whitepapers/it-security/ddos/2016-apr-ddos-report.pdfvi http://www.datacenterknowledge.com/archives/2016/05/13/number-of-costly-dos-related-data-center-outages-rising/vii https://www.a10networks.com/resources/ddos-trends-reportviii https://lp.incapsula.com/rs/804-TEY-921/images/2015-16%20DDoS%20Threat%20Landscape%20Report.pdfix https://lp.incapsula.com/rs/804-TEY-921/images/2015-16%20DDoS%20Threat%20Landscape%20Report.pdfx https://www.a10networks.com/blog/ddos-attacks-spark-australian-census-site-shutdownxi http://www.securityweek.com/iot-botnet-targets-olympics-540gbps-ddos-attacksxii https://krebsonsecurity.com/2016/09/krebsonsecurity-hit-with-record-ddos/xiii http://www.securityweek.com/hosting-provider-ovh-hit-1-tbps-ddos-attackxiv https://www.theguardian.com/technology/2016/oct/26/ddos-attack-dyn-mirai-botnetxv https://www.a10networks.com/blog/investigating-mirai-inside-malware-powers-iot-botnetsxvi https://www.statista.com/statistics/440600/ddos-attack-traffic-by-industry/xvii https://www.a10networks.com/news/stop-multi-vector-ddos-disruption-expanded-thunder-tps-solution

SERVICE

USA

12.8%

3 4outof

Minutes or Less

IMMUNENO INDUSTRY

IS

BUT RANDOM

TO BUSINESS

FIGHT DDoS

Part Number: A10-GR-70319-EN-01 FEB 2017

DDoS OF THINGS

Barabasi BURSTS

Gamma Ray Bursts - pulsar.sternwarte.uni-erlangen.depulsar.sternwarte.uni-erlangen.de/wilms/teach/astrosem09/willmann... · Philipp Willmann Gamma Ray Bursts Gamma Ray Bursts Blitze

Gamma Ray Bursts

DDoS Threat Landscape - CHI-NOGchinog.org/.../2016/05/10.-DDoS-Threat-Landscape.pdf · DDoS Threat Landscape . DDoS Handbook • A history and overview of DDoS • Review of attack

Logical Channels, Bursts

Payback is Relentless

Gravitational wave bursts

Nevins Magazine Relentless

Gamma-ray Bursts

Relentless Love

Relentless workbook armenian

Radio Bursts

Short hard bursts

Relentless Parallelism

(D)DOS DEMYSTIFIED - OARnet...DDoS Attack Customers DDoS Attack Volumetric Protection Cloud ISPa ISPb L3-4 DDoS mitigation DDoS Platform DDoS Platform L7 DDoS mitigation SSL Termination

Rock Bursts

Relentless Refactoring

Datasheet: DDoS Protection - Grayhats Datasheet DDoS...or OpenBSD vulnerabilities ... Datasheet: DDoS Protection DNS DDoS Protection ... DNS server. This protects your

Relentless optimism

2015 BOKS Bursts

DDoS Protection Place For DDoS Attacks

Scalable DDoS mitigation · •Scalable DDoS Mitigation –BGP FlowSpec •Cloud DDoS Protection –F5 Silverline. DDoS Overview • Distributed denial-of‐service (DDoS) attacks

Short Bursts

Relentless Ingenuity

Relentless in Production

Gamma-Ray Bursts

DDoS Saldırı Analizi - DDoS Forensics

Relentless Entertainment Introduction

Relentless stillicide photomontage

Relentless Resources Ltd. Financial Statementsrelentless-resources.com/documents/Financials/2014/FS - Relentless... · Relentless Resources Ltd. Financial Statements for the years

Bursts in VIRGO

LIBYA’S RELENTLESS

Relentless 4 Life

Explain bursts

DDoS Attacks 101 - Vistnet DDoS Protection & Mitigation ...€¦ · DDoS Protection Company V DDoS Attacks 101 eserved. 7 In the meantime the quality of DDoS attack software is improving;