DDoS Attack


Quick view on denial of service attacks

Denial-of-service (DoS) attacks target enterprise IT infrastructure i.e. Applications, networks and systems and flood them with traffic load to either crash or make their services unresponsive. A Distributed Denial of Service ( DDoS) on the other hand is more of coordinated and multiple sources , disable the services of target. These attack sources are part of the bot network and are distributed across globe and controlled by the threat actors. Identification , defending the DoS and DDoS attacks are difficult and enterprises need to prepare and should have the Denial of service response plan to mitigate or reduce the impact of the attack.Threat actors includes hacktivists,  Nation State Driven or Financially Motivated Attackers whose motive is moving up the ladder from IT infra to Applications.

High level below are some of the controls to defend against Denial of service attacks include

1.       Rate Limit


BCP 38 - Final call for ISP's

BCP 38 - Final call for ISP's

It was one month back several of internet Root DNS servers suffered a DDOS attack. As per the notification, DNS root name servers began receiving a high rate of queries.  The queries were well-formed, valid DNS messages for a single domain name.  The source addresses of these particular queries appear to be randomized and distributed throughout the IPv4 address space.  The observed traffic volume due to this event was up to approximately 5 million queries per second, per DNS root name server receiving the traffic.

This clearly indicates a DDOS attack and the significance of how ISPs should plan their security strategies to avoid similar attacks to root DNS servers. One important mitigation tactic to be used here is BCP38. It was 14 years ago, BCP38 was written by Paul Ferguson and Daniel Senie.


Indusface, Amazon Web Services & TCS Joint Webinar

Indusface, Amazon Web Services & TCS Joint Webinar

Amazon Web Services is hosting a joint webinar with security practitioners from Amazon, Indusface and TCS.
The webinar will be held on 25 Aug, 2015 at 10:00 AM IST. The speakers will be Venkatesh Sundar (CTO - Induaface), Kinshuk De (Business Operations, Enterprise Security and Risk Management - TCS) and Santanu Dutt (Solution Architect - Amazon Web Services).
Through this webinar, gain exclusive insights on how Tata Consultancy Services uses AWS and IndusGuard Web Application Firewall to:

  • Safeguard their website from hacker
  • Patch application layer vulnerabilities in real time
  • Prevent distributed denial of service
  • Keep real users unaffected

Register now for the webinar


Impact of DDoS attacks on Banking Industry

Impact of DDoS attacks on Banking Industry

In my recent interactions with various senior level executives of Banks, I realised that one common threat which is bothering the Banking Industry is the distributed denial of service attacks (DDoS) and Banks are struggling to come up with a strategy / solution to check this. It has to be noted that no two DDoS attacks are similar in nature and they can probably last from a few minutes/ hours to several days. The attackers can be individuals, organized groups or any one for that matter.


Subscribe to RSS - DDoS Attack