DTS Solution
DTS Solution

How to Defend against DDoS Attacks

Distributed deniel-of-service (DDoS) attacks are becoming bigger and more severe than ever. Unfortunately, this cyber threat will continue to haunt chief information security officers (CISOs) and IT teams for the foreseeable future.

In October 2016, Internet domain name system (DNS) infrastructure firm Dyn (now Oracle + Dyn) fell victim to a malicious wave of DNS queries from tens of millions IP addresses.

The attack, executed through the Mirai botnet, infected over 100,000 IoT devices, including IP cameras and printers. The attack reached 400,000 bots and disrupted services to major companies, including Amazon, Netflix, Reddit, Spotify, Tumblr and Twitter.

Earlier this year, a new and bigger DDoS attack emerged and hit hosting service GitHub. The impact of the attack was massive with 1.35 TB per second of traffic hitting the popular site. Although GitHub was only knocked offline intermittently and managed to beat the attack back entirely after less than 20 minutes, the sheer scale of the incident was alarming. DDoS attacks compromise Internet devices to generate enormous volumes of data and direct that data at a particular target such as a web server or router.

“Every company is vulnerable to DDoS attacks,” says Shah H. Sheikh, Senior Cybersecurity Consultant and Advisor / Co-founder, DTS Solution. “This type of threat can impact organisations of all shapes and sizes from e-commerce to banking, civil defence, telcos, aviation and more as long as they rely on the Internet. Increased connectivity of Industrial Control Systems makes it vulnerable to DDoS, which could up new doors for would be and nation state actors.”

According to Shah H. Sheikh, “Identifying the right technical solution that involves large coverage of both volumetric and application-based DDoS attacks ensures that the detection time of the DDoS attack is as short as possible.”

“It is also important to define a well structured SLA to ensure there are clear roles and responsibilities, timely response and action plan when an attack does materials with specific escalation points and go to communication model.”

“Lastly, security teams should also conduct regular DDoS cyber drills with attack simulations to ensure that the end to end processes are functioning as they should. It is important to keep in mind that when an attack happens, it does so without any warning.”

As cyber criminals perfect their DDoS attacks, the technology and tactics of organisations need to evolve as well. To ensure a quick recovery, security teams should adopt a proactive approach to avoid the damaging effects of DDoS attacks.

Distributed deniel-of-service (DDoS) attacks are becoming bigger and more severe than ever. Unfortunately, this cyber threat will continue to haunt chief information security officers (CISOs) and IT teams for the foreseeable future.
In October 2016, Internet domain name system (DNS) infrastructure firm Dyn (now Oracle + Dyn) fell victim to a malicious wave of DNS queries from tens of millions IP addresses.
The attack, executed through the Mirai botnet, infected over 100,000 IoT devices, including IP cameras and printers. The attack reached 400,000 bots and disrupted services to major companies, including Amazon, Netflix, Reddit, Spotify, Tumblr and Twitter.
Earlier this year, a new and bigger DDoS attack emerged and hit hosting service GitHub. The impact of the attack was massive with 1.35 TB per second of traffic hitting the popular site. Although GitHub was only knocked offline intermittently and managed to beat the attack back entirely after less than 20 minutes, the sheer scale of the incident was alarming. DDoS attacks compromise Internet devices to generate enormous volumes of data and direct that data at a particular target such as a web server or router.

“Every company is vulnerable to DDoS attacks,” says Shah H. Sheikh, Senior Cybersecurity Consultant and Advisor / Co-founder, DTS Solution. “This type of threat can impact organisations of all shapes and sizes from e-commerce to banking, civil defence, telcos, aviation and more as long as they rely on the Internet. Increased connectivity of Industrial Control Systems makes it vulnerable to DDoS, which could up new doors for would be and nation state actors.”

According to Shah H. Sheikh, “Identifying the right technical solution that involves large coverage of both volumetric and application-based DDoS attacks ensures that the detection time of the DDoS attack is as short as possible.”
“It is also important to define a well structured SLA to ensure there are clear roles and responsibilities, timely response and action plan when an attack does materials with specific escalation points and go to communication model.”
“Lastly, security teams should also conduct regular DDoS cyber drills with attack simulations to ensure that the end to end processes are functioning as they should. It is important to keep in mind that when an attack happens, it does so without any warning.”

As cyber criminals perfect their DDoS attacks, the technology and tactics of organisations need to evolve as well. To ensure a quick recovery, security teams should adopt a proactive approach to avoid the damaging effects of DDoS attacks.

See also:

DTS wins “Cyber Sentinels Security SI Award” at the GEC Security Symposium 2018 in Dubai

September 6, 2018

My Summer Internship Experience at DTS Solution

August 16, 2018

The Hacker’s Offensive Language

July 30, 2018

Linkedin X-twitter Facebook Youtube

© Copyrights 2024.
All rights reserved by DTS Solution 
– Cyber Security Redefined

Solutions

Network and Infrastructure Security
Zero Trust and Private Access
Endpoint and Server Protection
Vulnerability and Patch Management
Data Protection
Application Security
Secure Software and DevSecOps
Cloud Security
Identity Access Governance
Governance, Risk and Compliance
Security Intelligence Operations
Incident Response

Industry

Critical Infrastructure
Education
Energy and Utilities
Enterprise and Service Providers
Financial Services and FinTech
Government
Healthcare and BioTech
Legal
Manufacturing
Media and Entertainment
Retail and Ecommerce
Technology and Digital

Services
Cyber Strategy
Cyber Secure
Cyber Operations
Cyber Response
Cyber Resilience
Products

COMPLYAN
FYNSEC
HAWKEYE CSOC WIKI
Firewall Policy Builder

Other

About Us
Awards
Board of Directors
Leadership
Careers
Support
Contact
Vendors
Resources
Press Center
Privacy Policy

Accreditations
ISO27001
ISO45001
CREST
Accreditations
ISO27001
ISO45001
CREST

  Dubai

Office 4, Oasis Center
Sheikh Zayed Road
PO Box 128698
Dubai, UAE

+971 4 3383365
[email protected]
   Abu Dhabi

Office 7, Floor 14
Makeen Tower, Al Mawkib St.
Al Zahiya Area
Abu Dhabi, UAE

+971 2 6573566
[email protected]

   Kuwait

Mezzanine Floor, Tower 3
Mohammad Thunayyan Al-Ghanem Street, Jibla
Kuwait City, Kuwait


+971 4 3383365
[email protected]

   London

160 Kemp House, City Road
London, EC1V 2NX
United Kingdom
Company Number: 10276574

+44 20 3287 3942
[email protected]

The website is our proprietary property and all source code, databases, functionality, software, website designs, audio, video, text, photographs, icons and graphics on the website (collectively, the “Content”) are owned or controlled by us or licensed to us, and are protected by copyright laws and various other intellectual property rights. The content and graphics may not be copied, in part or full, without the express permission of DTS Solution LLC (owner) who reserves all rights.

DTS Solution, DTS-Solution.com, the DTS Solution logo, HAWKEYE, FYNSEC, FRONTAL, HAWKEYE CSOC WIKI and Firewall Policy Builder are registered trademarks of DTS Solution, LLC.