As cybercrime amidst the Russia-Ukraine war continues to escalate, the DDoSia project, launched by a known hacktivist group, has exploded in its number of members and quality of tools used for attacks.
30 June 2023
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned today of ongoing distributed denial-of-service (DDoS) attacks after U.S. organizations across multiple industry sectors were hit. [...]
30 June 2023
The pro-Russia crowdsourced DDoS (distributed denial of service) project, 'DDoSia,' has seen a massive 2,400% growth in less than a year, with over ten thousand people helping conduct attacks on Western organizations. [...]
29 June 2023
New research from Nexusguard shows that last year DDoS attacks worldwide increased by 115.1 percent over the 2021 level. Attackers have also continued to alter their threat vectors by targeting the application platforms, online databases, and cloud-based storage systems within Internet Service Providers (ISPs). This has resulted in a significantly greater impact globally as organizations continue to move more of their workloads to the cloud. But while the numbers have increased the attacks themselves have been getting smaller. A maximum size of 361.9 gigabits per second (Gbps) represents a 48.2 percent decrease over those measured in 2021. Average attack size… [Continue Reading]
27 June 2023
Many gamers’ weekends were ruined as Diablo IV and other Blizzard games went offline after a DDoS attack.
26 June 2023
Blizzard has confirmed that the DDoS attacks that have plagued its games for most of the weekend are now over.
25 June 2023
A new DDoS-as-a-Service botnet called "Condi" emerged in May 2023, exploiting a vulnerability in TP-Link Archer AX21 (AX1800) Wi-Fi routers to build an army of bots to conduct attacks. [...]
20 June 2023
HTTP(S) flood attacks in the millions, cache bypass, and slowloris were all responsible for taking down Microsoft’s services.
19 June 2023
Microsoft has confirmed that recent outages to Azure, Outlook, and OneDrive web portals resulted from Layer 7 DDoS attacks against the company's services. [...]
18 June 2023
Polish police officers part of the country's Central Cybercrime Bureau detained two suspects believed to have been involved in the operation of a long-running DDoS-for-hire service (aka booter or stresser) active since at least 2013. [...]
16 June 2023
A threat actor known as Anonymous Sudan assumed responsibility for the attack.
13 June 2023
The Swiss government has disclosed that a recent ransomware attack on an IT supplier might have impacted its data, while today, it warns that it is now targeted in DDoS attacks. [...]
12 June 2023
In the latest Verizon "Data Breach Investigations Report," denial-of-service attacks are the most common type of security incident, but when it comes to breaches, nearly four-in-ten attackers compromise systems.
09 June 2023
The Microsoft Azure Portal is down on the web as a threat actor known as Anonymous Suda claims to be targeting the site with a DDoS attack. [...]
09 June 2023
Anonymous Sudan takes responsibility, calls Microsoft "liars".
09 June 2023
Microsoft is investigating an ongoing outage that is preventing OneDrive customers from accessing the cloud file hosting service worldwide, just as a threat actor known as 'Anonymous Sudan' claims to be DDoSing the service [...]
08 June 2023
Outlook.com is suffering a series of outages today after being down multiple times yesterday, with hacktivists known as Anonymous Sudan claiming to perform DDoS attacks on the service. [...]
06 June 2023
Researchers have observed several cyberattacks leveraging a botnet called IZ1H9, which exploits vulnerabilities in exposed devices and servers running on Linux.
31 May 2023
A new report shows that 2022 saw a 300 percent increase in 'carpet bomb' DDoS attacks compared to 2021. Carpet bomb attacks, also known as spread-spectrum or spray attacks, distribute traffic across large IP address spaces. Legacy technology, like standard victim-oriented detection and mitigation detection techniques, often fails to accurately identify these attacks, leading to incomplete mitigation or false positives. Legacy solutions can also simply be overwhelmed by the number of IP addresses involved. The DDoS Threat Intelligence Report from Corero Network Security also reveals over seven times as many Mirai-like DDoS attacks in 2022 than in 2021. These botnet… [Continue Reading]
17 May 2023
This Tech Tip demonstrates how security engineers can best use rate limits to mitigate distributed denial-of-service attacks.
15 May 2023