Distributed Denial of Service (DDoS) attacks are one of the most disruptive cyberattacks and can be incredibly difficult to stop. These attacks are often carried out using a network of Internet-connected machines that flood your network with traffic to the point that your network becomes overwhelmed and services either slow to a crawl or stop entirely.
The goal of the DDoS attack is to weaken your network or render it incapacitated so that a subsequent malicious attack may occur. Unfortunately, the connected nature of our business environments lends itself to increased exposure for DDoS attacks; but that doesn’t mean you need to sit back and wait for it to happen.
According to a recent report released by Cloudfare, the majority of DDoS attacks in Q4 2020 lasted less than an hour, which is a significant decrease (88%) from Q3. However, the report went on to highlight that SYN (i.e., “half-open” attacks that target network connections), SYN-ACK (i.e. final acknowledgement/response), and RST (i.e., Ransomware Stress Test) continue to be the most dominant attacks, and those over NetBIOS saw a mind-blowing 5400% increase.
According to experts, “By repeatedly sending initial connection request packets with a synchronize flag (SYN), the attacker attempts to overwhelm the router’s connection table that tracks the state of TCP connections. The router replies with a packet that contains a synchronized acknowledgement flag (SYN-ACK), allocates a certain amount of memory for each given connection and falsely waits for the client to respond with a final acknowledgement (ACK). Given a sufficient number of SYNs that occupy the router’s memory, the router is unable to allocate further memory for legitimate clients causing a denial of service.”
Preparation is the key to protecting your business in virtually every instance. When it comes to DDoS, here are a few tips you should keep in mind:
DDoS attacks are not only disruptive, they can cost your business both time and money. It is virtually impossible to completely eliminate your DDoS risk exposure. However, Security Pursuit has a team of experts who are well versed in the preventive measures you can deploy to greatly mitigate your risk and ensure your business has an appropriate plan in place should a malicious event occur.