Thought leadership. threat analysis, news and alerts.
Choosing the Right DDoS Protection Service
Distributed denial of service (DDoS) attack is rising in scale as well as in sophistication, emerging as one of the top tools used by cybercriminals. Is your business protected from DDoS attacks?
What is a Distributed Denial of Service (DDoS) Attack
A DDoS attack is an attempt to overwhelm an online service with too much data or damage it in some other way for the purpose of preventing legitimate users’ access. Public and private sectors alike are targets of DDoS attacks.
On May 8, 2017, the U.S. Federal Communications Commission (FCC) became a victim of this attack. “These (multiple DDoS attacks) were deliberate attempts by external actors to bombard the FCC’s comment system with a high amount of traffic to our commercial cloud host,” FCC said in a statement. “These actors were not attempting to file comments themselves; rather they made it difficult for legitimate commenters to access and file with the FCC.”
The 11th Annual Worldwide Infrastructure Security Report of Arbor Networks revealed that from July 2014 to June 2015, an individual or organization calling itself “DD4BC”, which stands for DDoS for Bitcoin, had been bombarding financial institutions like banks, payment acquirers and trading platforms across the United States, Europe, Asia, Australia and New Zealand with DDoS attacks for its extortion attempts.
According to Arbor Networks, DD4BC’s victims typically experience an outage on their website. After the initial attack, the attackers then issue an initial extortion email to the victims. If the target doesn’t pay the ransom, a larger DDoS attack causing serious outage is deployed by the attackers.
One of the ways that cybercriminals launch their DDoS attack is by using CCTV devices as the source of their attack botnet. In one DDoS attack, Sucuri found that the IP addresses generating the DDoS attack came from compromised or hacked CCTV devices from 105 countries around the world.
The top 10 countries targeted by DDoS attackers in 2016, according to Arbor Networks, are the United States (32.2%), China (10.5%), France (6.4%), South Korea (6.3%), Switzerland (4.9%), Great Britain (4.2%), Canada (4%), Germany (3.9%), Malaysia (3.7%) and Australia (2.8%).
Types of DDoS Attacks
While there are thousands of different ways that cybercriminals carry out DDoS attacks, these attacks fall into three broad categories:
1) Volumetric Attack
This is an attempt to consume the bandwidth of a website.
2) TCP State-Exhaustion Attack
This is an attempt to consume the connection of infrastructure components such as server, load-balancer and firewall.
3) Application Layer Attack
This is an attempt to target the weaknesses of an application with the purpose of exhausting the processes and transactions.
Some attackers are combining volumetric, TCP state-exhaustion and application layer attacks into a single, yet sustained attack. Cybercriminals likewise launch DDoS attacks to distract security teams and at the same time introducing a malware into the computer system with the purpose of stealing critical customer or financial information.
5 Things to Consider in Choosing the Right DDoS Protection Service
According to Frost & Sullivan, because of the growing scale and sophistication of DDoS attacks, the use of a DDoS protection service has gained traction among businesses of all sizes. Frost & Sullivan finds that the Global DDoS mitigation market’s earned revenue in 2013 was $354 million and is estimated to reach $929.5 million by 2018.
Given that DDoS attacks have potentially devastating consequences on your business, it’s critical to choose the right DDoS protection service. Here are the top 5 things to consider in choosing the right DDoS protection service:
1. Capacity to Stop Varied Attack Sizes
The size of DDoS attacks continues to increase. Arbor Networks’ 12th Annual Worldwide Infrastructure Security Report showed that the largest DDoS attack reported in 2016 was 800 gigabits per second (Gbps), a 60% increase over 2015’s largest attack of 500 Gbps.
In choosing a DDoS protection service, find out if it can mitigate or stop large DDoS attacks. In particular, your DDoS protection service should be able to provide protection in the Cloud to stop high-volume attacks, which are exceeding 800 Gbps. Your company’s DDoS protection service should also be able to detect small but continuous attacks as these too can have devastating effects on your business.
2. Far-reaching DDoS Protection
In choosing a DDoS protection service, it’s important that such service will be able to protect your business, not just from one type of DDoS attack but from different types of DDoS attacks.
It’s critical that your DDoS protection service should be able to provide on-premise protection against sneaky application layer attacks, and attacks against existing infrastructure devices like firewall. It should also be able to stop attackers from injecting malwares into your computer system.
3. Non-disruption of Business Operation
Businesses today rely on the internet and web-based applications and services in the same way as they rely on electricity. Organizations rely on them to manage daily operations and for customer relationship management.
Customers have no patience with websites that are down or slow, or web-applications that are unavailable. The effects of the breakdown of your business’ online services are immediate: angry customers, brand damage and loss of revenue.
“With the importance of internet access and web services in businesses increasing, high volume network-based attacks, combined with application-layer attacks, represent an effective threat against any online business,” said Frost & Sullivan Network Security Senior Industry Analyst Chris Rodriguez.
In choosing a DDoS protection service, it’s important that your company’s usual business operation shouldn’t be disrupted by DDoS attempts.
4. 24/7 Managed Security Service
In choosing a DDoS protection service, it’s important as well that your company can contact the protection team at any time of the day as attacks don’t have regard to business hours. Always ask for automated DDoS protection based on clearly defined service levels.
5. Affordable Protection
Hiring a DDoS protection experts saves money. Your company doesn’t need to invest in expensive hardware, software solutions and technical resources for this security measure. Some DDoS protection services, however, are asking for exorbitant fees. Look for a firm that offers not only quality service, but at the same time offers a reasonable price.
Call us today to learn more about truly affordable, Guaranteed DDoS protection.
Steve E. Driz, I.S.P., ITCP