DDoS

With the spread of the internet, the threat of cyberattacks is becoming increasingly serious. Among them, DDoS attacks are widely known as attacks targeting websites and online services, and their methods are becoming more sophisticated. In recent years, there has been an increasing trend of “GRE Flood attacks,” which are more difficult to detect and defend against than conventional DDoS attacks. The Growing Threat of GRE Flood Attacks: Understanding the Mechanics and Countermeasures What is a GRE Flood Attack? A GRE Flood attack is a type of DDoS attack that exploits the GRE (Generic Routing Encapsulation) protocol. GRE is a technique used to tunnel data between different network protocols. Attackers use this GRE protocol to send a large number of GRE packets to the target server, flooding the network bandwidth and disrupting service. ...

What is Mirai Bot? Mirai is a malware that turns networked devices running Linux into remotely controlled “bots” that can be used as part of a botnet. This network of bots is often used to conduct massive Distributed Denial of Service (DDoS) attacks. Key Points about Mirai: Discovery: Mirai was first detected in September 2016 after it was used to launch a record-breaking DDoS attack exceeding 620 Gbps against security blogger Brian Krebs’ website, KrebsOnSecurity.com. Targets: Mirai primarily targets Internet of Things (IoT) devices such as security cameras, webcams, and routers that run on Linux and have weak or default login credentials. Infection Method: The malware continuously scans the internet for vulnerable devices. Once found, it attempts to log in using a list of 62 common default usernames and passwords. The alarming number of insecure IoT devices allows Mirai to compromise hundreds of thousands of devices. Impact: Mirai botnets have been used to launch some of the largest and most disruptive DDoS attacks in history, causing significant outages and disruptions to online services. CISA Alert on Mirai: The Cybersecurity and Infrastructure Security Agency (CISA) in the US issued an alert (TA16-288A) about the Mirai botnet, highlighting the threat it poses to internet infrastructure and urging users and organizations to take steps to mitigate the risk. ...

A Distributed Denial-of-Service (DDoS) attack is a malicious attempt to disrupt the normal operation of a targeted server, service, or network by overwhelming it with a flood of internet traffic. These attacks are executed by leveraging a multitude of compromised computer systems, often referred to as “bots” or “zombies,” which are under the control of the attacker. DDoS attacks can cause significant downtime, financial loss, and reputational damage to the targeted entity. ...