Sunday, July 14, 2019

Week 6: Distributed Denial of Service

We are going to discuss Distributed Denial of Service(DDOS) this week and some frequent DDOS attacks performed by the hackers and techniques on how to tackle them.

Distributed denial of service
Distributed denial of service(DDOS) is a method to disturb and block the traffic of the site or network by over flooding with unwanted traffic signal from the multiple compromised systems. It makes it worse by bringing down the entire server. In recent days, due to the security vulnerability of the IoT devices where its comes with default password are very to prone to use as the comprosied device for the DDOS attack. DDOS attacked are performed for financial gain by competitors, or to reduce the reputation of the company.

Common types of DDOS attack

UDP Flood: User data protocol flood is an attack that immerses the targeted server with multiple UDP packets. The targeted server thinks that they are a legitimate request, so it checks and responds to the UDP packets, and by the time it blocks the service of the real user.

Ping (ICMP) flood: Ping flood is similar to UDP flood wherein Ping (ICMP) flood the attacker uses the Internet Control Message Protocol(ICMP) packages for the targeted server. In this type of the attack, the server responding have a bandwidth of both incoming and outgoing request, and Ping(ICMP) flood won't give time for the server to respond for both requests and making it unavailable for the actual users.

HTTP flood: HTTP flood is the typical technique used by hackers as most of the internet sites are operated on mainly on the HTTP get or HTTP post. Also, it's more complex to mitigate as compare to the other attacks as its very difficult to identify which one is a legitimate request

Methods to mitigate the DDOS attacks:
Eliminating the DDOS attack is not entirely possible, but reducing the DDOS attack and running back the server to normal mode is possible.

1) Have an updated antivirus software on the computer- Because it will prevent the individual system from becoming bot for the attacker.

2) Have a captcha technique for login or account creation services, as it reduces the attack of network traffic from infected IOT devices.

3) Change the default passwords of the IoT devices installed in your organizations.

References:
What is a DDoS Attack?.  Retrieved from https://www.cloudflare.com/learning/ddos/what-is-a-ddos-attack/.

DDoS Attacks. Retrieved from https://www.imperva.com/learn/application-security/ddos-attacks/







No comments:

Post a Comment