October 02, 2012
It's Okay, No Problem Bro: Prolexic Confronts DDoS Attack
By Tabitha Naylor
Today, from unusually large and highly sophisticated DDoS attacks, the global leader in distributed denial of service (DDoS) protection services, Prolexic Technologies, warned of an escalating threat.
Using the so-called “itsoknoproblembro” DDoS toolkit, the DDoS attacks have been launched in the last week.
Clearly demonstrating the knowledge of common DDoS mitigation methods, the malicious actor(s) behind the attacks have used this potent tool in conjunction with sophisticated attack. The attack signatures are very complex and Prolexic has recorded continued floods peaking at 70 Gbps and more than 30 million pps against some of its customers.
With these characteristics, most mitigation providers would struggle to combat these security threats.
“What we are experiencing is a dramatic uptick in the size and sophistication of DDoS attacks to a level not previously observed. Only a handful of companies around the world could survive a hit of 70 Gbps in conjunction with the complex blend of attack vectors we have witnessed," said Prolexic CEO, Scott Hammack.
Incorporating multiple infrastructure and application-layer attack vectors, the itsoknoproblembro toolkit includes SYN floods, a code that can simultaneously attack multiple destination ports and targets, as well as ICMP, UDP (News - Alert) and SSL encrypted attack types.
A large UDP flood targeting DNS infrastructures is a common characteristic of the attacks.
Moreover, to enable the attack to bypass most anti-spoofing mechanisms, the attacking botnet contains many legitimate (non-spoofed) IP addresses.
Scott Hammack added that a high-alert has been created within various industries due to the size and sophistication of this threat. He proudly declared that multiple itsoknoproblembro campaigns have been successfully mitigated throughout the year, even when attack vectors have continuously modulated during the course of the assault.
Earlier this month after monitoring the itsoknoproblembro suite, an internal threat advisory was issued to Prolexic customers by the Prolexic Security Engineering & Response Team. The Prolexic's quarterly attack report, which will be published in mid-October, will include a case study with more details about the toolkit.
Want to learn more about the latest in communications and technology? Then be sure to attend ITEXPO Austin 2012, happening now in Austin, TX. Stay in touch with everything happening at ITEXPO (News - Alert). Follow us on Twitter.
Edited by Braden Becker
Return to Enterprise Solutions ›