Worries Over DDoS Attacks

   There are plenty of things to worry about in this world.  For many organizations distributed denial-of-service attacks {Chapter 4 Security+ 3ed} are one of the worries that are topping their list.  

   There have been a host of high-profile DDoS attacks over the last dozen or so years, dating back to 2000 when attacks on Yahoo!, eBay, eTrade, Amazon.com and CNN were launched from UNIX computers that were remotely controlled by the Trinoo malware.  In May 2007 the nation of Estonia was the victim of a massive attack that brought down sites of the government and major banks, while a DDoS attack during Christmas 2009 impacted Amazon.com.  And who can forget last fall's take down of Visa, Mastercard, and PayPal sites by Anonymous in retaliation for these organizations severing their ties to WikiLeaks after it published classified documents.  

   Yet these are only the high-profile attacks.  In a recent survey of 225 IT executives in the U.S., almost 8 out of 10 were "extremely" or "very concerned" about DDoS attacks.  Why?  Because 63% had already been the victim of such an attack in the last 12 months, and over 10% said they had been hit six or more times.  DDoS attacks were the reason why their Web sites were down 1/3 of the time, which impacted customers reaching their site (half said they lost revenue due to DDoS attacks).

   And the attacks are only getting worse.  If your Internet connection is 80 megabits, what happens if you get a 84 megabit per second attack (not uncommon today)?  And what about smaller organizations that only have 10 megabit connections?

   Stay secure!

http://community.cengage.com/infosec