- The 10 dumbest mistakes network managers make
- Six Windows 7 features admins will actually care about
- Why the iPhone can't be "killed"
- Nortel enterprise chief wants to bring back Bay
- More porn sneaks onto the iPhone
You may have heard about distributed denial-of-service attacks and the harm they can wreak on organizations. You might think you're safe because you're not a clear target like Google, Yahoo, or Microsoft (all of which have suffered severe outages due to distributed DoS attacks), or if you're primarily a "bricks-and-mortar" organization with limited Web presence. You'd be wrong.
In recent months, two trends have combined to greatly increase the risk to companies of distributed DoS attacks. The first is that an increasing number of organizations are using the Internet to enable remote workers to connect to corporate resources. The number of remote workers has skyrocketed by 800% in the past five years, according to recent research from Nemertes Research. Many of those users connect to corporate resources via the Internet and distributed DoS attacks could keep these legitimate users from accessing their data center resources.
The second trend is the dramatic increase in distributed DoS-based extortion. Hackers have learned that the ability to connect to the Internet has tangible value, and they're starting to use distributed DoS attacks as a way to attempt to force companies to pay up. Carl Landwehr, program director for the National Science Foundation's (NSF) CyberTrust program, points out that in 2004 there has been a notable increase in distributed DoS-for-money attacks: A hacker will launch an attack, then contact the victim and demand money (usually $10,000 to $50,000) to make it stop. While the most common targets for such attacks are online businesses such as casinos, any organization with a Web site is a potential target.
As with any denial-of-service attack, distributed DoS attacks work by paralyzing the victim's servers and systems and clogging their network access points with useless traffic. Technically, today's distributed DoS attacks are a step up in sophistication from the old denial-of-service attacks of yore. With distributed DoS, the attacker lines up a network of hacked machines-called "zombies" across the Internet that, upon command, launches an assault on the target. Many times, taking out the "control" machine won't stop the attack - the "zombies" keep on assaulting the victim. Moreover, hackers don't even need to create their own "zombie armies" - other hackers have compiled armies as large as 20,000 machines, and will rent these to other hackers.
The Leader in Network Knowledge
Partner Content
Explore the Ultrium Edge
The powerful tape technology can address data security with tape encryption as well as long term data protection.
Find Out More
Disk and Tape Square Off
Discover what disk and tape really cost and which solution provides lower total cost of ownership and optimizes energy use for your organization
Download this White Paper
Don't Fall for the Myths
The Clipper Group explores the truth behind the myths of tape, digging into the misconceptions in the disk vs. tape debate.
Review this information
information examination
An examination of information security issues, methods and securing data with LTO-4 tape drive encryption
Read this analysis
Comment