Blockchain's New Role In The Internet of Things

Network Computing Dark Reading

Advertise

About Us

Newest First | Oldest First | Threaded View

[close this box]

100%

AndrewfOP,
User Rank: Moderator
2/24/2017 | 10:41:39 AM

DDoS attacks, Meet DDoS defense

It's good that DDoS defense technology is making progress toward wider adoption. Ever since DDoS attacks came onto the scene, I always wonder why there were no technology that would turn DDoS attack modules into defense modules. If DDoS's method is to turn hordes of computing devices into attacking clones, why can't there be hordes of counter devices? After all, no select group of servers can defend against the onslaught of devices from the entire internet. Yet, if the very same devices doing the attacking are also doing the defending, there would be a perfect equilibrium. For the ever increasing and inexhaustible capacity of the whole internet, the defense would increase at the same time as the offense.

The only losers in this reality would the owners and manufacturers that allow their devices to be infected, run at full capacity for doing the attacking and defending all the time, and thus reduce product lives, which ought to be good incentives for improving device security for owners and manufacturers alike.

Reply | Post Message | Messages List | Start a Board

Hot Topics

Editors' Choice

COVID-19: Latest Security News & Commentary

Dark Reading Staff 9/21/2020

Cybersecurity Bounces Back, but Talent Still Absent

Simone Petrella, Chief Executive Officer, CyberVista, 9/16/2020

Meet the Computer Scientist Who Helped Push for Paper Ballots

Kelly Jackson Higgins, Executive Editor at Dark Reading, 9/16/2020

Live Events

Webinars

Dark Reading Cybersecurity Summit @ Interop Digital

Earn (ISC)2 CPEs at Interop Digital, Oct 5-8

Interop Digital, Oct. 5-8; Learn the skills necessary for managing a IT Org

More Informa Tech Live Events

White Papers

2020 Gartner Market Guide for Network Detection & Response

How You Can Evaluate Your Org's Cybersecurity Readiness

How Lockheed Martin Deployed Privileged Access Management in Just One Day

Gartner ZSP: Remove Standing Privileges Through a Just-in-Time PAM Approach

Securing the Supply Chain With NDR and Collective Defense

More White Papers

Cartoon

Latest Comment: Exactly

Cartoon Archive

Current Issue

Special Report: Computing's New Normal

This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

How IT Security Organizations are Attacking the Cybersecurity Problem

The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.

Download Now!

Special Report: Understanding Your Cyber Attackers

0 comments

2020 State of Cybersecurity Operations and Incident Response

0 comments

The Changing Face of Threat Intelligence

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-4590
PUBLISHED: 2020-09-21

IBM WebSphere Application Server Liberty 17.0.0.3 through 20.0.0.9 running oauth-2.0 or openidConnectServer-1.0 server features is vulnerable to a denial of service attack conducted by an authenticated client. IBM X-Force ID: 184650.

CVE-2020-4731
PUBLISHED: 2020-09-21

IBM Aspera Web Application 1.9.14 PL1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 188055.

CVE-2020-4315
PUBLISHED: 2020-09-21

IBM Business Automation Content Analyzer on Cloud 1.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the i...

CVE-2020-4579
PUBLISHED: 2020-09-21

IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.12 could allow a remote attacker to cause a denial of service by sending a specially crafted HTTP/2 request with invalid characters. IBM X-Force ID: 184438.

CVE-2020-4580
PUBLISHED: 2020-09-21

IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.12 could allow a remote attacker to cause a denial of service by sending a specially crafted a JSON request with invalid characters. IBM X-Force ID: 184439.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]