Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
DDoS: An Underestimated Threat
Newest First  |  Oldest First  |  Threaded View
joshuaprice153
50%
50%
joshuaprice153,
User Rank: Apprentice
12/11/2019 | 2:04:17 AM
DDoS: An Underestimated Threat
Good to know that the previous bug has been fixed now and it's working great on my droid, too! Thanks for this useful entry! computer repair Ocala
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
11/28/2019 | 1:52:17 PM
Automation
This means embracing automated mitigation approaches, and moving away from slow manual processes," Obviously automation is the key for this rather than a manual process. Manual process would be outdated very shortly.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
11/28/2019 | 1:49:42 PM
Future
that "it is not clear if current network infrastructure could withstand future attacks if they continue to increase in scale." Answer of this question is no, because we know there will be more technology advancement and more risks in the future. Better to keep up.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
11/28/2019 | 1:47:13 PM
Disruption
The favorite DDoS targets of criminals in 2019 were banks and other financial institutions, along with public organizations such as police departments and local governments This gives us a clue, the main purpose of DDoS as being a disruption.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
11/28/2019 | 1:44:59 PM
Cost of it
While not all of these attacks are spotlighted in the media, they cause significant financial blowback for companies in the form of paid-out ransoms, business downtime, lost revenue, and reputational losses, among other costs. This is surprising for me, I would expect any minute of downtime would cost a lot to any company.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
11/28/2019 | 1:41:41 PM
Booters
Perhaps surprisingly, they found that most cybercrime is committed by people who aren't technical geniuses. Many of them offer so-called "booter" services It is not surprising at all. People tend to go to easy route if there is one.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
11/28/2019 | 1:39:13 PM
5G
5G and IoT will make DDoS more practical and impactful unfortunately. Of course any technology can be used for good or bad.


44% of Security Threats Start in the Cloud
Kelly Sheridan, Staff Editor, Dark Reading,  2/19/2020
Zero-Factor Authentication: Owning Our Data
Nick Selby, Chief Security Officer at Paxos Trust Company,  2/19/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
How Enterprises Are Developing and Maintaining Secure Applications
How Enterprises Are Developing and Maintaining Secure Applications
The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-0565
PUBLISHED: 2020-02-25
NaCl in 2015 allowed the CLFLUSH instruction, making rowhammer attacks possible.
CVE-2020-9393
PUBLISHED: 2020-02-25
An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress. It allows XSS.
CVE-2020-9394
PUBLISHED: 2020-02-25
An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress. It allows CSRF.
CVE-2019-3999
PUBLISHED: 2020-02-25
Improper neutralization of special elements used in an OS command in Druva inSync Windows Client 6.5.0 allows a local, unauthenticated attacker to execute arbitrary operating system commands with SYSTEM privileges.
CVE-2020-8809
PUBLISHED: 2020-02-25
Gurux GXDLMS Director prior to 8.5.1905.1301 downloads updates to add-ins and OBIS code over an unencrypted HTTP connection. A man-in-the-middle attacker can prompt the user to download updates by modifying the contents of gurux.fi/obis/files.xml and gurux.fi/updates/updates.xml. Then, the attacker ...