Network Computing Dark Reading

Advertise

Attacks/Breaches

8/31/2016
04:30 PM

Ericka Chickowski
Slideshows

Connect Directly

3 comments
Comment Now

2016 DDoS Attack Trends By The Numbers

Some highlights from recent reports on DDoS attack activity.

1 of 9

Image Source: Adobe Stock

1 of 9

Comment |

Email This |

Print |

RSS

Comments

Newest First | Oldest First | Threaded View

[close this box]

100%

RyanSepe,
User Rank: Ninja
8/31/2016 | 9:42:41 PM

DDoS attacks are increasingly coming at the hands of Linux botnets

Could this be attributed to the less defined OS structure of Linux in comparison to Windows? Dabbling in Linux, my experience has been that the terminal is a very powerful tool and could be leveraged to perform nearly any function that I could think of.

Reply | Post Message | Messages List | Start a Board

50%

RyanSepe,
User Rank: Ninja
8/31/2016 | 9:38:35 PM

Application layer DDoS attacks still make up 60% of DDoS attacks today but they're increasingly being displaced by network layer attacks

I would still venture to say that aside from DoS utilizing DNS, the application layer attacks will likely be most effective due to their stealthy and slow nature. The network based can be mitigated at the ISP level or through scrubbing centers but I see many app layer DoS slipping through these mitigations.

Reply | Post Message | Messages List | Start a Board

50%

RyanSepe,
User Rank: Ninja
8/31/2016 | 9:33:47 PM

83% increase of DDoS attacks

With the simplicity at which DDoS attacks can be executed I anticipate that there will be an increase to which this attack is utilized. Also, reflective dns is a very powerful method of ddos. The anonymity and amplification that can be performed during the query makes it perfect for DoS.

Reply | Post Message | Messages List | Start a Board

Hot Topics

Editors' Choice

'Box Shield' Brings New Security Controls

Kelly Sheridan, Staff Editor, Dark Reading, 8/21/2019

MoviePass Leaves Credit Card Numbers, Personal Data Exposed Online

Kelly Sheridan, Staff Editor, Dark Reading, 8/21/2019

New FISMA Report Shows Progress, Gaps in Federal Cybersecurity

Curtis Franklin Jr., Senior Editor at Dark Reading, 8/21/2019

Live Events

Webinars

Data Center World Conference & Expo: Pre-Registration Sign-Up

[Video] Shaping the Future of IT CIO Lightning Series - Interop19

[Video] An (Ir)rational Approach to Interoperability - Interop19

More Informa Tech Live Events

White Papers

Advances in UPS Technology for Critical IT Applications

[SANS] The Need for Speed: Integrated Threat Response

How to Prioritize Cybersecurity Risks: A Primer for CISOs

[Infographic] Are You Maximizing Value of the Cloud?

Third-Party Cyber Risk Management: Getting to Know Your Vendor

More White Papers

Video

All Videos

Cartoon

Latest Comment: (Thinks) There's no way they will guess [email protected] now!

Cartoon Archive

Current Issue

7 Threats & Disruptive Forces Changing the Face of Cybersecurity

This Dark Reading Tech Digest gives an in-depth look at the biggest emerging threats and disruptive forces that are changing the face of cybersecurity today.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

The State of IT Operations and Cybersecurity Operations

Your enterprise's cyber risk may depend upon the relationship between the IT team and the security team. Here’s some insight on what's working – and what isn't – in the data center.

Download Now!

The State of Cyber Security Incident Response

0 comments

How Enterprises Are Attacking the Cybersecurity Problem

0 comments

How Enterprises Are Using IT Threat Intelligence

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2019-15498
PUBLISHED: 2019-08-23

cgi-bin/cmh/webcam.sh in Vera Edge Home Controller 1.7.4452 allows remote unauthenticated users to execute arbitrary OS commands via --output argument injection in the username parameter to /cgi-bin/cmh/webcam.sh.

CVE-2019-15499
PUBLISHED: 2019-08-23

CodiMD 1.3.1, when Safari is used, allows XSS via an IFRAME element with allow-top-navigation in the sandbox attribute, in conjunction with a data: URL.

CVE-2019-13139
PUBLISHED: 2019-08-22

In Docker before 18.09.4, an attacker who is capable of supplying or manipulating the build path for the "docker build" command would be able to gain command execution. An issue exists in the way "docker build" processes remote git URLs, and results in command injection into the ...

CVE-2019-15325
PUBLISHED: 2019-08-22

In GalliumOS 3.0, CONFIG_SECURITY_YAMA is disabled but /etc/sysctl.d/10-ptrace.conf tries to set /proc/sys/kernel/yama/ptrace_scope to 1, which might increase risk because of the appearance that a protection mechanism is present when actually it is not.

CVE-2019-15326
PUBLISHED: 2019-08-22

The import-users-from-csv-with-meta plugin before 1.14.2.1 for WordPress has directory traversal.

Terms of Service
Privacy Statement
Legal Entities