More and more organizations realize that DDoS threats should receive higher priority in their security planning. However, many still believe that the traditional security tools such as firewalls and Intrusion Prevention Systems (IPS) can help them deal with the DDoS threat. This post explains why organizations should not count on their firewall and IPS when it comes to mitigating DDoS attacks.read more
Quite a lot, it seems. The Ponemon Institute study estimates that the average cost of one minute of downtime due to a DDoS attack is $22,000. With an average downtime of 54 minutes per DDoS attack, this amounts to a heavy toll. Obviously, the costs depend on several variables, such as your business segment, the volume of online business, competitors, and your brand.read more
It’s not always obvious to a network or system administrator that their company’s infrastructure is under attack. In fact, an attack usually starts slowly and it’s only as the attack progresses that someone takes notice. But what does a DDoS attack look like from the inside? What are the early warning signs? Who are the principle players? What steps are taken to mitigate an attack? What tensions and emotional responses does an attack produce at the various levels of an enterprise? In the following post, a system administrator of a bank provides an hour-by-hour break down of the early stages of a DDoS attack as experienced in real time.read more
While most attacks are detected and mitigated on-premise, attacks that require greater scale are diverted and mitigated in the cloud. Now, you can stop considering the pros and cons of an on-premise security solution versus one that operates in the cloud.read more
In 2012, DDoS attacks revealed a new cyber security trend: attack campaigns that last for days and sometimes even weeks. Unfortunately, many organizations that find themselves under attack don’t know how to change the attack dynamics. Instead of working to halt attacks, many just wait passively for them to conclude.
But what about stopping the attack? Why can’t organizations become more proactive and implement counter measures that can halt the attackers from sending additional malicious traffic? Why not push the hackers back as far as possible from critical applications?