main

Attack Types & VectorsSecurity

Eliminating Single Points of Failure, Part 1

June 21, 2017 — by Louis Scialabba0

ddos-primer-part-1-960x788.jpg

The Risk DDoS Attacks Pose to Enterprises

The Role of the Firewall

A Firewall is a necessary first step in protecting an enterprise network by establishing a barrier between a trusted, secure internal network and another outside untrusted network such as the Internet. Firewalls have evolved considerably over the years, with the advent of next-generation firewalls to add application-aware filtering and intrusion detection capabilities and help customers improve their first line of defense. However, DDoS attacks are one vector where Firewalls are commonly the point of failure. In fact, Radware’s own research shows that the firewall is the cause of downtime during DDoS attacks roughly one-third of the time. The reason for this is the stateful nature of these devices, required to keep track of open sessions and transactions on the network. Maintaining session state requires use of session tables as well as other CPU resources that are finite and also responsible for other security features. Therefore under attack, the session table can be exhausted causing the firewall to fail.

Attack MitigationDDoS AttacksSecurity

Batten Down The Hatches: Anonymous – Coming Soon to Your Network

March 30, 2012 — by Dennis Usle0

As security professionals facing the rising tide of threats, many of us find ourselves researching and implementing next-generation perimeter defenses to mitigate risks.  Through analysis of threat vs. protection we quickly realize that no single protection will suffice; current risks require multiple protection layers to secure the business.

Typical intrusion prevention services (IPS) and next generation firewall (NGFW) devices claim coverage, but beware – they fall short.  In fact recent studies from Radware’s 2011 Global Application & Network Security Report show combined IPS and FW account for 32% of the common DDoS bottleneck.

Attack MitigationDDoS AttacksSecurity

DDoS Yourself First – Part II: Rise of the Availability Vulnerabilities

March 23, 2012 — by Carl Herberger1

Availability problems aren’t necessarily unique; however the testing is certainly different, as I discussed in Part 1 of DDoS Yourself.

This “availability security problem” is resulting in an increased risk to enterprise’s whose business models are tied to time (government elections, financial trading, online promotional retailers, insurance reconciliations, etc.).

As a result, many organizations are asking themselves if they have adequate visibility to the vulnerabilities they have to hacktivist (ideologically motivated) and Availability-based (competitive motivated) DDoS attacks?

Application SecurityAttack MitigationBotnetsDDoS AttacksSecurity

Security? Defense, Offense, Both?

August 2, 2011 — by Carl Herberger0

Boy the world has gotten complicated to defend hasn’t it? The old adage, “information security is very basic” turns out not to be true after all! As a youthful entrant into this industry I can remember my CISSP instructors telling me that “at the end of the day all you are doing is protecting the Confidentiality, Integrity and Availability of the enterprise you support”, how hard can that be after all? Wow, if it were only that simple!