Distributed denial-of-service attacks targeting large Internet service providers surged in the third quarter of last year as attackers began using a stealthy new tactic to sneak DDoS traffic past detection mechanisms.
An analysis of DDoS data during Q3 2018 by Nexusguard showed attackers trying to overwhelm targeted sites, and even entire ISP — aka communications provider (CSP) — networks, by spreading attack traffic across a large number of IP prefixes. Unlike a typical volumetric attack on a single IP address, many of the DDoS campaigns that Nexusguard analyzed involved attackers contaminating legitimate traffic across hundreds of IP addresses with small bits of junk.
The attack traffic within each IP address was small enough to avoid detection by DDoS mitigation tools but big enough to take down a targeted site once converged, Nexusguard said in a report published this week.
Leave a reply