Connecting to LinkedIn...

W1siziisijiwmtuvmdqvmtuvmdgvntqvmzgvnzi1l01ptlrbu0hfqkxpr19vtljftkrfukvex0lnqudfx3jlc2l6zwrfyw5kx3jlbmrlcmvklmpwzyjdlfsiccisinrodw1iiiwimtkymhgxmjuwiyjdxq

Blog

Secondhand DDoS: Why hosting providers need to take action

3/10/2014 by

W1siziisijiwmtqvmtavmjgvmtuvmtavndgvnzuzl2zpbguixsxbinailcj0ahvtyiisijywmhg0mdbcdtawm2uixv0

Unfortunately, the sheer size and scale of hosting or datacenter operator network infrastructures and their massive customer base presents an incredibly attractive attack surface due to the multiple entry points and significant aggregate bandwidth that acts as a conduit for a damaging and disruptive DDoS attack. As enterprises increasingly rely on hosted critical infrastructure or services, they are placing themselves at even greater risk from these devastating cyber threats – even as an indirect target.

What is secondhand DDoS?

The multi-tenant nature of cloud-based data centres and shared, hosted environments can be less than forgiving for unsuspecting tenants. A DDoS attack, volumetric in nature against one tenant, can lead to disastrous repercussions for others; a domino effect of latency issues, service degradation and potentially damaging and long lasting service outages.

The excessive amount of malicious traffic bombarding a single tenant during a volumetric DDoS attack can have adverse effects on other tenants as well as the overall data centre or hosting providers operation. In fact, it is becoming more common that attacks on a single tenant or service can completely choke up the shared infrastructure and bandwidth resources, resulting in the entire data centre can be taken offline or severely slowed – AKA, secondhand DDoS.

Black-holing or black-hole routing is a common, crude defense against DDoS attacks, which is intended to mitigate secondhand DDoS. With this approach, the cloud or hosting provider blocks all packets destined for a domain by advertising a null route for the IP address (es) under attack. There are a number of problems with utilising this approach for defending against DDoS attacks: Most notably is the situation where multiple tenants share a public IP address range.

In this case, all customers associated with the address range under attack will lose all service, regardless of whether they were a specific target of the attack. In effect, the data centre or hosting operator has finished the attacker’s job by completely DoS’ing their own customers. Furthermore, injection of null-routes is a manual process, which requires human analysts, workflow processes and approvals; increasing the time to respond to the attack, leaving all tenants of the shared environment suffering the consequences for extended periods of time, potentially hours.

The growing dependence on the Internet makes the impact of successful DDoS attacks-financial and otherwise-increasingly painful for service providers, enterprises, and government agencies. And newer, more powerful DDoS tools promise to unleash even more destructive attacks in the months and years to come.

This article has been extracted from http://www.information-age.com/, please click on this link to read this article in full http://www.information-age.com/technology/security/123458517/secondhand-ddos-why-hosting-providers-need-take-action

Montash is a multi-award winning, global technology recruitment firm. Specialising in permanent and contract positions across mid-senior appointments which cover a wide range of industry sectors and IT functions, including:

ERP, BI & Data, Information Security, IT Architecture & Strategy, Energy Technologies, Demand IT and Business Engagement, Digital and E-commerce, Infrastructure and Service Delivery, Project and Programme Delivery.

With offices based in London, Montash has completed assignments in over 30 countries and has appointed technical professionals from board level to senior and mid-management in permanent and contract roles.

comments powered by Disqus

Social Stream

Latest News

W1siziisijiwmtcvmdevmjavmtavntyvmtkvnzgzl0nsts5qcgcixsxbinailcj0ahvtyiisijm4mhgxmdajil1d

Salesforce moves into Seattle with new engine...

2017-01-20 10:00:00 +0000

Salesforce, a world leader in customer relationship management (CRM) solutions, has revealed that it is to open an innovation and engineering hub in Seattle. In order to increase the firm’s presence in the city, Salesforce Co-Founder Parker Harris said that the office located in Bellevue’s Nine Two Nine Office Tower will focus on its artificial intelligence (AI) initiatives. One reason for the move is so that the firm can access a new pool of talent. Ta...

W1siziisijiwmtcvmdevmtgvmdkvmtqvmzmvmzk5l0vsuc5qcgcixsxbinailcj0ahvtyiisijm4mhgxmdajil1d

Sage bolsters X3 business ERP solution

2017-01-18 09:00:00 +0000

Sage, one of the global leaders in enterprise resource planning (ERP) solutions, has revealed that it has signed up a trio of new clients to its X3 business solution. With the Salesforce.com partner wanting to be able to show its ability to host larger clients, the firm revealed that BrightBridge, Atlas Cloud and CLOUT are all now utilising the new and emerging X3 ERP platform. Sage Vice President of UK Enterprise David Watts talked about the latest agr...