Connect with us

HRTech

DDoS attacks are cheaper and easier to carry out than ever before

Avatar

Published

on

DDoS attacks are getting more complex and more sophisticated while also getting cheaper and easier to carry out as cyber criminals take advantage of the sheer number of insecure internet-connected devices.

Distributed Denial of Service attacks have been a problem for many years, with cyber attackers gaining control of armies of devices and directing their internet traffic at targets in order to take the victim offline.

More on privacy

The disruption causes problems for both businesses and individual users who are prevented from accessing digital services they require – and that’s especially a problem as 2020’s coronavirus pandemic has forced people to be more reliant on digital services than ever before.

SEE: Network security policy (TechRepublic Premium)

And now causing disruption with DDoS attacks is easier than ever before, even for less technically skilled cyber criminals, because according to researchers at Digital Shadows, the cyber criminals are offering DDoS services starting at an average cost of just $7 for disruption that can last for anything from a few minutes to a couple of hours – if the buyer wants the attack to last longer they’d need to pay more.

But a starting price of $7 is down from an average of $25 in 2017, suggesting that the supply of DDoS-as-a-Service has notably increased over the past few years.

One of the reasons that DDoS attacks have become cheaper and easier to carry out is because of the proliferation of Internet of Things (IoT) devices. Large numbers of IoT products come with default usernames and passwords that aren’t reset, meaning it’s easy for hackers to take control of the them.

While a small handful of IoT devices won’t have much traffic-generating power, if attackers can compromise tens or hundreds of thousands of insecure IoT products, that traffic can help take down targets.

Owners of the devices are likely to be unaware that they’ve been compromised and that the traffic they generate is being used to help take the target of the cyber attackers offline.

DDoS for hire services have become popular as not only can they provide a simple way for cyber criminals to make money, the nature of the service means the individual or group can launch DDoS attacks while making it harder for them to be tracked down.

SEE: A winning strategy for cybersecurity (ZDNet special report) | Download the report as a PDF (TechRepublic)

“This trend will likely increase in the future, thus making DDoS attacks a job that low-skilled criminals can do with professional threat actors’ efficiency,” said Stefano De Blasi, intelligence collection analyst at Digital Shadows.

However, it’s possible for organisations to protect against the potential impact of a DDoS attack by being aware of what their most critical assets are and to prepare contingency plans if their DDoS mitigation service somehow fails.

In addition to this, vendors and users can play a part in reducing the potential for DDoS attacks by avoiding the use of default passwords, so it isn’t easy for hackers to hijack devices to make them part of a botnet in the first place.

MORE ON CYBERSECURITY

Source: https://www.zdnet.com/article/ddos-attacks-are-cheaper-and-easier-to-carry-out-than-ever-before/#ftag=RSSbaffb68

Cyber Security

Critical Cisco SD-WAN Bugs Allow RCE Attacks

Avatar

Published

on

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Source: https://threatpost.com/critical-cisco-sd-wan-bugs-rce-attacks/163204/

Continue Reading

Cyber Security

NVIDIA Gamers Face DoS, Data Loss from Shield TV Bugs

Avatar

Published

on

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Source: https://threatpost.com/nvidia-gamers-dos-data-loss-shield-tv-bugs/163200/

Continue Reading

Cyber Security

Malwarebytes Hit by SolarWinds Attackers

Avatar

Published

on

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Source: https://threatpost.com/malwarebytes-solarwinds-attackers/163190/

Continue Reading

Cyber Security

Investment Scammers Prey on Dating App Users, Interpol Warns

Avatar

Published

on

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Source: https://threatpost.com/investment-scammers-dating-app-interpol/163179/

Continue Reading
Blockchain4 days ago

The Countdown is on: Bitcoin has 3 Days Before It Reaches Apex of Key Formation

Blockchain3 days ago

Litecoin, VeChain, Ethereum Classic Price Analysis: 17 January

Blockchain4 days ago

Is Ethereum Undervalued, or Polkadot Overvalued?

Blockchain4 days ago

Here’s why Bitcoin or altcoins aren’t the best bets

Blockchain4 days ago

Chainlink Futures OI follows asset’s price to hit ATH

PR Newswire5 days ago

The merger of FCA and Groupe PSA has been completed

Blockchain2 days ago

5 Best Bitcoin Alternatives in 2021

Blockchain3 days ago

Bitcoin Worth $140 Billion Lost Says UK Council

Blockchain3 days ago

Data Suggests Whales are Keen on Protecting One Key Bitcoin Support Level

Blockchain3 days ago

Bitcoin Cash Price Analysis: 17 January

Blockchain4 days ago

eToro’s New Bitcoin Account Incentives Are So Good, They Had To Disable Buy Orders

Blockchain2 days ago

Mitsubishi and Tokyo Tech Tap Blockchain for P2P Energy Trading Network

Blockchain3 days ago

Cardano, Cosmos, BAT Price Analysis: 17 January

Blockchain4 days ago

Grayscale’s Bitcoin Trust adds over 5k BTC in 24 hours

Blockchain4 days ago

Mt. Gox Creditors Could Get Bankruptcy-tied Bitcoin

Blockchain2 days ago

New Highs Inbound: Ethereum is About to See an Explosive Rally Against BTC

Blockchain3 days ago

Why Bitcoin denominated payments won’t be mainstream anytime soon

Cyber Security1 day ago

Rob Joyce to Take Over as NSA Cybersecurity Director

Nano Technology4 days ago

Scientists’ discovery is paving the way for novel ultrafast quantum computers

Blockchain4 days ago

Was Bitcoin’s rally overextended? If yes, what next

Trending