There were 2022 DDoS attacks worldwide in the first half of 6.019.888. In EMEA, DNA amplification attacks were among the top 364,261 vector attacks with a count of 20. This tool is a boost attack for a DDoS attack. This is how it expires.
DNS amplification attacks took second place in the first half of 2022 as well as in the second half of 2021, according to the current Threat Intelligence Report from NETSCOUT. In this type of DDoS attack, an enormous amount of data is directed onto the victim's Internet connection by abusing DNS name resolution in order to overload this connection. By obfuscating the IP addresses using IP spoofing, the attacks are difficult to trace.
Block IP spoofing to prevent DDoS attack
“Source IP address spoofing forces a, for example, server to send its responses and data to the actual victim being attacked. If a network operator blocks this type of activity, legitimate traffic is not affected. If all network operators (companies, service providers, etc.) would block IP address spoofing in general, this would deprive attackers of the opportunity to launch DDoS attacks through spoofing. This would in turn stop all DDoS attacks through DNS amplification.
IP spoofing blocking is typically done at the network perimeter by implementing a simple access control list (ACL), which ensures only legitimate traffic is allowed to enter the corporate network. Likewise, Internet service providers (ISPs) should implement access control lists for their customer networks. This can ensure that only incoming traffic from subnets is assigned to the respective customers. It is also possible to implement such controls between local and regional ISPs, allowing the regional ISP to control traffic coming from local ISPs.
Simple intervention – powerful effect
Despite the increasing cyber threats in the digital environment and in private and corporate networks, simple protection techniques can be used to reduce the possibilities for cyber criminals to invade,” says Christian Syrbe, Chief Solution Architect at NETSCOUT.
More at Netscout.com
About NETSCOUT NETSCOUT SYSTEMS, INC. helps secure digital business services against security, availability and service disruptions. Our market and technology leadership is based on the combination of our patented smart data technology with intelligent analytics. We provide the comprehensive, real-time insight that customers need to accelerate and secure their digital transformation. Our advanced Omnis® cybersecurity platform for threat detection and mitigation offers comprehensive network visibility, threat detection, contextual investigations and automated mitigation at the network edge.