Security News > 2021 > August > Web Censorship Systems Can Facilitate Massive DDoS Attacks
Researchers are warning internet censorship systems are ripe for abuse by a new type of distributed denial of service attack.
The potential for abuse is concerning, researchers say, because attacks would take advantage of a type of reflection and amplification, which would be "Extremely detrimental to any network" if carried out.
Netscout, which detailed the attack vector, dubbed the type of DDoS attack a Middlebox HTTP Reflection/Amplification misconfiguration vulnerability.
They say attacks can produce DDoS volumes as high as a 700,000 to 1 amplification factor.
Along with the risk of systems leveraged in massive DDoS attacks the censorship systems themselves would also be crippled, with traffic analysis tools knocked offline and permitted traffic blocked, according to researchers.
Netscout says many censorship systems are "Suboptimal" in design and "Implementation decisions allow spoofed requests for denied FQDNs and/or URIs to be synthesized by attackers in much the same way as other well-known reflection/amplification DDoS vectors." This, they say results in amplified HTTP responses being directed towards the intended targets of the attack.
News URL
https://threatpost.com/censorship-systems-ddos-attacks/168853/
Related news
- CUPS vulnerabilities could be abused for DDoS attacks (source)
- Cloudflare blocks largest recorded DDoS attack peaking at 3.8Tbps (source)
- Recently patched CUPS flaw can be used to amplify DDoS attacks (source)
- Cloudflare Thwarts Largest-Ever 3.8 Tbps DDoS Attack Targeting Global Sectors (source)
- Largest Recorded DDoS Attack is 3.8 Tbps (source)
- New Gorilla Botnet Launches Over 300,000 DDoS Attacks Across 100 Countries (source)
- SolarWinds Web Help Desk flaw is now exploited in attacks (source)
- U.S. Charges Two Sudanese Brothers for Record 35,000 DDoS Attacks (source)