Security News > 2023 > March > DDoS DNS attacks are old-school, unsophisticated … and they’re back
Cloudflare research showed a "Massive spike" in application layer DDoS attacks in Q1 2022, while network layer attacks also jumped substantially.
The DDoS attacks themselves are getting bigger, says Klaus Darilion, head of operations of the anycast service RcodeZero DNS, because the internet itself is getting bigger and attackers have more bandwidth to play with.
In the case of last year's incidents, Darilion says, "They made volumetric attacks, just to fill up the bandwidth of certain companies. But they also made random subdomain attacks and high DNS query rates to overwhelm authoritative DNS servers and fill up state-tables of firewalls."
With DNS attacks in particular, Darilion says, "It's not always good to have a firewall or lots of application logic in front of a DNS server."
Companies are well aware of the importance of mitigation for mainstream DDoS attacks on their website and will turn to the likes of Cloudflare or other providers to protect them.
It might be the case that people don't actually think about DNS DDoS attacks day to day, because they're part of the background noise of being online.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/03/29/ddos_dns_attacks_are_oldschool/
Related news
- Mirai Botnet Variant Exploits Four-Faith Router Vulnerability for DDoS Attacks (source)
- Cloudflare mitigated a record-breaking 5.6 Tbps DDoS attack (source)
- Mirai Botnet Launches Record 5.6 Tbps DDoS Attack with 13,000+ IoT Devices (source)
- Mirai botnet behind the largest DDoS attack to date (source)
- New Aquabot Botnet Exploits CVE-2024-41710 in Mitel Phones for DDoS Attacks (source)
- DDoS attacks reportedly behind DayZ and Arma network outages (source)
- Gcore DDoS Radar Reveals 56% YoY Increase in DDoS Attacks (source)