Security News > 2023 > March > DDoS DNS attacks are old-school, unsophisticated … and they’re back
Cloudflare research showed a "Massive spike" in application layer DDoS attacks in Q1 2022, while network layer attacks also jumped substantially.
The DDoS attacks themselves are getting bigger, says Klaus Darilion, head of operations of the anycast service RcodeZero DNS, because the internet itself is getting bigger and attackers have more bandwidth to play with.
In the case of last year's incidents, Darilion says, "They made volumetric attacks, just to fill up the bandwidth of certain companies. But they also made random subdomain attacks and high DNS query rates to overwhelm authoritative DNS servers and fill up state-tables of firewalls."
With DNS attacks in particular, Darilion says, "It's not always good to have a firewall or lots of application logic in front of a DNS server."
Companies are well aware of the importance of mitigation for mainstream DDoS attacks on their website and will turn to the likes of Cloudflare or other providers to protect them.
It might be the case that people don't actually think about DNS DDoS attacks day to day, because they're part of the background noise of being online.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/03/29/ddos_dns_attacks_are_oldschool/
Related news
- CUPS vulnerabilities could be abused for DDoS attacks (source)
- Cloudflare blocks largest recorded DDoS attack peaking at 3.8Tbps (source)
- Recently patched CUPS flaw can be used to amplify DDoS attacks (source)
- Cloudflare Thwarts Largest-Ever 3.8 Tbps DDoS Attack Targeting Global Sectors (source)
- Largest Recorded DDoS Attack is 3.8 Tbps (source)
- New Gorilla Botnet Launches Over 300,000 DDoS Attacks Across 100 Countries (source)
- U.S. Charges Two Sudanese Brothers for Record 35,000 DDoS Attacks (source)
- Cybercriminals hijack DNS to build stealth attack networks (source)