Security News

DDoS and bot attacks in 2022: Business sectors at risk and how to defend
2022-09-21 14:05

According to Gcore, in 2022, the number and volume of DDoS attacks will roughly double compared to 2021. Rew, which business sectors are being attacked more often than others in 2022?

Record DDoS Attack with 25.3 Billion Requests Abused HTTP/2 Multiplexing
2022-09-21 06:30

Cybersecurity company Imperva has disclosed that it mitigated a distributed denial-of-service attack with a total of over 25.3 billion requests on June 27, 2022. The "Strong attack," which targeted an unnamed Chinese telecommunications company, is said to have lasted for four hours and peaked at 3.9 million requests per second.

Imperva mitigated long-lasting, 25.3 billion request DDoS attack
2022-09-20 22:31

Internet security company Imperva has announced its DDoS mitigation solution has broken a new record, defending against a single attack that sent over 25.3 billion requests to one of its customers. The DDoS attack unfolded on June 27, 2022, peaking at 3.9 million requests per second and averaging 1.8 million RPS. While this pales compared to the record-breaking attack that Cloudflare mitigated in June, which topped at 26 million RPS, the duration in Imperva's case was unusually long.

Eastern European org hit by second record-smashing DDoS attack
2022-09-16 06:04

Akamai says it has absorbed the largest-ever publicly known distributed denial of service attack - an assault against an unfortunate Eastern European organization that went beyond 700 million packets per second. For comparison, the July attack peaked at 659.6 Mpps with the organization coming under attack 75 times at its primary data center.

Akamai stopped new record-breaking DDoS attack in Europe
2022-09-15 18:28

A new distributed denial-of-service attack that took place on Monday, September 12, has broken the previous record that Akamai recorded recently in July. The cybersecurity and cloud services company Akamai reports that the recent attack appears to originate from the same threat actor, meaning that the operators are in the process of empowering their swarm further.

DDoS activity launched by patriotic hacktivists is on the rise
2022-08-30 08:00

Radware released a report revealing that the number of malicious DDoS attacks climbed by 203% compared to the first six months of 2021. This Help Net Security video provides information about the rise of DDoS activity launched by patriotic hacktivists.

Gambling sites are losing significant amounts of revenue due to raising DDoS attacks
2022-08-26 08:00

Imperva releases data showing that 25% of all gambling sites were hit with DDoS attacks executed by botnets in June. This Help Net Security video uncovers how DDoS attacks on gambling sites lead to lost revenue and consumer trust.

Hackers Using Fake DDoS Protection Pages to Distribute Malware
2022-08-24 12:12

WordPress sites are being hacked to display fraudulent Cloudflare DDoS protection pages that lead to the delivery of malware such as NetSupport RAT and Raccoon Stealer. "A recent surge in JavaScript injections targeting WordPress sites has resulted in fake DDoS prevent prompts which lead victims to download remote access trojan malware," Sucuri's Ben Martin said in a write-up published last week.

DDoS attacks jump 203%, patriotic hacktivism surges
2022-08-23 03:00

Radware released a report revealing that the number of malicious DDoS attacks climbed by 203% compared to the first six months of 2021. "As Russia invaded Ukraine, the cyber focus changed. It shifted from the consequences of the pandemic, including an increase in attack surfaces driven by work from home and the rise of underground crime syndicates, to a ground swell of DDoS activity launched by patriotic hacktivists and new legions of threat actors."

CISA is warning of high-severity PAN-OS DDoS flaw used in attacks
2022-08-22 21:34

The security issue is a high-severity risk identified as CVE-2022-0028 that allows a remote threat actor to deploy reflected and amplified denial-of-service attacks without having to authenticate. While exploiting the flaw can only cause a DoS condition on the affected device, it has already been used for at least one attack.