DDoS Mitigation and Your Company

Distributed Denial-of-Service attacks, or DDoS attacks, have been used by cyber terrorists in the past to steal money from a company’s bank account and information from its network. More recently, such hacktivist groups as Anonymous, LolzSec and others have used the same types of attacks for more political reasons, namely to ruin the reputation of those companies whose agendas are counter to their own.

There are many ways these attacks can be accomplished, with the two most prominent being a botnet attack and multi-vector attacks. Botnet attacks flood the networks servers with a large amount of TCP and UDP packets. This type of attack can shut down a site for hours. Even more insidious is a multi-vector attack. During this type of intrusion, a DDoS attack is used to attack a server, and while the network security deals with that DDoS attack, hackers slip in and retrieve whatever content they really want.

How can companies combat these kinds of attacks? According to a recent http://searchsecurity.techtarget.com article, some would say equipment, but that presents its own problems. Equipment such as firewalls, routers, and switches can allow for bottlenecks that slow down or even shut down a company’s efforts to protect against intrusions. In the end, if a hacker can keep a company from protecting itself when they attack, then they have achieved their goal. So what are other alternatives?

Of course companies can self-mitigate their own protection, but that may be expensive. Companies who do so must buy the necessary hardware and then hire and train the employees or experts to operate and maintain the hardware. Or, smaller companies can turn to larger security firms when mitigating DDoS attacks they can’t handle on their own. These companies need to take special care, though, as some security firms, though they charge a flat fee up front, will actually want to charge more when an attack occurs.

Ultimately, it boils down to what a company needs to do to keep doing business. With the complexity and size of DDoS attacks on the rise, it is only a matter of time before a company becomes a target. Even a revision in Internet protocol, from IPv4 to IPv6, will not stop daily DDoS attacks, but only slow them down. Businesses need to approach such attacks with an attitude of, “What can I do to keep such attacks from happening to me?”

For more information about mitigating cyber attack, visit: http://searchsecurity.techtarget.com/news/2240159017/DDoS-mitigation-a-key-component-in-network-security