A new report by Kaspersky Lab, DDoS attacks are affecting not just front end websites but also internal web services. According to the press release, “a quarter said their file servers had been affected and 15% said their operational systems had been hit. Another 15% said a DDoS attack impacted overall ISP network connectivity.” Manufacturing on the other hand is at the most risk where DDoS attacks have taken file servers offline. Furthermore, transportation and government organizations faced network connectivity issues from the attacks.
According to Evgeny Vigovsky, “DDoS hits can reach deep into a company’s internal systems. And it doesn’t matter how small the company is, or whether or not it has a website: if you’re online, you’re a potential target. Unprotected operational systems are just as vulnerable to a DDoS attack as the external website, and any disruption can stop a business in its tracks”.
A lot of DDoS attackers will use port scanners to scan and map the network of the website. For example, by scanning a network and finding the main router IP, the attackers can bring down the whole network by focusing entirely on the router IP address. This can be problematic for ISP and cloud providers who host their core routers on the public IP. ISP don’t advertise their router IP’s but by scanning and mapping the network, one can come close to guessing the IP ranges of the router.
DDoS attackers are also going after portals and backend systems instead of frontend. For example, by simply attacking the login system or file system, the attack can be focused on a single IP address and avoid the CDN protection that can absorb large amount of attack. Most backend systems are not utilizing CDN, thus preventing the benefits for CDN from being utilized. By focusing on the infrastructure, DDoS attack can end up costing a lot of money for businesses. According to a report, brand reputation due to a security incident can end up costing around $200,000 for enterprise and $8000 for small business.
The battle between DDoS protection service provider like Psychz, Staminus and DDoS attackers will continue to go on and the attacks will evolve. According to the report, “In 2015, one in six (16%) companies worldwide suffered a Distributed Denial of Service (DDoS) attack, rising to a quarter of enterprises”. Keeping this mind, DDoS protection is no longer just for big corporation but it ends up impacting every business or service that is available online. Service providers can no longer just sit and just ride the DDoS attack until it’s over. The downtime alone can end up costing in millions.