Security Alerts & News
by Tymoteusz A. Góral

History
#1028 A massive botnet of CCTV cameras involved in ferocious DDoS attacks
A botnet of over 25,000 bots lies at the heart of recent DDoS attacks that are ferociously targeting business around the world. More exactly, we're talking about massive Layer 7 DDoS attacks that are overwhelming Web servers, occupying their resources and eventually crashing websites.

US-based security vendor Sucuri discovered this botnet, very active in the last few weeks, and they say it's mainly composed of compromised CCTV systems from around the world.

Their first meeting with the botnet came when a jewelry shop that was facing a prolonged DDoS attack opted to move their website behind Sucuri's main product, its WAF (Web Application Firewall).

Sucuri thought they had this one covered, just as other cases where companies that move their sites behind their WAF block the attacks, and eventually the attacker moves on to other targets.

Instead, they were in for a surprise. While the initial attack was a Layer 7 DDoS with over 35,000 HTTP requests per second hitting the server and occupying its memory with garbage traffic, as soon as the attackers saw the company upgrade their website, they quickly ramped up the attack to 50,000 requests.

For Layer 7 attacks, this is an extraordinarily large number, enough to drive any server into the ground. But this wasn't it. The attackers continued their assault at this high level for days.
Read more
#1032 US Healthcare records offered for sale online
#1031 Malicious app found on Google Play, steals Viber photos and videos
#1030 New exploits target hospital devices, places patients at risk
#1029 Bart ransomware shows it can be effective without sophisticated encryption
#1028 A massive botnet of CCTV cameras involved in ferocious DDoS attacks
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12