DDoS Attack is one of most dangerous threat for any organization and the attack main aims to exhaust the resources of a network, application or service that leads an organization to face the various technical impacts.
Researchers referred to this attack as Layer 7 DDoS attack Imperva has ever seen and they are continuously fighting against the attack without downtime.
“This is the largest DDoS Layer 7 (application layer) attack to date Imperva have observed, using the most relevant measure for Layer 7 attacks”
DDoS Attack Initiated From Brazil
Based on the telemetry data and IP’s analysis, researchers learned that the attack the main source was originated in Brazil.
In order to mask their attack, Attackers used a legitimate User-Agent, the same used by entertainment industry customer service application to target the authentication component of the streaming application.
According to Imperva, Researchers believe that the attack may be intended to perform a brute force attack or DDoS attack. As this attack occurred in late spring before the launch of ATO, we were unable to analyze the brute force aspects of the attack.
” However, a botnet with 400,000 IPs can perform a “slow and low” attack: each IP tries a few logins, goes inactive, and then tries a few more. In such a technique, the access rate is very low, mimicking legitimate login attempts, and staying under rate limit policies.” Imperva said.
IoT devices are continuously growing faster Since 2016, many new IoT vendors have entered the market, and the attackers are taking advantage of abused it for creating botnets.
Since DDoS attacks dominate the security in so many ways, businesses are required to focus on Application Layer 7 DDoS attacks and Network Layer 3/4 DDoS attacks.
Powerful DDoS attacks always end up costing your organization tens of thousands of dollars in man-hours, lost business and reputation damages.