The study notes that DDoS attacks on companies increased by 170 percent in 2012 over the previous year.
After analyzing the data from a number of security vulnerabilities and responses from 179 participating companies, Radware said that many companies can be compared to "someone who brings a knife to a gunfight." In ' other words, companies try to protect themselves against cyber attacks, but often fail because they are not prepared. A number of trends point to a critical blind few companies have the resources or protections position to withstand long-term cyber tedious, which is a key element that many hackers exploit.
Avi Chesla, CTO, Radware, said security firm has studied hundreds of DoS / DDoS and found that "attacks that last more than a week have doubled in frequency during 2012."
One of the top cyber trends documented in 2012 is the use of compromised servers to launch botnet denial of service attacks. Being able to use different servers in different locations has raised many limitations of the campaign single server, and a huge amount of traffic can be redirected to a site overload and close quickly. In addition, the use of multiple servers available 24/7 not only the use of the facilities of command and control centers, but improves the reliability of such attacks. The Company expects that the safety of this method to grow in popularity over the next year. In terms of damage, complexity and strength, Radware said, 58 percent of servers based on the denial of botnets in 2012 scored 7 points out of 10 for complex, against 23 percent in 2011 . Seventy percent achieved a degree of complexity of 3 or more, while 30 percent received the score in 2011.
In addition, financial services and e-commerce sites that use HTTPS are a concern because of the layer encrypted attacks. Hackers often use layers now encrypted to launch the application level attacks that SSL can go unnoticed until it is too late to rectify the problem.
Finally, Radware said, the spawn of "do it yourself" sites that help anyone with minimal coding and hacking skills to take on a company is to reach the level of commodities. These kits hacking for free rental and can lead a person to pay a little over $ 10 for a ransomware attack tool, which means that piracy is not just for pros.
Security firm suggests that rather than administering a "before and after" defensive position against cyber attacks, a "demand" force must be used to fight against the threat from the front it appears. This is a better option than endure long DoS / DDoS attacks that can cost a company both revenue and reputation. According Radware, large companies should not be less than nine safety engineers available to defend systems and to invest in a dynamic "war room security" to keep threats at bay.
