Fighting malware and spam

DDoS

Multi-source attack attempting to crash system or software

A Distributed Denial of Service (DDoS) attack is a bombardment of data originating from a large number of systems, (usually a botnet of compromised machines) focused on a single website or server. The onslaught of data is designed to overwhelm the server, knocking a site offline, or possibly taking out a security application to allow malicious code to pass through.

DDoS attacks are often used for blackmail purposes - sites such as gambling sites, which have high turnovers and small but important time windows (such as just before major sporting events) are threatened with a DDoS attack unless they pay a ransome. Demonstration attacks to show the potential damage such an attack could cause are a common part of the threat process.

Occasionally the effects of a DDoS attack are simulated when a site has an unusually high level of genuine traffic. Examples may include news sites when a very significant news event is breaking and large numbers of users are trying to reach the site at the same time.

Related news articles

BBC botnet hijack proves controversial

Legal issues raised by broadcaster's demo of spamming, DDoS, cleanup attempt.

12 March 2009

Botnet-herding team arrested in Quebec

Gang held for managing million-machine zombie net.

22 February 2008

Attempted virus fumbles attack on F-Secure

Flawed file-infector fails to frighten Finns.

06 November 2007

Storm botnet evolution hints at spam and DDoS renting

Latest change in tactics could mean zombie clusters for hire.

17 October 2007

  see all related news stories

Poll

Jobs

• Web Applications Security Engineer (610 West Ash St., United States)
• Sr Security Response Engineer (Dublin, Ireland)