Fighting malware and spam

DDoS

Multi-source attack attempting to crash system or software

A Distributed Denial of Service (DDoS) attack is a bombardment of data originating from a large number of systems, (usually a botnet of compromised machines) focused on a single website or server. The onslaught of data is designed to overwhelm the server, knocking a site offline, or possibly taking out a security application to allow malicious code to pass through.

DDoS attacks are often used for blackmail purposes - sites such as gambling sites, which have high turnovers and small but important time windows (such as just before major sporting events) are threatened with a DDoS attack unless they pay a ransome. Demonstration attacks to show the potential damage such an attack could cause are a common part of the threat process.

Occasionally the effects of a DDoS attack are simulated when a site has an unusually high level of genuine traffic. Examples may include news sites when a very significant news event is breaking and large numbers of users are trying to reach the site at the same time.

Related news articles

Botnet-herding team arrested in Quebec

Gang held for managing million-machine zombie net.

22 February 2008

Attempted virus fumbles attack on F-Secure

Flawed file-infector fails to frighten Finns.

06 November 2007

Storm botnet evolution hints at spam and DDoS renting

Latest change in tactics could mean zombie clusters for hire.

17 October 2007

Storm DDoS hits anti-scam sites

419 fighters attacked - NFL and TOR latest spam hooks.

10 September 2007

Storm e-card malware keeps on coming

No end to flood of fake friendly greetings.

17 August 2007

  see all related news stories

Poll

Virus Bulletin

• Co-operation is the only way
• XXX racted
• Your filters are bypassed: Rustock.C in the kernel
• Family matters
• The Ottawa rules
• DriveSentry Desktop 3.1/3.2 & GoAnywhere 1.0.2/2.0
• The problem of backscatter – part 3