Home / News

DNS Amplification Variant Expected in Future Major DDoS Attacks, Experts Warn

Several sources are reporting about a new form of denial-of-service (DDoS) attacks which are based on a new variant of DNS amplification. DNS amplification was first widely publicized in March of 2006 with the release of a paper by security experts Gadi Evron and Randal Vaughn which examined a scenario in which criminals abuse recursive DNS name servers by using spoofed user datagram protocol (UDP) packets.

Don Jackson, director of threat intelligence at network security provider SecureWorks, told SCMagazine: "Since then, DNS amplification has been used in DDoS extortion attempts against pornography and gambling websites… The technique soon will be used against more mainstream commercial sites thanks to a new variant in which criminals do not have to rely on recursive queries."

Read full story: SC Magazine

Related topics: Cyberattack, DDoS, DNS, Security

WEEKLY WRAP — Get CircleID's Weekly Summary Report by Email:

Comments

To post comments, please login or create an account.

Related Blogs

The Resolvers We Use

A Brave New World or Do We Need to Discuss IT and Ethics?

ccTLDs Might Be Property

Domain Name Abuse Is a 4 Letter Word

If It Doesn't Exist, It Can't Be Abused

Related News

Topics

Industry Updates – Sponsored Posts

Join Paul Vixie & Robert Edmonds at the Upcoming Distinguished Speaker Series

Q3 2014 DDoS Trends: Attacks Exceeding 10 Gbps on the Rise

LogicBoxes Announces Automation Solutions for ccTLD

3 Questions to Ask Your DNS Host About DDoS

Introducing Our Special Edition Managed DNS Service for Top-Level Domain Operators

Afilias Partners With Internet Society to Sponsor Deploy360 ION Conference Series Through 2016

Neustar to Build Multiple Tbps DDoS Mitigation Platform

The Latest Internet Plague: Random Subdomain Attacks

Digging Deep Into DNS Data Discloses Damaging Domains

New gTLDs and Best Practices for Domain Management Policies (Video)

Nominum Announces Future Ready DNS

New from Verisign Labs - Measuring Privacy Disclosures in URL Query Strings

Video Interviews from ICANN 50 in London

DotConnectAfrica Delegates Attend the Kenya Internet Governance Forum

3 Questions to Ask Your DNS Host about Lowering DDoS Risks

Continuing to Work in the Public Interest

Verisign Named to the OTA's 2014 Online Trust Honor Roll

4 Minutes Vs. 4 Hours: A Responder Explains Emergency DDoS Mitigation

Dyn Acquires Internet Intelligence Company, Renesys

Tips to Address New FFIEC DDoS Requirements

Sponsored Topics

dotMobi

Mobile

Sponsored by
dotMobi
Afilias

DNSSEC

Sponsored by
Afilias
Minds + Machines

Top-Level Domains

Sponsored by
Minds + Machines
Verisign

Security

Sponsored by
Verisign