Los ataques de Denegación de Servicio Distribuidos, DDoS por sus siglas en inglés, es uno de los tipos de ataque más conocidos y de los que pueden afectar a más personas. Los investigadores han demostrado que un nuevo vector de ataque amplifica las consecuencias enormemente. Es la primera investigación realizada sobre los ataques DDoS a través del protocolo TCP.
Recapitulando un poco sobre la historia de este tipo de ataques, los primeros se remontan a principios de los años 2000, con ataques a webs para saturar la infraestructura con paquetes maliciosos. Over the years, ha derivado en un nuevo método más dañino: elAtaque de amplificación de reflexión DDoS, siendo los protocolos UDP como SNMP, DNS, NetBIOS and NTP are the most suitable attack vectors.
To make matters worse, firewalls have now started to be used, Network Address Translators, load balancers and packet inspection devices to launch even more sophisticated attacks. This is achieved by sending intentionally malformed TCP packets. During investigations, the sending of content related to adult content, gambling, social networks and file sharing to trigger this type of attacks has been detected.
To finish, the worrying part is that such an attack has not yet taken place, or at least no attacker has spoken about it. In addition, the investigation details that at least 200 Millions of IP addresses are susceptible to receiving this type of attack.
For its part, Network equipment manufacturers are warned about this type of attack. Researchers warn that a security patch will not be enough to mitigate such attacks. This includes updating the configurations of the networks where these devices are installed.
Image:Technology Photo created by rawpixel.com – www.freepik.es
Fountain:CyWare