New cyber security attacks and DDoS threats are lurking in the shadows everyday. Read the latest information and stay head of these vulnerabilities with updated DDoS reports and cyber security threat reports from Radware's Emergency Response Team (ERT).
To receive an email notification when ERT threat alerts are posted, click here.
#OpIsrael is an organized set of attacks aimed at Israeli Web sites, which was officially first launched on 14 November, 2012 against the Israeli government, public institutions and other high profile Web sites.
Network Time Protocol synchronizes computer clock times across the internet. NTP uses Coordinated Universal Time (UTC) to synchronize computers with millisecond accuracy. UTC time is obtained using accurate clocks, such as a GPS receiver that gets the time from satellites. NTP is a UDP-based service, using port 123.
In early September 2012, videos of about 14 minutes in length that claimed to be trailers of a longer film named “Innocence of Muslims” were uploaded to YouTube. The film, which is claimed to contain offending content to the Muslim community, invoked demonstrations and violent protests in many Muslim countries and an attack on U.S. consulates and embassies.
Since October 2012, a large US Bank has been under attack as part of the infamous “Operation Ababil”. The bank has been unable to mitigate the attacks for more than 5 months and has suffered from continual service interruptions on the banks online services. On March 12th, another massive attack period started, but this time Radware DefensePro was already deployed onsite and Radware’s Emergency Response Team (ERT) was invoked. During the next few weeks the ERT worked closely with the bank to modify its system infrastructure and deploy Radware’s AMS until it achieved a successful mitigation for all attacks.
On April 7th, a Radware customer was targeted with DoS attacks assembled by the Anonymous group as part of an attack campaign on the Israeli cyberspace. The focus of this report is to analyze the attack on the customer’s networks and clients, while examining the magnitude of the attack. The report contains the attack vectors and tools that were used against the customer’s network based on ERT’s analysis. When analyzing the reports generated by DefensePro units installed on customer premises, ERT took a top-down approach, focusing on the most prominent attacks observed by bandwidth and number of incidents.
AnonGhost – A hacking group affiliated with Anonymous announced a new cyber-attack campaign against US websites named #OPUSA, scheduled for May 7th, 2013. The planned attack follows a similar attack campaign organized by AnonGhost that took place exactly one month earlier – on Apr 7th, 2013 and was launched against Israeli web sites (aka OPISRAEL).
During the past week we noticed an abnormal increase of brute force attacks targeting WordPress applications. The attacks use automated scripts that attempt to login to WordPress default admin page using common usernames and passwords.