New cyber security attacks and DDoS threats are lurking in the shadows everyday. Read the latest information and stay head of these vulnerabilities with updated DDoS reports and cyber security threat reports from Radware's Emergency Response Team (ERT).
To receive an email notification when ERT threat alerts are posted, click here.
The current conflict between Ukraine and Russia following the Ukrainian revolution, the Crimean peninsula crisis, and the recent fighting in Slovyansk and Odessa, has the potential of military and political escalation. This conflict takes a global form following the involvement of the USA, Europe, NATO and other actors.
A critical vulnerability was recently found in OpenSSL; Due to a missing bounds check in the handling of the TLS heartbeat extension, 64K of memory can be revealed to a connected client or server. Only OpenSSL versions 1.0.1-1.0.1f, 1.0.2-beta and 1.0.2- beta1 are affected.
#OpIsrael is an organized set of attacks aimed at Israeli Web sites, which was officially first launched on 14 November, 2012 against the Israeli government, public institutions and other high profile Web sites.
Network Time Protocol synchronizes computer clock times across the internet. NTP uses Coordinated Universal Time (UTC) to synchronize computers with millisecond accuracy. UTC time is obtained using accurate clocks, such as a GPS receiver that gets the time from satellites. NTP is a UDP-based service, using port 123.
In early September 2012, videos of about 14 minutes in length that claimed to be trailers of a longer film named “Innocence of Muslims” were uploaded to YouTube. The film, which is claimed to contain offending content to the Muslim community, invoked demonstrations and violent protests in many Muslim countries and an attack on U.S. consulates and embassies.
Since October 2012, a large US Bank has been under attack as part of the infamous “Operation Ababil”. The bank has been unable to mitigate the attacks for more than 5 months and has suffered from continual service interruptions on the banks online services. On March 12th, another massive attack period started, but this time Radware DefensePro was already deployed onsite and Radware’s Emergency Response Team (ERT) was invoked. During the next few weeks the ERT worked closely with the bank to modify its system infrastructure and deploy Radware’s AMS until it achieved a successful mitigation for all attacks.
On April 7th, a Radware customer was targeted with DoS attacks assembled by the Anonymous group as part of an attack campaign on the Israeli cyberspace. The focus of this report is to analyze the attack on the customer’s networks and clients, while examining the magnitude of the attack. The report contains the attack vectors and tools that were used against the customer’s network based on ERT’s analysis. When analyzing the reports generated by DefensePro units installed on customer premises, ERT took a top-down approach, focusing on the most prominent attacks observed by bandwidth and number of incidents.