New cyber security attacks and DDoS threats are lurking in the shadows everyday. Read the latest information and stay head of these vulnerabilities with updated DDoS reports and cyber security threat reports from Radware's Emergency Response Team (ERT).
To receive an email notification when ERT threat alerts are posted, click here.
Cisco IOS XR Software contains vulnerability when handling crafted packets that may result in a denial of service condition. The vulnerability only exists on Cisco 9000 Series Aggregation Services Routers (ASR) Route Switch Processor (RSP-4G and RSP-8G), Route Switch Processor 440 (RSP440), and Cisco Carrier Routing System (CRS) Performance Route Processor (PRP).
The customer, a major financial institution in the United States, was targeted with a multi-vulnerability DDoS attack by the Anonymous collective as part of a large attack campaign. This attack lasted for about nine hours. On the same day, the customer notified ERT with the following information “We have received credible information that an Anonymous kind of attack is being targeted on (our site) tomorrow”; the attack started three hours later than planned.
This attack case summary describes one of the real life attacks which was experienced by a Radware customer and successfully mitigated thanks to Radware’s DefensePro product and Radware’s Emergency Response Team (ERT) expertise. The customer’s name is undisclosed for privacy purposes and is referenced by “customer” in this report.
The customer is a religious entity which was targeted by an hacktivist group for its “doctrine” and “concepts”. According to some sources, the attack also appears to have been triggered by a security firm report explaining it was able to protect the customer from DDoS attacks.The attack lasted three days and was comprised of five attack vectors; one of the attack vectors was particularly exotic using a HTTP fingerprinting attack vector.
Recently, a new DDOS attack tool was introduced dubbed as HOIC – High Orbit Ion Cannon. Although developed for testing purposes (according to the developer disclaimer)this tool is evidently used maliciously in the wild. HOIC is running as windows executables and has GUI control.
Dirt Jumper (previously known as RussKill) is a very popular Distributed Denial of Service Bot being heavily used in the DDOS-for-hire business online. By visiting underground forums, one can find many variants and versions of Dirt Jumper offered for sale. Since the source code for different versions of Dirt Jumper can now be found for free in some underground forums, Dirt Jumper continues to evolve and over time many versions and variants have come into play.
Low Orbit Ion Canon (LOIC) is an open source network stress testing and Denial of Service (DoS) attack application that was initially developed by Praetox Technologies and later released into the public domain. LOIC is a flooding tool that runs on Microsoft Windows and Mac OS X generating massive amounts of TCP, UDP and HTTP packets. It performs DoS attacks on the target site by flooding the server with non-legitimate packets in order to disrupt the service of a particular host.