InfoSecBulletin Cybersecurity for mankind
The DDoS attack is constantly evolving due to advancements in technology and the changing motivations of attackers. Recent cases have shown that these attacks can cause significant damage and have severe legal consequences.
B1ack’s Stash Releases 1 Million Credit Cards on a Deep Web Forum
Cisco Confirms
Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks
AWS Key Hunter
Test this free automated tool to hunt for exposed AWS secrets
Check Point Flaw Used to Deploy ShadowPad and Ransomware
CVE-2024-12284
Citrix Issues Security Update for NetScaler Console
CISA and FBI ALERT
Ghost ransomware to breach organizations in 70 countries
Hacker chains multiple vulns to attack Palo Alto Firewall
150 Gov.t Portal affected
Black-Hat SEO Poisoning Indian “.gov.in, .ac.in” domain
CVE-2018-19410 Exposes 600 PRTG Instances in Bangladesh
Builder claims Rs 150 cr for data loss; AWS faces FIR In Bengaluru
Akamai Prolexic’s DDoS defense platfam has successfully thwarted the most colossal DDoS attack ever recorded on a prominent U.S. financial institution’s platform. The attack, which unleashed a formidable torrent of 633.7 Gbps and 55.1 Mpps, was powerfully neutralized.
Akamai security analysts reported a major DDoS attack that lasted less than 2 minutes. During the attack, the threat actors used a combination of flood attack vectors.
ACK
PUSH
RESET
SYN
Here below, Akamai have mentioned the top malicious traffic sources:-
Bulgaria
Brazil
China
India
United States
Thailand
Russia
Ukraine
Vietnam
Japan
Akamai mentioned the following recommendations :-
- Make sure to adopt CISA recommendations promptly.
- Check all the key subnets and IPs for effective mitigation controls.
- Establish continuous DDoS security controls as your initial defense layer.
- Enhance security with advanced network cloud firewall beyond basic DDoS protection.
- Form a proactive crisis team and keep incident plans and runbooks up to date.
