Distributed denial-of-service (DDoS) attacks are a constant growing and anonymous threat to small and medium-sizedbusinesses.

DDoS attacks are identified by the unusual unavailability of an online service due to a systemic incapacity to keep up with an overload of requests.

The objectives of these attacks, although not limited to specific entities, revolve around financial extortion, operational disruption of enterprises – private or government – and other unexpected losses of business, such as brand reputation, or even end consumers’ experience and trust.

Understanding how DDoS attack campaigns are carried out and injected into systems is a necessity in mitigation and fostering anti-DDoS measures.

• As stateful mechanisms intended to mitigate the invasion of one entity at a time, firewalls and IPS are not able to cope with millions of valid packets, eventually getting overloaded.
• Also known as “floods,” the goal of volumetric attacks is to cause congestion with so much traffic that it overwhelms the bandwidth of the site.
• A buffer overload takes place – causing a system crash from the bandwidth consumed.
• Legitimate users and consumers will not be able to establish additional connections.
• Additionally, an attack can also be a combination of the three types listed above, making it even more challenging for organisations to combat.

The impact of a DDoS attack to your business is costly and wide-ranging, and includes:

• Recovery costs, such as detection and emergency mitigation
• Indirect costs, such as lost productivity and brand reputation
• Opportunity costs, such as customer churns and lost business opportunities

Individual legitimate sessions cannot be identified as a threat by firewalls and IPS. The behavioural pattern of millions of sessions or requests is a threat recognised only by a level of contextual, human intelligence.

DDoS Attacks have evolved in sophistication and size, from DNS DDoS to NTP Reflection, to the recent Mirai IoT BotNet, causing significant network performance issues or outages for broadband access network operators.

With stateless protective DDoS mitigation devices, millions of connections can be dealt with seamlessly. A security roadblock would be in place at the ISP or in front of the on-premise firewall before the attack reaches the targeted router, detecting attacks at their earliest phases. A DDoS solution is necessary to ensure availability of your online services to your customers.

This is where our anti-DDoS solution comes in.

To solidify anti-DDoS plans, we are able to safeguard your organisation’s availability of service by implementing the operational protocols, communications, and special task forces to support your online presence quickly and effectively.

The effective anti-DDoS solution should

• Detect anomaly
  • Anomalies indicate the possibility of an ongoing attack.
• Mitigate attacks
  • To sift through the good from the bad traffic
• Global Threat Intelligence
  • To discover and analyse emerging internet threats and develop defences
• Stateless attack detection and filtering
  • To remain functional during attacks designed to overwhelm and cripple stateful devices, such as firewalls and IPS devices.

As a leader of cyberspace security and proven anti-DDoS techniques, our anti-DDoS partner, Arbor, has also provided beneficial services to telecommunication companies and enterprises.