Kaspersky Lab experts have noted an emerging trend – a growth in the number of attacks using encryption. Such attacks are highly effective due to the difficulty in identifying them among the overall flow of clean requests. Recently, the company encountered yet more evidence of this trend – an attack exploiting vulnerabilities in WordPress via an encrypted channel.
Read more on Help Net Security
A Turkish hacking crew is luring participants to join its DDoS platform to compete with peers to earn redeemable points that are exchangeable for hacking tools and click-fraud software. The goal, security researchers say, is to “gamify” DDoS attacks in order to attract a critical mass of hackers working toward a unified goal.
The hacking platform is called Surface Defense and is being promoted in Turkish-language Dark Web forums including Turkhackteam and Root Developer, according to Forcepoint Security Labs, the security firm that first uncovered and reported the DDoS platform.
Read more on Threat Post
Rise of booter and stresser services, mostly run on IoT botnets, is fueling DDoS excitement (but the pros aren’t impressed).
Read the full article on Dark Reading
The European Commission servers were forced to go offline for hours on Thursday after suffering a series of large-scale distributed denial of service (DDoS) attacks.
The Commission confirmed there was no data breach and also claimed that there was no service interruption but one staff member revealed they couldn’t access the Internet for hours after the attack. It is unclear if Commission’s servers were down due to the attack or if security specialists purposely disconnected them from the Internet to avoid further damage.
Read more on HackRead
From November 8 to 12, websites of some of the largest Russian banks fell victim to heavy DDoS attacks. Initially, it was no indication of anything unusual – all well-known banks get attacked from time to time – but further developments have evolved in the manner that allowed us to suggest a high level of organization in regards to the series of attacks.
Full article via Kaspersky Lab
A massive Distributed Denial of Service attack shut down a portion of the internet recently. Experts say it is unlikely a similar attack could take down the grid or other critical infrastructure but acknowledge that security remains weak in the industry.
Read more on CSO Online
The environmental control mechanism at two apartment buildings in Lappeenranta suddenly and surprisingly stopped functioning due to which people had to suffer a lot in the cold weather. However, the disturbing fact is that the systems weren’t just out of order or got blocked out but these were taken down through a DDoS attack.
Read more on HackRead
Security researchers at MalwareMustDie have discovered a new malware family designed to turn Linux-based insecure Internet of Things (IoT) devices into a botnet to carry out massive DDoS attacks.
Read the full article on The Hacker News
A GitHub user going by Leo Linsky has forked a repo created by researcher Jerry Gamblin to create an anti-worm “nematode” that could help to patch vulnerable devices used in the massive Mirai distributed denial of service attack.
Full article via The Register