Mobile applications being used for DDoS attacks to increase
"The prevalence of mobile devices and the widespread availability of downloadable apps that can be used for DDoS is a game changer," said Stuart Scholly, president of Prolexic. "Malicious actors now carry a powerful attack tool in the palm of their hands, which requires minimal skill to use. Because it is so easy for mobile device users to opt-in to DDoS attack campaigns, we expect to see a considerable increase in the use of these attack tools in 2014."
Data gathered in Q4 from attacks against Prolexic's global client base shows that mobile devices participated in a DDoS attack campaign against a global financial services firm. Digital forensics and attack signature analysis conducted by the Prolexic Security Engineering and Response Team (PLXsert) detected the use of AnDOSid, an Android operating system tool that performs an HTTP POST flood attack.
"Mobile devices add another layer of complexity," explained Scholly. "Because mobile networks use super proxies, you cannot simply use a hardware appliance to block source IP addresses as it will also block legitimate traffic. Effective DDoS mitigation requires an additional level of fingerprinting and human expertise so specific blocking signatures can be developed on-the-fly and applied in real-time."
Prolexic believes that developers of applications commonly used in DDoS attacks like Low Orbit Ion Canon (LOIC) will increasingly port them to mobile platforms in 2014. "Traditionally, some type of infection or malware was required," said Scholly. "With mobile apps, malicious actors can choose to proactively participate in orchestrated DDoS attack campaigns. When you consider how many mobiles device users there are in the world, this presents a significant DDoS threat."
Prolexic's latest DDoS attack report shows the total number of attacks against its clients in Q4 2013 once again set a new record for one quarter, illustrating the heightened level of DDoS activity throughout 2013. Compared to the same quarter one year ago, total attack volume increased 26 percent. A week-by-week comparison to Q4 2012 shows increases in attack volume across eight of the 12 weeks of the quarter.
A complimentary copy of the report is available as a free PDF download from www.prolexic.com/attackreports (http://bit.ly/1m3CASu). Prolexic's Q1 2014 report will be released early in the second quarter of 2014.
- Bluetooth adapter speeds data exchange with mobile terminal devices
- Smart bulb uses Wi-Fi to cut costs
- Wi-Fi, Bluetooth module targets IoT and M2M applications
- Carrier neutral secure cellular service rolls out
- Queensland University warns of security flaws in connected vehicles
- Smartphone could be used to detect pesticides rapidly and cheaply
- LPRS to unveil FCC and IC approved easyRadio wireless controller
- Researchers show potassium-ion is possible cheaper alternative to lithium-ion batteries
- Can crowdfunding produce the perfect smartphone?
- Infrastructure as a Service expected to grow rapidly
- Report shows significant rise in mobile infections via PCs and adware
- Ultra low noise amplifier from RFMW offers flat gain
- IoT processor offers support for Bluetooth® v4.1
- Smart radio prototype knows a listener's preferences
- 150 Mbps 4G LTE and WCDMA module with multi-carrier support
- Taking the speed bumps out of Wi-Fi using FM
- Using Wi-Fi to power billions of IoT devices
- ON Semiconductor snaps up Fairchild Semiconductor
- Breakthrough prototoype technology to shatter capacity limits of optical networks
- Smart city wireless control system covers 33000 LED streetlights
- No-lens camera proposed by Rice University
- Millimeter wave wireless data network to address data surge
- Photon pairs on a chip to lead to ultra-secure telecommunications
- Mobile image processing in the cloud cuts bandwidth use by over 98 percent
- Energy harvesting market to see sharp growth excluding RF
- Could Bluetooth-enabled credit cards beat NFC?
- Huawei and TELUS create 5G 'living' lab in Vancouver
- Free cloud-connected operating systems to accelerate IoT
- ITU protects aircraft with spectrum for space-based ADS-B
- Satellite link bonding over the KA-SAT satellite brings WAN to remote areas