Back in March, Seth Hanford wrote about a distributed denial of service (DDoS) attack aimed at the SpamHaus organization. Since then, there have been some new developments in the aftermath of the DDoS attack, most notably the arrest of the attackers’ spokesperson, Sven Olaf Kamphuis.
On April 26, Kamphuis, STOPhaus activist and possibly the person behind the large-scale SpamHaus DDoS attacks, was arrested in Spain. He had allegedly been operating out of his van, which he had transformed into a mobile computing office. Read More »
Tags: Cisco Security, distributed denial of service, Kamphuis, SpamHaus DDoS, STOPhaus, TRAC
Around 12:00 GMT March 16, 2013, a distributed denial of service (DDoS) attack took offline both the spamhaus.org website and a portion of its e-mail services. SpamHaus was able to restore connectivity by March 18; however, SpamHaus is still weathering a massive, ongoing DDoS attack. The DDoS attacks have also had less severe but measurable consequences for the Composite Block List (CBL) as well as Project Honey Pot.
The attackers appear to have hijacked at least one of SpamHaus’ IP addresses via a maliciously announced BGP route and subsequently used a Domain Name System (DNS) server at the IP to return a positive result for every SpamHaus Domain Name System-based Block List (DNSBL) query. This caused all SpamHaus customers querying the rogue nameserver to erroneously drop good connections.
Tags: Cisco Security, cisco sio, DDoS, distributed denial of service, dns, DNS reflection attack, spamhaus, TRAC
Recently, I spent time with some of our customers discussing recent security events and the threat landscape. As a leader for vulnerability handling, we often have to deliver news regarding our products that can cause significant disruption for patching and remediation. I always appreciate the time that customers take to provide feedback on our products and services.
The dominant topic during conversations with customers was the threat landscape, specifically the Distributed Denial of Service (DDoS) attacks that have and are currently taking place. While DDoS attacks are certainly not new territory for our industry, there were some interesting observations we discussed regarding the nature and impact of such activities. Read More »
Tags: DDoS, Denial of Service attack, distributed denial of service, security
By Biren Mehta, Senior Marketing Manager, SP Marketing in Routing and Switching, Cisco
Businesses and governments are bullish on the benefits that cloud computing promises to bring, but security concerns remain a key barrier to entry. Carrier networks provide critical infrastructure and services that governments and businesses depend on to operate every day. Services provided by carriers today are articulated on the mobile endpoint, the customer premise, the network and data center edge, and the public, private, and hybrid clouds. The sum of these is the “carrier cloud.” With cloud enabled service infrastructure, enterprise data and applications must move easily and securely through many clouds. That’s why the network that connects, protects, and moves data fiercely through cloud means more than ever. Read More »
Tags: carrier cloud, carrier network, cloud, DDoS, distributed denial of service, infrastructure, Service Provider