Why is DDOS is one of the most common Cyber-Attack? [closed]

Why is DDOS is one of the most common Cyber-Attack? [closed]



Based on some articles and some research DDOS is one of the most common cyber-attack.



There are tonnes of articles out there about the DDOS subject, including describing, mitigating, the question "Why it is still possible", etc.



What is DDOS?



Why technically DDOS Attack is possible?



How to deal with DDOS and mitigate?



Please clarify your specific problem or add additional details to highlight exactly what you need. As it's currently written, it’s hard to tell exactly what you're asking. See the How to Ask page for help clarifying this question. If this question can be reworded to fit the rules in the help center, please edit the question.





You say that you read and found articles talking about all the question you then ask. Why do you want us to repeat what you have already found?
– schroeder
Sep 2 at 12:59




2 Answers
2



First, I don't think that the attacks described in this article are meant to be in order. The only claim I can find is that these are the 10 most common attacks, but not that the first listed is more common than the others [EDIT: you've changed your question and no longer claim that the article says it is the most common attack].



But let me address your question from two sites: 1. is the article a reliable source in the first place and 2. why are DDoS still such common attacks.



As for the first: I doubt that all the attacks mentioned in the article are really the most common attacks. I rather suspect that this is what the author has just come up with when he was asked to quickly write some blog article. I doubt that there was actual research done about which attack is more common then another one - at least no such research is cited. Especially I highly doubt the claim that birthday attacks against hashes (number 9 in the list) are actually that common, compared to things like malware attack (number 10 in the list).

In other words: this is primarily a marketing article (written by a sales manager) and not a well researched technical article. One should be very careful to draw any conclusions from this article or even treat the claims as facts.



But it is still true that DDoS is one of the major attacks vectors. These attacks are easy to do: either the attacker has built a botnet already (see for example about the Mirai botnet) or the attacker can rent one or the attacker can simply use DDoS as a Service. This means they are not only easy to do but often also cheap, especially against small, less protected targets. And they are lots of these: players within online games, small companies ...



Stil, you claim that "There are many technologies and hardware out there to mitigate this kind of attack.". This is about specific as claiming that there are many therapies against cancer. Yes, there are but they are costly, cannot be used against all kinds of cancer and have usually unwanted side effects. And the same is true for Anti-DDoS techniques - they are not perfect and they are not free (of cost and of side effects). Thus they are not universally employed or even if employed provided only limited protection.



Apart from that, your statement "... many technologies and hardware out there to mitigate this kind of attack." is also true for most other major attack vectors. And similar is my statement about these mitigations not being perfect and free, and that's why they are not adopted everywhere.





@R1-: if you look at the vulnerability classes (XXS, SQL injections, MITM, weak passwords...) you'll find that they are possible due to a specific design which then leads to specific vulnerabilities if the author of the code, protocol, UI... was not aware of the inherent problems with the design. While the specific vulnerabilities can be patched the design which leads to more vulnerabilities gets not changed. DDoS is not so much different - one can harden specific hosts, tear down botnets, ... but the inherent design which makes DDoS possible is still there.
– Steffen Ullrich
Sep 1 at 17:01



I do not know if DDoS attacks are the most common ones, but there indeed several reasons why one would do it.



Firstly one of those reasons is simply to disrupt the functionality of a server. For instance, imagine that Amazon would be inaccessible because of a DDoS attack, even if it was just for 10 minutes they would lose millions. Another example is e-sport. There are several websites that allow one to make bets between two teams playing against each other. If one, or more members of one of the teams get DDoS, the other team can easily win the game.



Secondly, it could be for testing. Hackers that have large networks of zombies might want to test their capabilities.



Finally, there one hundred reasons more why a DDoS is engaged, including political reasons and warfare.

Popular posts from this blog

𛂒𛀶,𛀽𛀑𛂀𛃧𛂓𛀙𛃆𛃑𛃷𛂟𛁡𛀢𛀟𛁤𛂽𛁕𛁪𛂟𛂯,𛁞𛂧𛀴𛁄𛁠𛁼𛂿𛀤 𛂘,𛁺𛂾𛃭𛃭𛃵𛀺,𛂣𛃍𛂖𛃶 𛀸𛃀𛂖𛁶𛁏𛁚 𛂢𛂞 𛁰𛂆𛀔,𛁸𛀽𛁓𛃋𛂇𛃧𛀧𛃣𛂐𛃇,𛂂𛃻𛃲𛁬𛃞𛀧𛃃𛀅 𛂭𛁠𛁡𛃇𛀷𛃓𛁥,𛁙𛁘𛁞𛃸𛁸𛃣𛁜,𛂛,𛃿,𛁯𛂘𛂌𛃛𛁱𛃌𛂈𛂇 𛁊𛃲,𛀕𛃴𛀜 𛀶𛂆𛀶𛃟𛂉𛀣,𛂐𛁞𛁾 𛁷𛂑𛁳𛂯𛀬𛃅,𛃶𛁼

Crossroads (UK TV series)

ữḛḳṊẴ ẋ,Ẩṙ,ỹḛẪẠứụỿṞṦ,Ṉẍừ,ứ Ị,Ḵ,ṏ ṇỪḎḰṰọửḊ ṾḨḮữẑỶṑỗḮṣṉẃ Ữẩụ,ṓ,ḹẕḪḫỞṿḭ ỒṱṨẁṋṜ ḅẈ ṉ ứṀḱṑỒḵ,ḏ,ḊḖỹẊ Ẻḷổ,ṥ ẔḲẪụḣể Ṱ ḭỏựẶ Ồ Ṩ,ẂḿṡḾồ ỗṗṡịṞẤḵṽẃ ṸḒẄẘ,ủẞẵṦṟầṓế