Network World reports that financial institutions regulated by the federal government must protect themselves from distributed denial of service (DDoS) attacks. These attacks can cripple their networks and impact large amounts of global users.
The decision was unexpected by the Federal Financial Institutions Examination Council (FFIEC) when it released a notice defining steps it required banks and other financial institutions to follow. These included IT risk assessment, traffic analysis, attack detection, and overall incident preparation.Continue Reading
Online hosting, including data center co-location, dedicated server hosting, cloud hosting, infrastructure as a service (IaaS), and shared hosting operations, supports hundreds of millions of websites and other associated Internet facing application services around the world. Research firms predict the total market for hosting is expected to grow from $76.9B in 2010 to about $210B in 2016.
Let’s consider a typical hosting company with $10M in annual revenue, a 99.99% SLA, and an SLA policy that provides 1 day of credit for a breach. A DDoS attack arrives against a customer on this network. This DDoS attack is over 100 Gbps in size so it easily exceeds the total network capacity. The attack lasts 48 hours. In this scenario, the staff will likely take up to 30 minutes to detect the attack manually. They then blackhole the destination IP, taking the customer down. The customer could be some online retail portal that has annual revenues of $5M and pays the hosting company $240,000 per year in fees. By being down for two days, the retail portal loses about $28,000. The hosting company loses $240,000 and about $27,000 in SLA credits. The total financial impact is $295,000.
Read more by downloading our new whitepaper:Continue Reading
Staminus, through its sister company Intreppid, hosts quite a few Minecraft servers! We have come to understand Minecraft and other games fairly well. There are certain techniques that can help game hosts reduce their DDoS mitigation cost. This particular technique leverages DNS SRV. It’s easy to implement, but also easy to circumvent.
DNS SRV is defined in RFC 2782 (http://tools.ietf.org/html/rfc2782). It allows a DNS entry to contain a protocol and port, making it easier to give users just a hostname, such as hub.game.com and have that DNS record contain the protocol (TCP) and port (25565) of the game, as well as a round robin list of backend hubs. In this case, the hubs can be BungeeCord, developed by our good friend MD5 over at SpigotMC (http://www.spigotmc.org/).
In recent months, we have seen an onslaught of DDoS attacks that leverage existing Internet technology to amplify the power and ultimate impact of the attack. I covered devastating NTP amplification in https://blog.staminus.net/mitigating-80-gbps-attacks-ntp-amplification-attacks-on-the-rise and powerful DNS amplification in https://blog.staminus.net/mitigation-of-attacks-exceeding-40-gbps. These were also covered by popular technical blog ARSTechnica and others. The basic idea behind amplified DDoS is:
- Widespread vulnerability
- Spoof the target
This technique is certainly not new. Historically, amplification has been used extensively in DDoS attacks. What is new, however, is that these attacks are now affecting more people worldwide than ever before. Coupled with the widespread adoption of the Internet we’ve seen in the past few years, this is a devastating combination.Continue Reading
Juniper recently did a case study on Staminus. The challenge many networks face today is to create a scalable, high-performance infrastructure to connect customers to security systems and protect them from 100Gbps and beyond DDoS attacks. To tackle this challenge, we selected Juniper for their array of high performance, high density, and scalable routing and switching platforms. The result: the Staminus global backbone and world-leading DDoS mitigation network.Continue Reading
Modern CDNs pride themselves on having as many nodes as possible. For example, they’ll throw up nodes in San Diego, Los Angeles, San Jose, San Francisco, Phoenix, and Las Vegas just for the south west United States. This is great and the work they put in is certainly admirable. It’s not easy nor cheap to bring up that many nodes. They then turn around and advertise that their latency is some presumably important percentage better than their competitors that have a few less nodes than them.
The below is a map that outlines the above explanation. It serves as a global example of a modern CDN. This is a relatively small CDN. Bigger CDNs include Akamai, Level3, and Limelight.Continue Reading
We have posted several articles on the new threat of NTP floods, the quadrupling of attacks in 2013, and the complexities of mitigating large attacks over 40 Gbps. These articles discuss attack bursts that can cripple global networks, but fail to discuss the financial impact of long term DDoS attacks. Mitigating an attack may be technologically feasible, but mitigating this attack for an extended period of time can have dramatic costs associated with it.Continue Reading
The recent wave of attacks on EA, Riot Games, Blizzard, Valve, and many others in the past few weeks have utilized a very uncommon attack technology. These attacks are similar in nature to DNS amplification attacks, which we wrote about back in September. Those attacks leveraged misconfigured DNS servers to launch very large attacks. We’re now faced with a similar situation.
Recent press releases demonstrate several major DDoS mitigation companies switching from an appliance-based method to a cloud-based method of DDoS mitigation.
“Arbor Networks has branched out into services, offering Arbor Cloud DDoS protection service – a global DDoS cleaning service which works in conjunction with on-premise Arbor Pravail equipment to provide multi-layered defence.” – Techday 
In a press release earlier this year , Radware also announced their entry into the cloud DDoS mitigation space.
Staminus has been providing cloud-based DDoS mitigation since 1998, and has continued to be at the forefront of this emerging technology. Let’s examine why Staminus has chosen a cloud-based method since the beginning.Continue Reading
Staminus is proud to announce its latest service offering: Managed Enterprise Backup, available for all dedicated servers! Managed backups allow our professional storage and security experts to manage all of your critical infrastructure backup needs.
Our managed backup system is built using Idera CDP and our Enterprise-grade SAN, capable of over 100,000 IOPS. Enterprise backup offers the following advantages over traditional archiving and copy procedures:
- Full System Backup: Data files, MySQL databases, file system structure, partition tables, and even the MBR are all backed up and verified daily
- Lightning Fast Restore: Enterprise-grade storage and gigabit networks mean your backup and restore processes are as efficient as possible
- 100% Managed: Idera CDP and our professional admin team handle 100% of the backup process, from setup to maintenance and monitoring
- Bare Metal Restore: In the event of a complete hardware failure, our team can provision an identical server and restore your machine to its last verified backup point
- 5 Recovery Points: Backups are archived on a rolling basis, meaning you can restore from any backup point within the previous 5 days from your initial restore request