DoS - Denial of Service

• Disrupt the availability of services
  • Renders them inaccesabile
  • Preventing communication
  • Creating distractions
• Impacts network availability by overwhelming servers with traffic

DDoS - Distributed Denial of Service

• DoS but with many sources attacking a target
• Harder to mitage & more effective but requires more resources

Amplified DDoS Attacks

• Leverage servers or systems that generate a larger response to
• Commonly exploited protocols for amplification include
  • DNS
  • NTP
  • SNMP

Reflected DDoS Attacks

• Exploits servers or systems to reflect attack traffic owards the target
• Attacks send requests with spoofed source IP addresses to these servers, making it appear as if the target is the source of the requests
• The servers then respond to the target with amplified traffic, reflecting the attack back to the intended victim

DDoS Attacks and Targets

• Network DDos attacks
  • Targets entire networks
• Application DDoS
  • Targets specific applications
• Operational technology (OT) DDoS
  • Targets physical machines

Defense against DDoS

• Properly configuring public-facing servers
• Monitoring connections