Understanding DDoS Attacks

Most DDoS attacks are carried out by botnets, a “group of computers which have been infected by malware and have come under the control of a malicious user.” These machines are then hijacked and used against whatever service the attacker wants denied service.

While the computers that make up the botnet are infected by malware, it is important to note that if your WordPress website is DDoS’d, your website is not being infected with malware. The DDoS simply prevents normal traffic from getting to you. However, if your computer has already been compromised by a security flaw, your servers could become part of a botnet that carries out a DDoS attack on someone else.

Read more: DDoS vs DoS

DDoS is Not Hacking
As we said above, a DDoS attack is not an attempt at exploiting a vulnerability to gain access to your site. That’s more along the lines of a brute force attack. That’s when a particular party attempts to power their way into your site by repeated login attempts and password resets (to put it mildly).

DDoSers are not trying to get your passwords, take over your site, install malware, or use your computer for nefarious means. If you are being DDoS’d, you are being denied service. No one needs access to your server because they’re bombarding it via public channels. Not the backend like hacks and intrusions and brute force attacks.

Comments

Post a Comment

Popular posts from this blog

International English Language Testing System (IELTS)

 It has existed for almost 30 years and is one of the most widespread tests around the world. It aims to test a candidate's level of communication in English using four language skills with a real context: oral interpretation (30 minutes), text interpretation (60 minutes), writing (60 minutes) and conversation (15 minutes). Developed by the British Council in partnership with the University of Cambridge, it is applied in 16 cities in Brazil. See more:  Amazon Saheli Quiz Answers The score ranges from 0 (most basic) to 9 (most advanced). The score required by universities varies widely. However, there are reports that renowned institutions require a score higher than 8. It is also important to say that IELTS is applied in two formats: academic and general training. The academic is aimed at those people who are looking for opportunities to study master's, doctorate and postdoctoral studies abroad. General training, on the other hand, is focused on those who seek professional impr
Read more

Prevention and Recovery: How can security tools help?

 Heavy rains, floods, landslides, devastating fires, blackouts that left an entire state without electricity. Unfortunately, the list of disasters that occurred in Brazil during the year 2020 is long. Disasters appear unexpectedly, generating terrible results and, often, irreversible damage. Within a company's scenario, it is not much different. Just as nature is subject to disasters and risks, so are companies. Therefore, information security works to protect data and information within the business environment, through tools and actions that act in the prevention and recovery of data in disaster situations. In this article, you will understand how security tools can help in a disaster scenario, and why it is important to have complete and continuous actions to protect your company's data. There are two reasons why people underestimate threats and risks: ignorance and minimizing results. Although we are in the information age, the significant increase in the cost of data leaks
Read more

How to increase visibility and mitigate risks in the corporate network?

 Corporate networks are changing rapidly as companies embark on Digital Transformation, expanding on the Cloud, incorporating IoT devices and increasing wireless access. All of this increases the attack surface, making the environments more complex.  Protecting this new environment and blocking more sophisticated and intelligent cyber threats has been a major challenge for IT. Therefore, it is necessary to invest in tools capable of giving quick and accurate responses to any type of attack. The problem is that, as the context and visibility are compromised by the complexity of the environment, the IT team ends up having trouble screening many alerts at the same time.  As a result, response times are delayed and teams are often unable to accurately screen all alerts, allowing potential threats to go unnoticed. To deal with this new reality, companies need robust and efficient protection solutions, such as Gigamon's ThreatINSIGHT. It is the cloud's first native high-speed network
Read more