fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Microsoft: Azure Customer Hit By Record DDoS Attack In August

Microsoft: Azure Customer Hit By Record DDoS Attack In August

Microsoft has mitigated a record 2.4 Tbps (terabits per second) Distributed Denial-of-Service (DDoS) attack targeting a European Azure customer during the last week of August.

“This is 140 percent higher than 2020’s 1 Tbps attack and higher than any network volumetric event previously detected on Azure,” said Amir Dahan, a Senior Program Manager for Azure Networking, also describing it as a User Datagram Protocol (UDP) reflection attack.

Also Read: What Do 4 Messaging Apps Get From You? Read The iOS Privacy App Labels

The huge DDoS attack was launched using roughly 70,000 bots, mainly across the Asia-Pacific region (e.g., Malaysia, Vietnam, Taiwan, Japan, and China) and from the United States.

The attackers hit Azure’s infrastructure in terse bursts over a 10 minutes timeframe, each of these bursts reaching terabit volumes.

Dahan added that three attack peaks stood out, with the first reaching the maximum throughput at 2.4 Tbps and the subsequent going up to 0.55 Tbps and 1.7 Tbps.

The August DDoS attack came after Microsoft reported a 25 percent increase in attacks compared to 2020 Q4, with a decline in maximum volumetric throughput, from 1Tbps in 2020 Q3 to 625 Mbps in the first half of 2021.

Azure DDoS
2.4 Tbps Azure DDoS attack (Microsoft)

DDoS attacks are ramping up

Distributed Denial-of-Service (DDoS) attacks ramping up significantly in both complexity and volume matches the surge in internet activity after the onset of the current COVID-19 pandemic.

In early August, Alethea Toh, a Program Manager for Azure Networking, said that Microsoft recorded a sharp increase in daily DDoS attacks in the first six months of 2021, with a rise of 25% compared to Q4 2020.

During that time, the Azure DDoS Protection team mitigated more than 251,944 unique attacks targeting Azure’s global infrastructure in the first half of 2021.

Also Read: Key PDPA Amendments 2019/2020 You Should Know

DDoS attacks in 2021
DDoS attacks in 2021 (Microsoft)

The largest attack bandwidth that hit Azure’s infrastructure during the first six months of 2021 was 625 Gbps, almost half of a 1 Tbps DDoS attack mitigated in Q3 2020.

Despite this, the average attack targeting Azure until the end of June has increased by 30 percent, going up from 250 Gbps to 325 Gbps.

Azure customers in the United States (59%), Europe (19%), and East Asia (6%) regions are still the most heavily targeted mostly due to the high concentration of gaming industries and financial services in these regions.

Previous record-breaking and publicly reported DDoS attacks were a 2.3Tbps volumetric strike detected by Amazon Web Services Shield in Q1 2020 and a 21.8 million requests per second (rrps) application layer assault that hit the Russian internet giant Yandex last month.

Google also mitigated a 2.54 Tbps DDoS back in 2017 as revealed by Google Security Reliability Engineer Damian Menscher in 2020.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us