network background popup

DDoS Blog

Network Intelligence as a Service DOSarrest Traffic Analyzer

This month we launched a new exciting product called the DOSarrest Traffic Analyzer (DTA), taking an inhouse platform that has been essential in providing real time security analytics and actions for the DOSarrest network, and making it available for customers to help with their own networks. In a n[...]

Mar 21st 2019

More

Understanding Positive and Negative model Firewalls and WAFs

Web Application Firewalls are a vital component to a healthy security position.Traditional security appliances, like firewalls, are not designed to evaluate all of the intricacies of modern applications. Traditional firewalls evaluate network layer information, comparing traffic against a list of c[...]

Mar 1st 2019

More

How do you stop Scraping ?

How do you stop Scraping ? There are a number of ways to go about this including buying a subscription of scraping bots that have been identified and then applying an Access Control List(ACL) to prevent them from accessing your web properties. DOSarrest develops its own software to thwart any mali[...]

Oct 26th 2018

More

The Rise and Reasons for SSL based attacks

When one thinks of SSL and Encryption, the de facto assumption is that it automatically makes IT systems safer, and for the most part, this assumption is mostly true: SSL/TLS encryption has been instrumental in providing users the confidence for online data transactions over the last 20 years. Howev[...]

Sep 24th 2018

More

Stateless Single Sign-on

Building a single sign-on feature (SSO) for stateless applications can be challenging. Stateless applications are the new way of building web applications. Back in the day, web applications would hold a session for each logged in user; this led to many issues in the area of scalability, availability[...]

Jun 29th 2018

More

A Tale of Terabits: Don’t Forget about Mirai

The attacks generated by the latest amplification attack methodology, eponymously named Memcache (a popular open source distributed memory caching system), have so far generated the largest DDoS attacks to date. Within a one week period, Memcache has created two attacks registering at 1.3 Tbps and 1[...]

Mar 19th 2018

More

Machine Learning Model Selection

Got Machine Learning?Machine learning has been an industry buzz word for the last few years. More and more frequently it’s being sought after by potential customers. Unfortunately, machine learning is rarely sought as a solution to a particular problem, rather it is simply treated as an item on a[...]

Mar 10th 2018

More

Why Test your DDoS Defenses ?

The main reason to test your defenses is to obviously see if your website can withstand a DDoS attack. More importantly is, what happens if it doesn’t ? Are you subscribed to a fully managed service that is responsive enough to get things rectified in a few minutes or will it take hours and multip[...]

Mar 8th 2018

More

Old Vulnerabilities still available to be exploited ROBOT

Old Vulnerabilities still available to be exploited R.O.B.O.T: Return Of Bleichenbacher's Oracle Threat A joint study by researchers from Ruhr-Universitat Bochum/Hackmanit GmbH and Tripwire VERT has revealed a re-tread of an old vulnerability from 1998 that allows an attacker to leverage RSA decryp[...]

Dec 19th 2017

More

Throwing Caution to the Cloud

Throwing Caution to the Cloud? The Hidden Costs of Moving IT operations onto the Cloud As the CTO of a Cloud DDoS Protection Service, it would seem that I would be shooting myself in the foot by raising alarms about hidden costs in moving onto the cloud. After all, shouldn’t everything IT (inc[...]

Dec 13th 2017

More

DDoS Article Categories