Since the FBI decided to take down the DDoS-for-hire websites in December 2018. The cyber attacks rates dropped drastically.
The takedown campaign was so effective that the average distributed denial-of-service (DDoS) cyber attack size shrunk 85% in the fourth quarter of 2018, cybersecurity researchers say.
During this website eradicating campaign more than 15 popular sites that were part of an international crackdown, DDoS- for hire, association were shut down.
In the cyber world, hackers use such websites to pay to launch DDoS cyber attacks against specific targets and take them offline.
This kind of approach is very convenable less-skilled hackers that want to launch devastating cyber attacks against other victim websites.
Even if the rates are now at a historical low point, these malicious services are still advertised in Dark Web forums and marketplaces; some of the sites use the excuse to still offer for purchase such services because they can be used to legitimately test network resilience but in fact they make life easier for black hat hackers that want to launch DDoS attacks against an existing network of infected devices.
Remember everything can be hacked. In order to stay away from any threats related to the cyber world, we recommend the install of antivirus for Windows or antivirus for Mac on every device that you own, depending on which OS your device is running. If you are a company, it is also recommended to hire every year a specialized cybersecurity company that will run annual tests on your company’s network. These tests include penetration testing and ethical hacking tests;
If we look at a recently released cybersecurity report we will see that the number of DDoS attacks fell nearly 11% year-over-year, and the maximum attack size decreased by nearly 24%. The biggest difference registered was a drop with 85% at the final of the last year.
All these sites with malicious service for hire option used a tactic named bit-and-piece, according to the cybersecurity experts. By using this way, cyber attacks managed to avoid detection by injecting small pieces of malicious code into legitimate traffic across hundreds of IP prefixes. These small bits of junk, are avoided by the cybersecurity solutions that are usually trained to detect large traffic spikes.
In the past, this method alone caused almost all of the DDoS cyber attacks.
The main difference here is that unlike a typical DDoS attack, in which a hacker identifies and targets a particular IP address, bit-and-piece attacks are spread across multiple IP addresses on the same prefix. The most popular bit-and-piece attack vector is SSDP amplification cyber attack that was seen an increase of 91.2% quarter-over-quarter. At its all-time high, it managed to make up 48.3% of DDoS attacks overall.
SSDP Modus operandi:
During an SSDP amplification, cyber attack hackers will first scan exploitable devices and use botnets to send UDP packets with a target’s spoofed IP address to UDP Port 1900 of all vulnerable devices.
You should also know that In the world of DDoS cyber attacks, hackers really study their targets, in order for some attacks to be more effective.
For the future, predictions are not good, cybersecurity experts are saying that DDoS-for-hire websites are sure to make a comeback.
We would continue to monitor this cybersecurity problem. Meanwhile, users should keep a keen eye out for any cyber attacks. Remember to use an antivirus for Windows or antivirus for Mac in every device that you own, depending on which OS your machine is running, If you are a company we recommend to hire every year a specialized cybersecurity company that will run annual tests on your company’s network, tests like this include: penetration testing and ethical hacking.