Tag Archives: DDOS

ICANN: Indonesia’s PANDI Contributes to Responsive and Resilient Internet with First L-Root Instance in Indonesia

ICANN logoThe first L-Root instance in Indonesia has been successfully installed in Jakarta, increasing the Domain Name System’s (DNS) overall fault tolerance and its resilience against certain types of cyber threats, such as Distributed Denial of Service (DDoS) attacks.

The launch of the L-Root server node is a joint operation between ICANN and Pengelola Nama Domain Internet Indonesia (PANDI), Indonesia’s Country Code Top Level Domain Operator of .id, who supplied the equipment necessary for the installation of the new L-Root node.

“We are very pleased to host the L-Root which is the third root server in Indonesia, in addition to the existing I- and F-Root servers. It is important to improve the reliability, speed and resilience of the Internet in our country,” said PANDI Chairman, Andi Budimansyah.

“The successful installation of Indonesia’s first L-Root instance is a historical moment made possible with ICANN‘s collaboration with PANDI, as well as the multi-stakeholder community of Indonesia, including the Indonesian government that has been a close partner of ICANN in the region. This is a testimony of ICANN‘s commitment to Indonesia and we look forward to bringing in more L-Root instances into the country,” said Kuek Yu-Chuang, ICANN Vice President and Managing Director for Asia Pacific.

This cooperation is an effort to enhance the security, stability and resiliency to Indonesian Internet users and reduce the response time experienced when making some DNS queries.

Bambang Heru Tjahjono, Director General of the Indonesia Ministry of Communication and Information Technology (MCIT) said, “The Ministry of Communication & Information Technology highly appreciate any activities related to the ICT programs that improve the reliability of internet and internet governance in Indonesia. One of our main objectives is to strengthen the national DNS. With an L-Root instance in Indonesia, and with closer cooperation with ICANN, Indonesia’s Internet governance is expected to be increasingly well-organized and the security, reliability and integrity of the operation of the Internet in Indonesia will significantly improve.”

There are 13 “root” DNS servers, identified by the letters A through M — the “L” root server operated by ICANN being one. Computers typically communicate with each other using numeric addresses, while humans find it easier to use and remember names (for instance, users typically remember the domain name “ICANN.ORG” more easily than the Internet Protocol address, 2620:0:2d0:200::7). The DNS translates names into addresses and the root servers provide the pointers to the server for top-level domains (the last part of domain names, for example, “ORG” in “ICANN.ORG”).

Spreading this root information out geographically by duplicating the root servers leads to a resilient, dispersed system that reduces the risk of being taken offline by a problem or attack and reduces the time it takes to look up names on the Internet.

For more information about L-root, please visit www.dns.icann.org/.

This ICANN news release was sourced from:
https://www.icann.org/resources/press-material/release-2015-07-01-en

Europe Leads With IPv6 Adoption, While DDoS Attacks Decline: Akamai

Europe continues to lead in IPV6 adoption with eight of the top ten countries, the latest Akamai State of the Internet report finds while DDoS attacks decrease by 20 percent quarter-over-quarter, but rise 27 percent year-over-year.The report, covering the first quarter of 2014, found more than 795 million unique IPv4 addresses from 240 countries/regions connected to the Akamai Intelligent Platform. This was 1.6 percent more than in the fourth quarter of 2013 and 7.8 percent more than a year prior. Quarterly growth was seen in six of the top 10 countries/regions. Brazil was again a standout with 12 percent and 50 percent of quarterly and yearly growth, respectively.European countries continued to lead in IPv6 adoption, taking eight of the top ten slots. Belgium grew nearly 200 percent quarter-over-quarter, jumping to first place with 14 percent of its traffic over IPv6. The United States and Peru were the only two countries from the Americas within the top 10, while Japan fell out of the top 10, leaving the Asia Pacific region unrepresented within the group.Looking at attack traffic and security, the report found the concentration of attacks decreased significantly as compared to the fourth quarter of 2013, with the top ten countries/regions originating 75 percent of observed attacks, down from 88 percent in the prior quarter.On Distributed Denial of Service (DDoS) attack traffic, the report found most regions of the world saw a decline in reported DDoS attacks during the first quarter of 2014. The Americas continued to account for approximately 49 percent (139) of all attacks, followed by the Asia Pacific region with 31 percent (87) of attacks and Europe, Middle East and Africa (EMEA) receiving the remaining 20 percent (57) of DDoS traffic. The enterprise sector saw a 49 percent quarter-over-quarter reduction in attack traffic, while public sector attack traffic grew by 34 percent, primarily attributable to attacks against government targets within Singapore.The report also covers global mobile connectivity (South Korea was fastest with average download speeds of 14.7 Mbps), 4K readiness (globally, 11 percent of connections were at speeds of 15 Mbps or above, fast enough to stream 4K TV, in the first quarter) and global average connection speeds and global broadband connectivity (global average connection speed climbed 1.8 percent to continue its steady growth over recent quarters, and while global average peak connection speeds dropped 8.6 percent in the first quarter of 2014, year-over-year trends remained positive with a 13 percent increase).For more information, see the Akamai news release below, or follow the link to the Akamai site where there are links to download further information. The news release was sourced from: www.akamai.com/html/about/press/releases/2014/press-062614.html.Akamai Releases First Quarter 2014 ‘State of the Internet’ Report

  • Global average connection speeds up 1.8%, while global average peak connection speeds drop 8.6%
  • Europe continues to lead in IPV6 adoption with eight of the top 10 countries
  • DDoS attacks decrease by 20% quarter-over-quarter, but rise 27% year-over-year
  • 11% of global connections are “4K ready”

Akamai Technologies, Inc., the leading provider of cloud services for delivering, optimizing and securing online content and business applications, today (26 June) released its First Quarter, 2014 State of the Internet Report. Based on data gathered from the Akamai Intelligent Platform™, the report provides insight into key global statistics such as connection speeds, overall attack traffic, network connectivity/availability issues, and traffic patterns across leading Web properties and digital media providers.The report also includes insight into NTP reflection and WordPress XML-RPC pingback attacks, the status of IPv4 exhaustion and IPv6 adoption, and global 4K readiness.Data and graphics from the First Quarter, 2014 State of the Internet Report can be found on the Akamai State of the Internet site and through the Akamai State of the Internet app for iPads and iPhones.Highlights from Akamai’s First Quarter, 2014 State of the Internet Report:Global Average Connection Speeds and Global Broadband Connectivity
The global average connection speed climbed 1.8% to continue its steady growth over recent quarters, and while global average peak connection speeds dropped 8.6% in the first quarter of 2014, year-over-year trends remained positive with a 13% increase.With the global average connection speed at 3.9 Mbps as of quarter-end, it is expected that the measurement will surpass the 4 Mbps broadband threshold next quarter. In the first quarter, nine of the top 10 countries/regions saw increases in average connection speeds, including an 8% jump for first place South Korea (23.6 Mbps), which is now 9 Mbps ahead of second place Japan (14.6 Mbps). Of the top 10 countries, only the Czech Republic experienced a decrease in average connection speed, remaining in eighth place with a 1.9% drop.With the global average connection speed at 3.9 Mbps as of quarter-end, it is expected that the measurement will surpass the 4 Mbps broadband threshold next quarter. In the first quarter, nine of the top 10 countries/regions saw increases in average connection speeds, including an 8% jump for first place South Korea (23.6 Mbps), which is now 9 Mbps ahead of second place Japan (14.6 Mbps). Of the top 10 countries, only the Czech Republic experienced a decrease in average connection speed, remaining in eighth place with a 1.9% drop.Year-over-year, global average connection speeds grew by 24% and increases were seen in all but seven countries/regions. Growth ranged from a low of 0.7% in Panama (2.6 Mbps) to a high of 196% in Sudan (3.2 Mbps). South Korea showed a 145% increase from the first quarter of 2013, a growth rate that nearly tripled Ireland’s 47% increase, which ranked second in year-over-year growth among the top 10.Increases in global average peak connection speeds during the first quarter of 2014 ranged from 0.2% in Colombia (16.8 Mbps) to 76% in Sudan (13.4 Mbps). A total of 43 qualifying countries/regions saw quarter-over-quarter increases in their average peak connection speeds, whereas 92 qualifying countries/regions saw declines.The year-over-year story remains positive. Since the first quarter of 2013, global average peak connection speeds increased 13%. Yearly growth rates among the top 10 countries/regions ranged from 0.3% in Hong Kong (66 Mbps) to an impressive 206% in Uruguay (45.4 Mbps).Global high broadband (>10 Mbps) adoption rates in the first quarter improved by 9.4% quarter-over-quarter, climbing above the 20% mark for the first time, to 21%. Once again, all of the countries/regions in the top 10 had high broadband adoption rates of 30%, with South Korea (77%), Japan (54%) and Switzerland (45%) topping the list. The year-over-year growth rate was 65%, with six of the top 10 countries/regions seeing increases of 50% or more.The global broadband (>4 Mbps) adoption rate grew a nominal 1.7% from the fourth quarter of 2013 to reach 56% in the first quarter of 2014. Of the countries/regions that qualified, 76 had higher broadband adoption rates this quarter – growth ranged from 0.2% in Canada (82% adoption) to 1,208% in Sudan (21% adoption). Since the first quarter of 2013, global broadband adoption rates grew by 24%, with extremely large year-over-year upticks seen in Kenya (1,100% to 4.9% adoption), Uruguay (3,298% to 34% adoption) and Sudan (5,926%).”While there continues to be room for improvement in high broadband adoption and average peak connection speeds in some areas of the world, the trends we’re seeing remain very positive,” said David Belson, the author of the report. “Steady year-over-year growth suggests that a strong, global foundation is being built for the enjoyment of next generation content and services like 4K video and increasingly connected homes and offices, and that connectivity will continue to evolve to support the growing demands these emerging technologies will place on the Internet.”4K Readiness
With 4K (Ultra HD) adaptive bitrate streams generally requiring between 10 – 20 Mbps of bandwidth, the new “4K Readiness” metric presented for the first time in the First Quarter, 2014 State of the Internet Report highlights the percentage of connections to Akamai at speeds above 15 Mbps, with the goal of identifying candidate geographies most likely to be able to sustain such streams. The findings do not account for other “readiness” factors, including availability of 4K-encoded content or 4K-capable televisions and players.Globally, 11% of connections were at speeds of 15 Mbps or above in the first quarter. Seven of the top 10 countries/regions on the 4K readiness list overlapped with those on the global high broadband connectivity list. South Korea led the list with 60% 4K readiness while Japan had 32% of its connections at that level in the first quarter. Of the top 10, the Czech Republic had the lowest level of 4K readiness with 17%. Overall, 47 countries/regions qualified for inclusion.Attack Traffic and Security
Akamai maintains a distributed set of unadvertised agents deployed across the Internet to log connection attempts that the company classifies as attack traffic. Based on the data collected by these agents, Akamai is able to identify the top countries from which attack traffic originates, as well as the top ports targeted by these attacks. It is important to note, however, that the originating country as identified by the source IP address may not represent the nation in which an attacker resides.During the first quarter of 2014, Akamai observed attack traffic originating from 194 unique countries/regions – six more than the fourth quarter of 2013. China was again responsible for originating the most attacks, but dropped slightly from 43% in the fourth quarter of 2013 to 41% in the first quarter of 2014. The United States followed in second place, but also saw a decline from 19% to 11%, and Indonesia saw a slight uptick from 5.7% to 6.8% to secure third place. Overall, the concentration of attacks decreased significantly as compared to the fourth quarter of 2013, with the top 10 countries/regions originating 75% of observed attacks, down from 88% in the prior quarter.Port 445 (Microsoft-DS) remained the most targeted port in the first quarter of 2014, but the associated attack traffic volume was down to 14% of observed attack traffic (from 30% in the third quarter of 2013). Conversely, Port 5000 (Universal Plug & Play/UPnP) saw a significant increase during the quarter – from less than a tenth of a percent in the fourth quarter of 2013 to 12% this quarter – an increase of more than 100 times. Port 23 (Telnet) ranked third with 8.7% of observed attack traffic.Distributed Denial of Service (DDoS) Attack Traffic
In addition to observations on attack traffic, the State of the Internet Report includes insight into DDoS attacks based on reports from Akamai’s customers. The number of DDoS attacks reported in the first quarter of 2014 declined to 283 from 346 in the last quarter of 2013. This represents a 20% decrease quarter-over-quarter and a 27% increase year-over-year.Most regions of the world saw a decline in reported DDoS attacks during the first quarter of 2014. The Americas continued to account for approximately 49% (139) of all attacks, followed by the Asia Pacific region with 31% (87) of attacks and Europe, Middle East and Africa (EMEA) receiving the remaining 20% (57) of DDoS traffic. The enterprise sector saw a 49% quarter-over-quarter reduction in attack traffic, while public sector attack traffic grew by 34%, primarily attributable to attacks against government targets within Singapore.IPv4 and IPv6
In the first quarter of 2014, more than 795 million unique IPv4 addresses from 240 countries/regions connected to the Akamai Intelligent Platform. This was 1.6% more than in the fourth quarter of 2013 and 7.8% more than a year prior. Quarterly growth was seen in six of the top 10 countries/regions. Brazil was again a standout with 12% and 50% of quarterly and yearly growth, respectively.European countries continued to lead in IPv6 adoption, taking eight of the top 10 slots. Belgium grew nearly 200% quarter-over-quarter, jumping to first place with 14% of its traffic over IPv6. The United States and Peru were the only two countries from the Americas within the top 10, while Japan fell out of the top 10, leaving the Asia Pacific region unrepresented within the group.The report also lists the top 20 network providers based on their number of IPv6 requests made to Akamai during the first quarter. The highest request volumes came from cable and wireless providers in the United States. Verizon Wireless had the highest percentage (45%) of requests over IPv6, while 12 other providers also had more than 10% of their requests to Akamai over IPv6 during the first quarter. European providers were also heavily represented, including three providers from Belgium with strong showings. KDDI (Japan) and Telekom Malaysia were the only two providers to represent the Asia Pacific region, while Telefonica del Peru was the only South American provider on the list.Mobile Connectivity
In the first quarter of 2014, average mobile connection speeds ranged from 1.0 Mbps in Argentina to 14.7 Mbps in South Korea. Though the latter was the only country/region with average mobile connection speeds above the 10 Mbps high-broadband threshold, 20 countries/regions had average connection speeds above the 4 Mbps threshold. A total of 56 countries/regions qualified for inclusion in the mobile section. Note that starting with the First Quarter, 2014 State of the Internet Report, mobile connectivity is being aggregated at a country level, rather than at a provider level.Average peak mobile connection speeds among qualifying countries spanned a broad range, from 114.2 Mbps in Australia down to just 5.0 Mbps in Iran. In total, 43 countries showed average peak connection speeds above 10 Mbps.The State of the Internet Report now includes a broadband adoption statistic within the Mobile Connectivity section. This quarter, Ukraine had the highest level of mobile broadband adoption, with 89% of mobile connections to Akamai from the country at speeds above 4 Mbps.About the Akamai State of the Internet Report
Each quarter, Akamai publishes a “State of the Internet” report. This report includes data gathered from across the Akamai Intelligent Platform about attack traffic, broadband adoption, mobile connectivity and other relevant topics concerning the Internet and its usage, as well as trends seen in this data over time. To learn more and to access the archive of past reports, please visit www.akamai.com/stateoftheinternet. To download the figures from the First Quarter, 2014 State of the Internet Report, please visit: http://wwwns.akamai.com/soti/soti_q114_figures.zip.About Akamai
Akamai® is the leading provider of cloud services for delivering, optimizing and securing online content and business applications. At the core of the Company’s solutions is the Akamai Intelligent Platform™ providing extensive reach, coupled with first class reliability, security, visibility and expertise. Akamai removes the complexities of connecting the increasingly mobile world, supporting 24/7 consumer demand, and enabling enterprises to securely leverage the cloud. To learn more about how Akamai is accelerating the pace of innovation in a hyperconnected world, please visit www.akamai.com or blogs.akamai.com, and follow @Akamai on Twitter.

Recommendations for Adding Cybersecurity Intelligence to the Smart Grid Josh Ray, Verisign

Verisign logoOver the last few years, there has been an increased effort to modernize the U.S. electric grid. Building a “Smart Grid” has been central in the effort to help utilities better manage their resources, minimize power outages and reduce energy consumption. However, adding more electronic devices and sensors to the grid’s network has made it a prime target of cyberattacks, like Distributed Denial of Service (DDoS) attacks, which if successful, could cause wide-spread disruption of services affecting many other sectors.

According to a recent ICS-CERT incident response from The United States Computer Emergency Readiness Team (US-CERT), an organization within the Department of Homeland Security’s National Protection and Programs Directorate, of the 257 reported incidents ICS-CERT collected in 2013, 56 percent, or 151 incidents, occurred in the energy sector, which exceeded all incidents reported in the other sectors combined. Keep in mind that because reporting of cyber incidents is done on a voluntary basis, ICS-CERT estimates that many more incidents occurred but were not reported.

As new, advanced cyberattacks on public utilities are expected to grow in frequency, what should these organizations be doing to prepare? Below are recommendations for a new approach to cybersecurity for critical infrastructure based on recent research from Verisign iDefense Security Intelligence Services:

 

  1. Build security solutions into the front-end design: It is important that the energy sector build security solutions into the front-end design, manufacturing and deployment of Smart Grid systems and components. And as the roll out of the Smart Grid continues to take place, the energy sector will need to address legacy equipment issues and access control usage, while continuing to tighten its security policies and procedures.
  2. Examine the use of remote connections: While threat mitigation is an ongoing concern, organizations managing critical infrastructure will also need to examine the use of remote connections to their enterprises and determine how to best manage user access from the perspective of the least-privilege principle for access control.
  3. Frequently monitor for vulnerabilities and have a mitigation plan in place: The energy sector should frequently monitor their systems and networks for vulnerabilities, and embrace a full-scope risk management program for both the Information Technology (IT) and Industrial Control Systems (ICS) sides of the house. This will be critical for the success of their security programs.
  4. Protect availability of critical systems:  It is imperative that public utilities have a multilayered mitigation strategy in place to restore services quickly in the event of a DDoS attack. Due to the critical nature of smart grid networks, a hybrid approach to DDoS mitigation, which includes a dedicated appliance on the network, layered with a cloud-based DDoS solution to provide real-time adaptive mitigation that protects against both high-volume and targeted application-level DDoS attacks, may provide the most comprehensive protection.
  5. Invest in third-party expertise: Working with third-party security providers and experts can provide energy/utility companies with powerful tools to combat today’s cybersecurity risks as well as help them develop advanced threat intelligence capabilities to proactively protect their assets. Given what is at stake, all energy companies should consider making this investment.

To learn more about cybersecurity intelligence or DDoS protection services, visit www.VerisignInc.com/cybersecurity.

This article by Verisign’s Josh Ray was sourced with permission from the Verisign blog at:
blogs.verisigninc.com/blog/entry/recommendations_for_adding_cybersecurity_intelligence

Neustar 2014 ‘DDoS Attacks and Impact Report’ Finds Unpredictable DDoS Landscape

Neustar logo[news release] Neustar, Inc. … today (22/4) released its third annual “DDoS Attacks and Impacts Report,” delivering key insights on Distributed Denial of Service (DDoS) attacks and the business impact of these incidents. The survey reveals that DDoS attacks are now more unpredictable and damaging than ever, crippling websites, shutting down operations, and costing millions of dollars in downtime, customer support and brand damage. Nearly twice as many businesses surveyed suffered a DDoS attack last year and more than 40 percent estimated DDoS losses at more than $1 million per day.

Other key findings include a growing trend toward quicker, more concentrated attacks, suggesting a spurt in “smokescreening” – where criminals use DDoS attacks to distract IT staff while inserting malware to breach bank accounts and customer data.  In fact, 49 percent of businesses who suffered a DDoS attack and a breach in 2013 reported that a virus or malware was installed or activated and 55 percent of DDoS targets reported that they were also victims of theft. Attackers stole funds, customer data and intellectual property.

“DDoS attacks create an ‘all hands on deck’ mentality, and the potential for damage is high as criminals take advantage of the distraction to grab and clone private data to tap into funds, intellectual property and more,” said Rodney Joffe, senior vice president and senior technologist at Neustar. “Businesses should look out for shorter, more intense attacks without the traditionally expected extortion or policy demands. It is critical that they protect themselves by dedicating staff to watch entry systems during attacks, making sure everything is patched and having dedicated DDoS protection.”

Additional insights from the survey include:

  • Almost 90 percent of companies attacked were hit repeatedly
  • Larger attacks almost tripled. The number of attacks between 1-5 Gbps in size grew by 150 percent
  • DDoS attacks are consuming more manpower. Attacks requiring more than 10 people to put out the fire more than doubled compared to 2012
  • The costs of DDoS attacks were not only higher, but were felt more widely across the enterprise. Non-IT/security departments absorbed more than 50 percent of attack-related costs and customer support felt the impact most acutely at 63 percent of companies
  • There are now very few companies (under five percent) with no DDoS protection in place. Of the vast majority with protection, most still use traditional solutions like firewalls, switches and routers

Neustar surveyed nearly 450 North American companies in the financial services, technology, retail, government/public sector, health care, energy, telecommunications, e-commerce, Internet services and media industries. The full report, including comprehensive results from the survey and best practices from Neustar’s DDoS experts, may be found here.

 

###

 About Neustar

Neustar, Inc. (NYSE:NSR) is the first real-time provider of cloud-based information services and data analytics, enabling marketing and IT security professionals to promote and protect their businesses. With a commitment to privacy and neutrality, Neustar operates complex data registries and uses its expertise to deliver actionable, data-driven insights that help clients make high-value business decisions in real time, one customer interaction at a time. More information is available at www.neustar.biz.

This Neustar news release was sourced from:
www.neustar.biz/about-us/news-room/press-releases/2014/neustar-2014-ddos-attacks-and-impact-report-finds-unpredictable-ddos-landscape

Reported DDoS Attack Traffic Grows 75% In One Year; Europe Leads In IPv6 Adoption: Akamai

Akamai Technologies logoAkamai Technologies released their Fourth Quarter 2013 State of the Internet Report that found reported DDoS attack traffic grew by 23 percent quarter-over-quarter and 75 percent from fourth quarter of 2012. Other main findings were the average connection speeds in the top ten countries/regions is now at or above the “high broadband” threshold of ten Mbps and that global average peak connection speed experiences 38 percent growth in 2013. Hong Kong topped the list with the highest average peak connection speed of 68 Mbps.

When looking at Distributed Denial of Service (DDoS) attack traffic, the State of the Internet Report included insights into DDoS attacks based on reports from Akamai’s customers. Although the number of DDoS attacks reported by Akamai customers declined from the second quarter (318) to the third quarter of 2013 (281), reported attacks increased 23 percent from the third quarter to the fourth quarter (346) of the same year. In total, customers reported 1,153 DDoS attacks in 2013 – a 50 percent increase from 768 in 2012.

Enterprise and commerce continued to be the industries targeted most frequently by the reported DDoS attacks in the fourth quarter, at 159 and 82 attacks, respectively. Together, they account for just under 70 percent of the reported attacks during the quarter, while slightly less than half of the total attacks were reported by customers in the Americas.

In the Third Quarter, 2013 State of the Internet Report, Akamai started looking at the likelihood of a company experiencing repeat attacks after an initial DDoS attack. In the third quarter, Akamai reported this as a one in four probability. In the fourth quarter of 2013, the chance of a repeated attack increased significantly to just over one in three (35%), meaning that 56 of the 162 organisations that were attacked suffered repeated threats throughout the quarter.

In February, Akamai acquired Prolexic Technologies, Inc., a company that provides cloud-based security solutions for protecting data centers and enterprise IP applications from DDoS attacks. As a result, future State of the Internet Reports will include insights using additional observations from Prolexic’s Quarterly DDoS Attack Report. Note that unless otherwise specified, observations included in the respective reports are based on separate and distinct sets of DDoS attacks.

On IPv6 adoption, the United States and selected European countries continue to lead the world in terms of IPv6 adoption, with Europe again having seven of the top ten leading countries. Japan and Peru are the only countries from their respective regions to make the top ten list. Double-digit percentage growth rates were seen in eight of the top ten countries, with Peru and Germany seeing the largest increases, at 41 percent and 43 percent, respectively. The lowest rate of growth was seen in Romania, which increased by nearly eight percent quarter-over-quarter.

Colleges and universities continue to be early adopters of IPv6, with moderate to large quarterly increases in adoption rates seen across most of the top 10. Iowa State, the University of Vienna Austria and the University of Saskatchewan all saw double-digit quarterly percentage increases.

On global average broadband connection speeds, the report found they continued to improve, with a quarterly increase of 5.5 percent, reaching 3.8 Mbps. Despite this improvement, half of the countries/regions listed among the top ten in global average connection speeds – including the top four countries/regions – actually saw nominal declines quarter–over–quarter, ranging from a loss of 0.7 percent in the Netherlands to a drop of 6.7 percent in Latvia. Despite a 1.1 percent decline in average connection speed, South Korea held the top spot from quarter to quarter, reporting the highest average connection speed of 21.9 Mbps.

On mobile connectivity, in the fourth quarter of 2013, average connection speeds on surveyed mobile network providers ranged from a high of 8.9 Mbps (Russian mobile provider RU-1) down to a low of 0.6 Mbps (mobile provider ZA-1 in South Africa). The high is down just slightly from the 9.5 Mbps reported in the third quarter of 2013.

To check out more information, see the Akamai Technologies news release at:
www.akamai.com/html/about/press/releases/2014/press-042314.html

.CN Hit By DDoS Attack

A Distributed Denial of Service (DDoS) attack hit .cn websites on 25 August, meaning many “were either inaccessible or extremely slow, including the popular Twitter-like Sina Weibo, Amazon.cn, and the Bank of China,” according to a Tech In Asia report.

Following the attack, the China Internet Network Information Center (CNNIC) said service is being resumed slowly.

Tech In Asia continued, “about 30 minutes after midnight on Sunday, the attacks crippled the registry for more than 13 hours until 2 p.m.. Then, just two hours later at around 4 p.m., another wave of attacks struck. CNNIC did not specify where the attacks originated from, but it did say it was the largest denial of service attack it’s ever underwent. As of the latest announcement, the registry is still recovering.”

PIR Survey Reveals That Most Americans Are Uninformed About DDoS Attacks

PIR .ORG logo[news release] Whether motivated by an extreme form of free expression or criminal intent, distributed denial-of-service attacks (DDoS attacks) are increasingly commonplace worldwide. Yet there remains a universal misunderstanding amongst the general public of what to do in the event of a DDoS attack.  According to a survey commissioned by Public Interest Registry (PIR) – the not-for-profit operator of the .ORG domain – to better assess Americans’ basic understanding of Internet and network attacks, 85 percent of Americans are uninformed or ill-equipped to deal with a DDoS attack. Moreover, only 17 percent could correctly identify what the acronym DDoS stood for with 77 percent admitting that they had no idea.

Through this survey, it was ultimately revealed that across the board there is a lack of understanding about DDoS attacks despite their increasing frequency. When asked whom should be the first point of call when one experiences a DDoS attack, respondents’ answers varied –a select number correctly identified a DNS Service Provider while the large majority of people said their first point of call would be their local electronic department store, a technology publication, their spouse or children, Google or the police, to name a few.

Additional findings from the survey revealed:

  • Overall, the higher the household income, the more knowledgeable Americans were on the subject. Regional differences (e.g. East Coast vs. Midwest) were marginal.
  • Surprisingly, education levels are not a factor. Respondents with college degrees were no more likely than those who did not complete their degree to correctly identify DDoS or know what to do if an attack ever happened to them.
  • On a whole, men are more informed on the subject than women with 24 percent correctly identifying DDoS as a type of network attack in comparison to their female counterparts’ 10 percent. Additionally, 20 percent of men compared to 11 percent of women would know what to do in the event of a DDoS attack.
  • In the event of a DDoS attack, only 36 percent of Americans would know where to turn to for advice. Of that number, nearly half of Americans 65-years-old and up would know where to seek help compared to only 28 percent of 18-24 year-olds.

“At PIR, we pride ourselves on being a name that people trust, and we’re committed to helping strengthen the safety and security of the Internet by providing the information people need to protect themselves from these attacks,” said Brian Cute, CEO of Public Interest Registry. “These findings only show that there is real misunderstanding about DDoS across all ages and levels of expertise, so we must do our part to engage with other Internet service providers and registry operators worldwide to discuss how we can be better prepared and prevent future attacks.  It’s in all of our interests – public and individual – to ensure that the Internet remains a safe and protected place for all users.”

In an effort to fuel the discussion about online attacks amongst, organizations and individuals, Public Interest Registry and NY Tech will be hosting “Mitigating DDoS Attacks: Best Practices for an Evolving Threat Landscape” – a forum on December 5 to help generate a thoughtful conversation on how Internet users can protect ourselves from DDoS attacks. Participants in the forum are experts from Google, Symantec, Afilias, Neustar, EFF, MAAWG, and De Natris Consult. For more information about the event (including registration and remote participation details) and the survey, please visit pir.org/why/security/ddos.

This PIR news release was sourced from:
pir.org/pr/2012/ddos

Go Daddy Suffers Major Outage With Possible Hack Attack

The world’s largest web hosting provider and domain name registrar Go Daddy found its web hosting services down and email not going through Monday afternoon after an apparent failure of the company’s Domain Name Service servers, possibly due to a hacker attack.Go Daddy announced they were having problems at 10:25 US Pacific Times saying customers were experiencing “intermittent outages” and then later at 14:43 they advised that “at no time was any sensitive customer information, such as credit card data, passwords or names and addresses, compromised.”While it seems services were restored Monday evening, it is not known, publicly at least, what caused services to go down. There were claims Anonymous, through the Twitter handles @AnonymousOwn2r and @AnonymousOwn3r, had caused the outage with a distributed denial-of-service attack (DDoS) although this has not been substantiated with Go Daddy spokespeople neither confirming or denying the claim.The WHIR reported that “while the motive is unclear at this point, Anonymous has tweeted that users of Go Daddy support censorship of the Internet, possibly referring to its support of SOPA and PIPA earlier this year. @AnonymousOwn3r has taken sole responsibility for the attack.”To temporarily cope with the outage, Wired reports that “on Monday afternoon — about four hours after it was knocked offline — Go Daddy’s administrators made a change to the company’s DNS records, indicating that they were shifting control of the servers from Go Daddy to VeriSign.”Go Daddy manages around five million web hosting accounts but there is no information as to how many were affected.

ICANN: New L-Root DNS Server Enhances DNS Fault Tolerance and Resistance to DDoS Attacks

ICANN logoA new instance of L-Root has been installed in Odessa, Ukraine, increasing the Domain Name System’s (DNS) overall fault tolerance and its resilience against certain types of cyber threats, such as Distributed Denial of Service (DDoS) attacks.

The launch of the server node is a joint operation between ICANN and Ukrainian domain registry Hostmaster. DNS Root Servers form a key part of the Internet infrastructure that contribute to the global security and stability of the DNS.

“Odessa is one of the largest Ukrainian cities, with one of the highest Internet penetration rates in the country,” said Dmitry Kohmanyuk, a Hostmaster official. “Moreover, the Internet provider we opted for has quality connections to Western Ukraine, which is precisely why we decided to deploy the node there.”

Hostmaster, the Ukrainian administrator of the .UA domain, supplied the equipment necessary for the installation of the new L-Root node.

“In addition to the newest L-Root server in Odessa, two other L-Root nodes, in Kyiv and Kharkiv, were also deployed through collaboration between ICANN and Hostmaster.” said Joe Abley, Director of DNS Operations at ICANN.”

This ICANN announcement was sourced from:
www.icann.org/en/news/announcements/announcement-18may12-en.htm