"'When building server-side botnets, attackers have been targeting platform-as-a-service and software-as-a-service vendors with server instances running software with known vulnerabilities,' the authors wrote. These include versions of Linux, Apache, MySQL, PHP stack and Microsoft Windows server operating systems. These exploits allowed attackers to not only leverage the power of the cloud, but to hide in it as well, using the vendors’ IP reputations to help ensure that packets get through to their targets.
Prolexic found that these cloud-based attacks were observed in 'the most sophisticated and carefully orchestrated DDOS campaigns.' But because of their effectiveness, the analysts expect them to continue. 'They pose a significant danger to businesses, governments and other organizations that could have an entire data center taken offline for the duration of the attack,' they wrote:" says GCN.
No comments:
Post a Comment