Detecting and characterizing DDoS scrubbing from global BGP routing
Guest Post: Analysing public BGP data to characterize the real‑world behaviour of five major scrubbing services.
Tag: DDoS
Make this one change to prevent IPv6 routing loops in your network
Guest Post: Routing loops cause packets to circulate between routers. This can congest links, enable DDoS attacks, and ultimately reduce the stability and reliability of the Internet. The good news is that IPv6 routing loops are easy to prevent.
On misusing transparent DNS forwarders For amplification attacks
Guest Post: Research shows the threat vector introduced by transparent DNS forwarders that enable access to shielded recursive resolvers, and scale better in terms of potential attack volume.
A first look at the adoption of BGP-based DDoS scrubbing services: A five-year longitudinal analysis
Guest Post: A first global look at how many networks use BGP-based DDoS scrubbing — revealing who’s protected, how adoption has grown, and what it means for Internet resilience.
Reflecting on 10 years in open source network security: Lessons from FastNetMon
Guest Post: How DDoS attacks have evolved over the last decade, and how the FastNetMon Community project has grown in response.
Decoding TCP SYN for stronger network security
Guest Post: How honeypot data can reveal network risks through header-only analysis of TCP SYN segments.
Observing the DDoS landscape requires collaboration
Guest Post: An industry-academic analysis on trends in direct-path and reflection-amplification attacks to encourage greater common understanding of the DDoS landscape.
Three of the best: Security
Here are APNIC Blog’s top three posts related to security for 2024.
Three of the best: ‘How to…’
‘How to’ posts are a great way to learn how to use a new tool, troubleshoot problems, or perform advanced tasks. Here are three of 2024’s best.
The rise of packet rate attacks: When core routers turn evil
Guest Post: Fresh insights into the growing threat of high packet rate attacks.