There are many types of DDoS attacks. They target different network components – routers, appliances, firewalls, applications, ISPs, even data centers – in different ways. There is no easy way to prevent DDoS attacks, but Akamai has a proven DDoS protection approach that works to minimize the damage and let your enterprise keep working and service customers during an attack.
DDoS attackers use a variety of DDoS attack methods. The malicious hacker group Anonymous, for example, started with a tool that could launch Layer 7 DDoS attacks and Layer 3 DDoS attacks from any computer. These attacks had a common attack signature – that is, they sent common code. As a result, the attacks could be detected and mitigated (stopped) fairly easily.
It’s a game of cat and mouse. The cat learns about what the mouse is doing, so the mouse works to changes tactics to avoid getting caught. DDoSers got smarter and started randomizing their attack signatures and encrypting their code. Some even started using automated browsers to visit a web page and feed harmful code to a web application on the site.
Although application-layer DDoS attacks are more difficult to recognize, DDoS mitigation experts know what to look for – and we are always looking. Akamai’s anti-DDoS experts monitor and analyze these attacks all the time – day and night.