Long-form thinking on cyber defence, detection, and resilience — from Slackware-era honeypots through to AI-driven SOC analytics.
Showing posts tagged evolution of ddos — 5 results.
Yesterday afternoon Yahoo went offline for about three hours under what is being described as a distributed denial of service attack. This morning eBay is reporting similar trouble. The category change I have been writing about is now the front page.
On the 30th of December, a tool called Stacheldraht was reported on Bugtraq. It is the third major DDoS toolkit of the year and visibly the most sophisticated. The architecture combines features of Trinoo and TFN with proper encryption and authentication. The trajectory continues.
Tribe Flood Network has been quietly improving since it appeared earlier this year. The latest reports describe a more capable tool with better operational discipline. The pattern of refinement is itself worth attention.
Last week, a single computer at the University of Minnesota was knocked off the network for two days by a coordinated attack from over 200 compromised hosts. This is the first widely-publicised distributed denial of service attack. The defensive implications are profound and mostly unanswered.
A new DDoS tool called Trinoo has been seen in the wild. It is the first widely-discussed example of a coordinated multi-host denial of service attack. The defensive response is fundamentally unsolved.