Windows 10: Multi-Vector DDoS Attacks Are Becoming the Norm

  1. Cluster Head's Avatar
    Posts : 1,563
    Windows 10 Pro x64 RS 10586.586
       31 Mar 2016 #1

    Multi-Vector DDoS Attacks Are Becoming the Norm


    Multi-Vector DDoS Attacks Are Becoming the Norm
    47% of all multi-vector DDoS attacks were launched in Q4 '15

    Click image for larger version. 

Name:	multi-vector-ddos-attacks-are-becoming-the-norm-502416-3.jpg 
Views:	40 
Size:	25.4 KB 
ID:	72430

    Statistics gathered by Neustar, Inc., a provider of real-time information services, shows that in the past year, and especially in the last quarter of 2015, multi-vector DDoS attacks have started to become a regular occurrence.

    Details from the 2016 Neustar Security Operations Center Report reveals that attackers are starting to chain together different methods for launching DDoS attacks, either for reconnaissance, or for diverting company IT resources in different areas, so they can launch other types of attacks later on.

    Multi-vector DDoS attacks are when an attacker quickly transitions from launching DDoS attacks from one form of DDoS attack (e.g.: SYN packets) to another one (Layer 7), and so on. These attacks are either launched one vector at a time, or in parallel, in order to confuse a company's IT department, strain their resources, and keep their attention on the wrong spot.
    Read more: http://news.softpedia.com/news/multi...m-502416.shtml
      My ComputerSystem Spec


  2. Posts : 135
    Windows 10 Enterprise (64-bit)
       31 Mar 2016 #1

    Its a wake up call to start researching your modem/router user manual instructions and master the security options to turn on/enable a few options that will stop any ddos attack on any or your investments and perhaps look into a second party firewall and only let what you want in or out transmissions from your device/investments

    The tools are all ready built in your current /modem router take advantage of them and take your time educating your self its not too hard at all.
      My ComputerSystem Spec

  3. Ztruker's Avatar
    Posts : 6,424
    Windows 10 Pro X64 17134.191
       31 Mar 2016 #2

    This is from my Router log for one day:

    Code:
    [DoS Attack: RST Scan] from source: 199.27.134.194, port 80, Wednesday, March 30, 2016 19:45:33
    [DoS Attack: SYN/ACK Scan] from source: 156.42.184.63, port 443, Wednesday, March 30, 2016 19:13:15
    [DoS Attack: ACK Scan] from source: 173.197.199.209, port 443, Wednesday, March 30, 2016 17:58:25
    [DoS Attack: SYN/ACK Scan] from source: 77.220.187.194, port 80, Wednesday, March 30, 2016 17:12:22
    [DoS Attack: SYN/ACK Scan] from source: 198.255.22.2, port 443, Wednesday, March 30, 2016 16:46:37
    [DoS Attack: SYN/ACK Scan] from source: 73.208.133.105, port 80, Wednesday, March 30, 2016 14:28:57
    [DoS Attack: RST Scan] from source: 196.46.185.22, port 80, Wednesday, March 30, 2016 14:27:32
    [DoS Attack: SYN/ACK Scan] from source: 73.208.133.105, port 80, Wednesday, March 30, 2016 14:16:54
    [DoS Attack: RST Scan] from source: 199.27.135.194, port 80, Wednesday, March 30, 2016 14:09:56
    [DoS Attack: ACK Scan] from source: 151.80.126.248, port 6005, Wednesday, March 30, 2016 14:04:48
    [DoS Attack: RST Scan] from source: 199.27.134.194, port 80, Wednesday, March 30, 2016 13:43:56
    [DoS Attack: ACK Scan] from source: 151.80.126.249, port 6005, Wednesday, March 30, 2016 13:42:22
    [DoS Attack: SYN/ACK Scan] from source: 51.254.92.38, port 6323, Wednesday, March 30, 2016 12:16:28
    [DoS Attack: SYN/ACK Scan] from source: 13.76.86.156, port 80, Wednesday, March 30, 2016 12:09:06
    [DoS Attack: SYN/ACK Scan] from source: 142.4.205.76, port 5500, Wednesday, March 30, 2016 11:38:30
    [DoS Attack: SYN/ACK Scan] from source: 156.42.184.63, port 443, Wednesday, March 30, 2016 11:21:51
    [DoS Attack: ACK Scan] from source: 66.220.146.163, port 443, Wednesday, March 30, 2016 11:00:37
    [DoS Attack: SYN/ACK Scan] from source: 45.40.162.134, port 443, Wednesday, March 30, 2016 09:56:59
    [DoS Attack: SYN/ACK Scan] from source: 87.98.243.201, port 7003, Wednesday, March 30, 2016 09:15:07
    [DoS Attack: SYN/ACK Scan] from source: 61.160.221.60, port 2015, Wednesday, March 30, 2016 07:49:17
    [DoS Attack: SYN/ACK Scan] from source: 91.121.113.128, port 9987, Wednesday, March 30, 2016 07:13:45
    [DoS Attack: RST Scan] from source: 199.27.135.194, port 80, Wednesday, March 30, 2016 06:53:45
    [DoS Attack: SYN/ACK Scan] from source: 217.160.26.40, port 80, Wednesday, March 30, 2016 06:27:27
    [DoS Attack: SYN/ACK Scan] from source: 51.254.126.233, port 80, Wednesday, March 30, 2016 05:59:33
    [DoS Attack: SYN/ACK Scan] from source: 93.189.58.106, port 80, Wednesday, March 30, 2016 05:21:21
    [DoS Attack: RST Scan] from source: 199.27.135.194, port 80, Wednesday, March 30, 2016 04:37:10
    [DoS Attack: RST Scan] from source: 199.27.134.194, port 80, Wednesday, March 30, 2016 03:58:48
    Pretty much the same every day though the IP addresses change quite a bit.
      My ComputersSystem Spec


  4. Posts : 135
    Windows 10 Enterprise (64-bit)
       31 Mar 2016 #3

    @ztrucker

    Thanks for the upload , brother please disconnect your modem asap your a target and first thing call you isp and make sure you speak to level 2 or a supervisor and explain this report print it out a they will throw you a new ip number

    Don't sit on your hands this is critical you don't know who is attacking you and what is the agenda... your not the first one or last one please run with my advice and get your ip number changed and monitor again
      My ComputerSystem Spec

  5. Ztruker's Avatar
    Posts : 6,424
    Windows 10 Pro X64 17134.191
       02 Apr 2016 #4

    I think anyone who checks their router logs will see similar. It's prevalent everywhere. I have good security, no one's gotten through yet. When I run port scans, my computer is invisible to the outside world.

    I may send some of my logs to my ISP just to see what they say though, good idea.
      My ComputersSystem Spec


 

Related Threads
This is probably the most painful issue I have with Windows 10 right now (and likely previous versions as well, but I didn't have a multi-monitor setup back then). The monitors I have are as follows: 3840x2160 (4K UHD) monitor with preferred...
Source: Evolving Microsoft SmartScreen to protect you from drive-by attacks | Microsoft Edge Dev Blog
An IT security company Norse has an live site online showing currently active Distributed Denial-of-service (DDoS) attacks live on a World map. Take a look, it's quite interesting to see how these attacks happen all the time. The live map: Norse...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 05:33.
Find Us