• Best VPN
  • Research
  • Guides
  • News
  • VPN Reviews
    • Comparisons
  • Coupons
  • Contact
    • About us
  • EnglishEnglish
    • FrançaisFrançais
Facebook Twitter Instagram
Facebook Twitter Instagram
Your Trusted VPN Experts
  • Best VPN
  • Research
  • Guides
  • News
  • VPN Reviews
    • Comparisons
  • Coupons
  • Contact
    • About us
  • EnglishEnglish
    • FrançaisFrançais
Your Trusted VPN Experts
News

Incapsula Strikes Back At DDoS Attack On Video Gaming Website

Dan ParkerDan Parker
Share
Facebook Twitter Pinterest Email

A group of unknown hackers carried out a well-planned multi-vector DDoS attack on a video gaming website. The attack peaked at almost 110 Gbps and sent more than 90 million packets per second. However, the attack was successfully countered by new Behemoth Scrubbers by Incapsula.

Last week, Incapsula contacted the VPNCreative team and told us about the attack. The attack took place within a month of launching the Behemoth scrubbers deployed in five data centers: Los Angeles, San Jose, London, Frankfurt, and Miami.

The attack started on June 21 and continued until July 28, lasting for 38 days, which was much longer than initially predicted by the team. The company had to filter out a few tens of millions of DDoS packets on a daily basis to counter this high intensity attack.

While the company fought against the DDoS attack, hackers tried everything to bring the website down – from focused application layer (HTTP) floods to network layer DDoS attacks and several XSS and SQL injection attempts. And unfortunately for the hackers, all these attempts were successfully foiled by the Incapsula Web Application Firewall.

The Beginning of the Attack

The Incapsula team noticed a DNS flooding attack peaking at almost 90 Mpps (Million packets per second), with most of the attacking IP addresses belonging to India and China. This led the researchers to believe that the IPs are spoofed.

A DNS flood attack is a type of symmetrical Distributed Denial of Service (DDoS) attack that uses publicly accessible DNS servers to overrun a victim’s server with DNS response traffic. This type of attack exhausts the server side resources (including processors and memory) with multiple UDP (user diagram protocol) requests that are generated using scripts running on botnet systems.

The trends of DDoS are changing and hackers these days use all possible resources to exploit the weakness of the victim system.

The attack went on for 38 days, during which the Behemoth servers filtered out more than 50 petabits (50,000 terabits) of malicious traffic. The attackers also resorted to using large SYN floods directed towards the Incapsula DNS infrastructure.

Must Read  A security breach causes thousands of names and email addresses to be stolen

One interesting factor in these attacks was that while the hackers switched between various targets, they constantly attacked the website of one Incapsula client, which was a video gaming company that hired Incapsula just before the attack. This showed that the gaming company was the real target. The attackers showed extreme determination and aggression, hinting towards the involvement of a rival party. Their goal was obvious – taking down the website and thus ruining their online business.

When Incapsula noticed the malicious packets more closely, they found that a large part of them were coming from similar IP ranges.

“We knew that 20% of C-classes are typically responsible for ~80% of all DDoS traffic.”

By monitoring the IPs, the company was able to detect the offenders who continued attacking using powerful network resources. The strategies they used indicated that they were not amateur hackers trying to make a quick buck with a DDoS attack, but professionals with a serious motive.

Incapsula did not share the real identities of the main victim or the perpetrators of the attack.

Share. Facebook Twitter Pinterest LinkedIn Email
Next Article Silk Road 2.0 Bust Shuts Down Several Other Domains
Dan Parker

Dan is a technology reporter from San Jose, California, currently living right in the heart of Silicon Valley. Raised around tech, he's found interests in various gadgets and the companies that make them for years. When not blogging about tech, he can be found hunting for music, shredding the slopes in South Lake, or whipping up a dish for friends in the kitchen.

Related Posts

Proton VPN and Deutsche Welle join forces to circumvent online censorship

Brave Bolsters Web Browser with Enhanced Privacy Features: Firewall and VPN

A free VPN will soon be integrated into the Microsoft Edge web browser

NordVPN Birthday sale is on!

NordBF banner

Latest posts
  • Proton VPN and Deutsche Welle join forces to circumvent online censorship 03/24/2023
  • Brave Bolsters Web Browser with Enhanced Privacy Features: Firewall and VPN 03/23/2023
  • WireGuard VPN: everything you need to know about the fastest VPN protocol! 03/02/2023
  • A free VPN will soon be integrated into the Microsoft Edge web browser 02/23/2023
  • Why Your Business Needs A VPN Solution! 02/22/2023
Facebook Twitter Instagram Pinterest
  • About us
  • Contact
  • Privacy Policy
  • Sitemap
  • English
  • Français
© 2023 Copyright VPN Creative

Type above and press Enter to search. Press Esc to cancel.