ddos | GIGE IT Solutions: IT Services Mississauga http://gige.ca/tag/ddos IT Services & IT Solutions Mississauga & Toronto Wed, 29 Jan 2020 16:42:27 +0000 en-US hourly 1 https://wordpress.org/?v=6.8.3 https://gige.ca/wp-content/uploads/2017/06/cropped-tab-icon-g-final-32x32.png ddos | GIGE IT Solutions: IT Services Mississauga http://gige.ca/tag/ddos 32 32 Improving your Network’s Security against Online Malware https://gige.ca/improving-your-networks-security-against-online-malware Tue, 05 Jun 2018 16:28:40 +0000 http://gige.ca/?p=5664 The post Improving your Network’s Security against Online Malware appeared first on GIGE IT Solutions: IT Services Mississauga.

]]>

Improving your Network’s Security against Online Malware

Contrary to popular belief, online malware does not exclusively focus on breaching large corporations. Instead, The United States Computer Emergency Readiness Team (US-CERT) stresses that most malware attacks are indiscriminate in their target selection, and are just as likely to affect home or small business networks as large businesses. Therefore, an organization of any size is vulnerable to malicious software as long as it has computers that are connected to the internet.

One of the most recently discovered threats that has affected more than 500,000 routers is called “VPNFilter”. American networking hardware manufacturer Cisco has stated that routers developed by Linksys, NETGEAR, QNAP, TP-Link, and MikroTik are vulnerable to the new malware. This new malicious software is capable of destabilizing the firmware of your router and exploiting security vulnerabilities to steal sensitive information, such as website login credentials.

Cisco has reported that “VPNFilter” uses a three stage process to gain access to your router’s information. Firstly, stage 1 involves the malware finding out the ip address attached to the server, and rooting itself into the router. After successfully gaining traction, the malware initializes stages 2 and 3 of its operations. Stage 2 allows attackers to gather information from the server, as well as destabilize the firmware of the router using “self-destruct protocols”. Finally, stage 3 allows attackers to gather further traffic information such as website login information.

Cisco has outlined recommended strategies to counter “VPNFilter”. Firstly, rebooting your router can remove stage 2 and 3 of the malware from your router, and inhibits further data collection temporarily. However, this does not remove stage 1 of the malware, meaning that it will still be rooted within your device. Therefore they warn that the malware will still be able to reinitialize its stage 2 and 3 protocols after a router reboot. To fully remove the malware from your router, Cisco states that you must fully factory reset the device, restoring it to its factory settings.

The 2017 Mirai Malware

One common aspect shared by many devices infected by the VPNFilter is the fact that owners of these devices did not change the default login information of their routers, causing them to be much more vulnerable to attack.

A similar incident occurred in 2017, when the malicious software “Mirai” infected thousands of routers which still had default login credentials. These infected devices were then used to target the DNS provider “Dyn” with DDoS attacks, and managed to disturb the functioning of many enormous websites such as Paypal and Twitter.

However, “VPNFilter” and “Mirai” are only the latest of many malicious software. In light of this, here are some general best practices to protect your servers and computers from online attack.

Firstly, do not leave your router settings on default. These are often designed to be overly lenient to convenience the end-user. However, default settings can often increase vulnerability to online malware and cyberattacks. In particular, the setting “remote management”, which allows users to change the settings of the device from a remote location such as a computer on the network, is often turned on by default on many routers. However this is a major vulnerability that could be abused by cyberattackers. Therefore always ensure to turn off this setting after initial device setup.

Constantly check for software updates for your computer. These do not just contain bug fixes, but often also contain important security updates to protect your computer from newly discovered malicious software.

Download and constantly update antivirus software from a reputable developer, to ensure that your network has protection against online malware. Furthermore, ensure that firewalls are activated on all your computers connected to the internet. Firewalls constantly filter internet usage and traffic based on existing databases of dangerous software, and can be essential to protecting yourself against malicious or suspicious websites.

Finally, ensure to backup all important data, whether in a company or home setting. Despite following all these precautions, any computer connected to the internet will still be inherently vulnerable to cyberattacks and malware. Therefore, always keep encrypted backup copies of important or sensitive data. This will not only ensure that the information cannot be destroyed, but that it will also be inaccessible to an attacker who has not gained possession of an encryption key.

For more information or assistance on how to protect your network, contact us at +1 (888) 366-4443, or visit our page on our Network Solutions.

The post Improving your Network’s Security against Online Malware first appeared on GIGE IT Solutions: IT Services Mississauga.

The post Improving your Network’s Security against Online Malware appeared first on GIGE IT Solutions: IT Services Mississauga.

]]> 5664 How DDoS Attacks Affects SMEs https://gige.ca/how-ddos-attacks-affects-smes Tue, 15 May 2018 16:44:47 +0000 http://gige.ca/?p=5638 The post How DDoS Attacks Affects SMEs appeared first on GIGE IT Solutions: IT Services Mississauga.

]]>
DDoS Attack

How DDoS Attacks Affects SMEs

Under Distributed Denial of Service or DDoS, a type of cyber attack, the website of a business experiences outages or unexpected downtime. The targeted site runs slow or becomes inaccessible. Attackers, do not limit themselves to large organizations but they also attack the small and medium-sized enterprises or SMEs.

In June 2016 a small brick & mortar jewelry shop was attacked, and the shop’s website was taken down for days. The owner had no idea what went wrong. Upon investigation, Sucuri found that the shop’s site had been generating traffic of 35,000 to 50,000 HTTP requests per second (RPS) – something that its web servers couldn’t handle, resulting to the site’s downtime. It was a DDoS attack that resulted in the spike of HTTP requests. Further, in the investigation, Sucuri found out that the attackers used IoT (internet of things) CCTV devices as the source of their attack botnet.

In general, botnet means a string of connected computers coordinated together to perform a task. A DDoS botnet, in particular, refers to devices, in this case, the CCTV cameras that were themselves hacked to execute a malicious function, that is, to add traffic to the site of the shop, making it inaccessible to the public.

The attack on Dyn, a known DNS (domain name service) provider in October 2016, is another example of a DDoS attack. More than 80 popular websites, such as Netflix, Amazon, Twitter, and Reddit were rendered temporarily inaccessible to the public. According to Dyn, 100,000 IoT devices were compromised to stage the attack.

Negative Effects of DDoS Attacks

Most businesses today have an online presence in one or the other form, mostly through their official websites. DDoS attacks have direct and immediate effects on organization’s image. It makes your organization’s website inaccessible to the potential clients. Your business will lose customers if your site can’t be accessed. An unavailable site can also smudge your organization’s online reputation.

Access to company websites is vital as a study conducted by Google and Ipsos MediaCT found that 50% of consumers who conducted a local search on their phone visited a store within 24 hours, and 34% who searched on computer or tablet did the same.

“A study from the Center for Strategic and International Studies found that Canadian businesses are losing over $3 billion a year to cybercrime,” Perrin Beatty, president and CEO of the Canadian Chamber of Commerce, said in a statement. “It’s not technology-savvy security experts committing these attacks. Anyone with a computer and an internet connection can now disrupt services or hold data for ransom. What costs a criminal $100 may end up costing business millions in lost money, time and reputation.”

How to Prevent DDoS Attacks

While it’s easy for criminals to pay just a few bucks to launch a DDoS attack against your organization’s site, it’s equally simple to prevent such attacks in under few seconds, regardless of the intensity of the attacks and without getting in the way of your site’s legitimate traffic.

If your business is having problems with persistent site downtime, a sign of DDoS attacks, contact us at GigE. We offer per incident technical support and diagnostic services, for instance, in cases of denial of service attacks.

The post How DDoS Attacks Affects SMEs first appeared on GIGE IT Solutions: IT Services Mississauga.

The post How DDoS Attacks Affects SMEs appeared first on GIGE IT Solutions: IT Services Mississauga.

]]> 5638