IT home February 11 news, according to the Jiangsu Internet police release, have you ever encountered this situation: a website suddenly can not be opened, the server can not be accessed, the website automatically jumped... This doesn't have to be a network connection failure, it's very likely that the website you logged into is suffering from a hacked DDOS attack!
In early August 2021, police in Xinyi, Xuzhou, Jiangsu Province, discovered in their work that a website platform, under the guise of conducting "stress testing," was actually providing hackers with paid tools to carry out DDOS attacks. What's more, the platform also claims to be able to provide "DDOS daimyo" services! After grasping this situation, the Xinyi City Public Security Bureau Network Security Brigade immediately set up a special case team to fully carry out the investigation and handling of the case.
The investigation found that the founder of the "Little Black DDOS Stress Test Platform" website has developed multi-level agents to provide network attack services in order to increase the visibility of the circle. After registering for an account, the user uses the purchased card to redeem the corresponding 10 packages such as day card, weekly card, monthly card, etc., and then uses the above package to attack the target IP.
To evade regulation, the operators put the website on overseas servers, thinking that this would be a peace of mind. So they unscrupulously attacked domestic and foreign websites that sent a large number of packets of SNTP/SSDP protocol, with a peak traffic of 21.61G/s, causing extremely strong attack damage to the target server. In a few months, the platform registered more than 30,000 members, and more than 10,000 attacked websites!
Such a rampant behavior naturally cannot escape the pursuit of the police. In short, the public security organs have carried out a lot of work and the case has been solved.
From August to September 2021, the special case team rushed to Henan, Chongqing, Sichuan, Guangxi, Guangdong and other 10 provinces and 16 prefectures and cities to carry out arrests, successfully arrested 36 criminal suspects such as Wang Mouyong, illegally profited more than 3 million yuan, and seized more than 60 mobile phones, hard disks, computers and other equipment used to commit illegal crimes.
At present, the relevant criminal suspects have been prosecuted by the procuratorate.
Security tips
1. System reinforcement. Regularly scanning for vulnerabilities and patching, shutting down unnecessary ports and services, can effectively reduce the risk of intrusion.
2, the use of sufficient network bandwidth and high-performance network equipment. DDos attack is mainly through the consumption of network resources to interrupt the operation of the device, expand sufficient bandwidth, the selection of large brands, good reputation of the router, switch, hardware firewall and other equipment can reduce the impact of the attack to a certain extent, the current mainstream brand of equipment also has a certain anti-DDos function.
3. Access anti-DDoxo products. According to their own protection needs and network environment, you can choose suitable anti-DDoSO products, such as anti-DDoSOdon server, anti-DDodo CDN.
4. Hide the real IP address of the server. By hiding the source IP, the attacker cannot directly attack the source server, which can effectively protect the security of the website.