July 10, 2014 1 Comment
An escalating number of businesses are falling victim to distributed denial of service, or DDoS, attacks. Compared to this period last year, there has been an 47% increase in the total number of DDoS strikes. The companies that take advantage of their attack experience by learning from it and educating their employees on cyber security go a long way. Getting hit by a DDoS attack can help uncover some vulnerabilities or mistakes that your IT department may not have previously been aware of. Combining your experiences with these 5 tips on protecting your business from a DDoS attack is the best way to help prevent future incidents.
- Conduct an Assessment: Review your company’s current state of network security – whether you’ve experienced problems in the past or not. This will give you a sense of where your weak points are and allow you to reinforce them.
- Know your Network: Reducing the cost and impact of an attack starts with early detection. The better you know your network, the easier it is for you to identify a problem. Having an understanding of the strengths and weaknesses of each network component will also give you a better understanding of what kind of assaults you can protect yourself from (such as a small attack originating from a single IP address) and if you need to outsource to help fill any security holes.
- Implement General Rules to Help Mitigate Attacks: Some general rules to help defend against a DDoS attack include turning down all unnecessary ports and protocols, implement an IP blacklist, block invalid and malformed packets, and configure and harden network equipment.
- Communicate with your ISP: In some instances, an attack can be so big that it completely saturates your bandwidth, making any other preventative tactics ineffective. Be sure to learn the procedures for getting your ISP to intervene if necessary. Work with your ISP to plan and practice for any possible large-scale attacks, and be sure to examine your Service Level Agreement (SLA) to learn your ISP’s options for defending against DDoS assaults.
- Create an Action Plan: In the unfortunate even that your company suffers an attack, having an action plan in place can help you stay in control – because once an attack is occurring, it’s too late to decide what action to take and how to respond. Be sure to structure your plan by severity level, since your responder actions will vary depending on the impact of the attack.
DDoS attacks can happen to any business at any moment. It’s naive to think that your website is too small to attract the attention of hackers, especially since DDoS is a relatively easy attack to perform. Reducing the cost of an attack starts with preparation and early detection.
Click here to learn more about how to protect your company from cyber attacks.
Blog Author: Vanessa Hartung