Denial of service attacks can shut down internet access and leave IT teams powerless
When Jeff McCune noticed that his district’s 500 Mbps internet connection was full, he knew something was amiss. When he investigated further and saw that the Internet protocol (IP) addresses were coming in from China, Australia, and the Netherlands, McCune realized that the problem was more than just a random overload or ISP outage.
“I was seeing 550 Mbps of traffic coming from a single link and that pushed our usage up over the 10 percent cushion” allowed by its main service provider, said McCune, a network analyst with St. Charles Community Unit School District (CUSD) 303 in St. Charles, Ill. “There was no way anyone from China would surf the website of a school district in Midwestern America that hard.”
To McCune, it appeared the CUSD was being hit by a full-blown Distributed Denial of Service (DDoS) attack. The hackers cut off the entire district’s internet access for four hours at a time and then repeated the process 10 more times over the following six weeks during the fall of 2014.…Read More