Last Updated on 05/03/2022 by Nidhi Khandelwal
Imperva, a cybersecurity firm, announced on Friday that it had just mitigated a ransom distributed denial-of-service (DDoS) attack that peaked at 2.5 million requests per second and targeted an undisclosed website (RPS).
“While ransom DDoS assaults are not new, they look to be changing and growing more fascinating with time and each new phase,” said Nelli Klepfish, an Imperva security analyst. “For example, we’ve encountered cases when the ransom letter is inserted in a URL request as part of the attack.”
Indonesia was the primary source of the attacks, followed by the United States, China, Brazil, India, Colombia, Russia, Thailand, Mexico, and Argentina.
DDoS (distributed denial-of-service) assaults are a type of denial-of-service (DoS) attack in which a botnet (an army of linked online devices) is used to flood a target website with bogus traffic in order to make it unavailable to real users.
The affected corporation received multiple ransom notes as part of the DDoS attacks, demanding a bitcoin payment to stay online and fear losing “hundreds of millions in market cap,” according to the California-based firm.
The attackers are using the name REvil, the infamous ransomware-as-a-service organization that suffered a severe blow earlier this month when a number of its operators were arrested by Russian law enforcement authorities.
The 2.5 million RPS attack is alleged to have lasted less than a minute, with a comparable attack lasting about 10 minutes on one of the same company’s sibling sites, despite the techniques being regularly changed to avoid possible countermeasures.