There was a story that was distributed around the newswire services at the start of February this year, reporting that we had just encountered the “biggest DDOS attack ever” from a NTP-based attack. What’s going on? Why are these supposedly innocuous, and conventionally all but invisible services suddenly turning into venomous daemons? How has the DNS and NTP been turned against us in such a manner? And why have these attacks managed to overwhelm our conventional cyber defences? In this month's column we will look at these Reflection and Amplification attacks, the way in which NTP has been exploited in these attacks and various measures to mitigate the attack.
You are here
The ISP Column, March 2014 - NTP for Evil