Thursday, August 2, 2012

BITAG: Be Aware of SNMP DDoS Attacks

The Broadband Internet Technical Advisory Group (“BITAG” - here and here), announced the "..completion of its Technical Review, and publication of its Technical Report, on the subject of Simple Network Management Protocol (SNMP) Distributed Denial of Service (DDoS) Attacks".
" A BITAG member and Internet Service Provider (ISP), Comcast, has observed large-scale Simple Network Management Protocol (SNMP) Reflected Amplification Distributed Denial of Service (DDoS) attacks. These attacks are significant and have been observed to result in tens of gigabits to over one hundred gigabits per second of SNMP traffic sent to attack targets from multiple broadband networks. These attacks have been hours long in duration, disruptive for attack targets, and very challenging for targets to mitigate. The conditions that make this attack possible exist on many types networks, regardless of access network technology (DOCSIS, DSL, fiber, etc.), and regardless of geographic location".

"Device makers as well as Internet Service Providers (ISPs) and Application Service Providers (ASPs) should be aware of this issue and may need to consider a range of potential network management or other responses"

See press release "BITAG Publishes Report on Simple Network Management Protocol (SNMP) Distributed Denial of Service (DDoS) Attacks" - here; The report is available here

1 comment:

  1. Such an informative blog, thanks for sharing,please visit once at