Akamai Diversity

Akamai Security Intelligence & Threat Research

March 2018 Archives

Daniel Abeles

Daniel Abeles

March 29, 2018 6:33 AM

What You Need To Know: "SNIPR" Credential Stuffing T ...

Overview Credential abuse (CA) is a trend that is here to stay. It affects almost every one of us. There are attackers trying to break into every online account and the vast majority of these attacks are happening silently in the background. In the past, credential abuse tools were written and distributed in closed forums and among air-gapped societies. Now, they are widely available; there is a highly active market

Akamai SIRT Alerts

Akamai SIRT Alerts

March 2, 2018 5:00 PM

memcached, now with extortion!

Over the past week, memcached reflection attacks have taken the DDoS scene by storm. With several attacks hitting organizations across many industries, including a record breaking 1.3Tbps attack against an Akamai customer. Akamai has observed a new trend in extortion attempts using memcached payloads to deliver the message.

Akamai SIRT Alerts

Akamai SIRT Alerts

March 1, 2018 7:54 AM

Memcached-fueled 1.3 Tbps attacks

At 17:28 GMT, February 28th, Akamai experienced a 1.3 Tbps DDoS attack against one of our customers, a software development company, driven by memcached reflection. This attack was the largest attack seen to date by Akamai, more than twice the size of the September, 2016 attacks that announced the Mirai botnet and possibly the largest DDoS attack publicly disclosed. Because of memcached reflection capabilities, it is highly likely that this