Qrator Labs, 새로운 데이터 마이닝 봇넷 발견

헬가 스미스일월 31, 2022마지막 업데이트: 일월 31, 2022
14 1 분 읽기

Qrator Labs has summed up the results of the fourth quarter of 2021 and discovered a new data mining botnet with 160,097 장치. This is almost three times more than in the third quarter, and more than in any other quarter of 2021.

재미있게, this botnet was not used at all for organizing 디도스 공격, but for data mining by one of the retail companies.

Botnets of this magnitude do not set records in terms of request intensity and bandwidth: their task is to extract commercially significant data consistently and daily without arousing suspicion from defense mechanisms. The smaller the proportion of work that each individual device has to do, the more difficult it is to detect it in the mass of users and block it. It is difficult to fight this activity with the help of reputational analysis, speed limits and IP blockslegitimate users will inevitably fall under the knife. It is required to be able to identify visitors, assess the integrity of the digital environment of their devices, which advanced bots are good at forging, and make a decision to deny access individually for each unfair treatment. This is helped by expertise in the operation of web browsers and mobile applications, knowledge of the goals of bot activity and technical means to achieve them.코멘트 Georgy Tarasov, product manager at Qrator Labs.

The company also notes a record number of unique BGP incidents related to traffic interception: during November, 17,798 autonomous systems generated BGP hijacks, which accounted for 16.3% of the total number of autonomous systems in the world.

Another BGPrecordwas set by the number of BGP route leaks 달마다. 그래서, 12 월 2021 showed a record number of route leaks – 이상 10,000,000. This is almost twice as many as in the first two months of the fourth quarter.

데이터 마이닝 봇넷

The total route leaks in the fourth quarter are more than twice as high as in the third quarter – 19,852,504 in the fourth quarter versus 7,589,347 in the third.

According to Qrator Labs statistics, education and e-commerce were the most attacked industries in the fourth quarter, with a significant lead. The growth in the number of attacks on these segments was 12.29% 과 10.21%, respectively. Payment systems are in third place with 9.75%. Banks, which accounted for a fantastic 22.28% of all DDoS attacks last quarter, were only targeted 5% of the time in the fourth quarter.

또한, almost every quarter, the company detects a shift in the distribution of attack vectors. 그래서, in the fourth quarter of 2021, the top three most popular DDoS attack vectors included:

  1. UDP flood from 33.75%;
  2. SYN flood from 22.71%;
  3. And IP flood from 20.21%.

데이터 마이닝 봇넷

This is a reversal of statistics compared to the third quarter, but the picture is similar to that observed in the second quarter of 2021. Although in the previous quarter under review, IP flooding accounted for more than half of all attacks, the leader of the fourth quarter, UDP flooding, is responsible for only a third.

우리도 그렇게 썼다는 것을 상기시켜 드리겠습니다. 핑크 봇넷 was infected over 1.5 백만 장치, and also that the 중국 당국은 이 책의 저자를 체포했다. 또한 중국 당국이 이 책의 저자를 체포했다는 사실도 확인했습니다..

태그
헬가 스미스일월 31, 2022마지막 업데이트: 일월 31, 2022
14 1 분 읽기

헬가 스미스

저는 항상 컴퓨터 과학에 관심이있었습니다, 특히 데이터 보안 및 테마, 요즘은 "데이터 과학", 10 대 초반부터. 편집장으로 바이러스 제거 팀에 오기 전, 저는 여러 회사에서 사이버 보안 전문가로 일했습니다., 아마존 계약자 중 한 명 포함. 또 다른 경험: 나는 Arden과 Reading 대학에서 가르치고 있습니다..

회신을 남겨주

이 사이트는 스팸을 줄이기 위해 Akismet 플러그를 사용. 귀하의 코멘트 데이터가 처리되는 방법 알아보기.

맨 위로 버튼