Better technology and stronger organization in Russian hacking groups have increased the threat of DDoS attacks, yet few choose to protect themselves.
In recent times, both companies and most recently a number of municipalities have apparently been exposed to malicious DDoS attacks.
The overload of websites and services makes it difficult, among other things, to find information and log on to services.
Søren Gjevert, responsible for cyber security solutions at GlobalConnect Group
Usually, overload attacks only last for a few minutes or hours at the most, before the IT managers get control of the situation and the hackers attack others instead. But recently we have seen more targeted, prolonged and critical attacks.
The more violent and more frequent attacks document that the hackers, who are probably supported by Russian authorities, have become far better organized and have gained greater capacity.
Private and public organizations in Denmark have obviously worked seriously with cyber security and have been well prepared. Yet the attacks can be so overwhelming in number, intensity and complexity that they cannot be contained.
It is no longer just about some opportunistic petty criminals in a dark basement. Some of the groups operate as quite ordinary companies with organizational charts, salary, bonus and vacation, and they have strong technology and money behind them.
Overload attacks already make up 41 percent of all cyber attacks in the EU and are thus the hackers’ most frequently used tool, it shows latest report from the European Union Agency for Cyber Security, ENISA.
As a result of our international engagement and the geopolitical situation, the threat to Danish organizations will only grow.
Not taking the threat seriously enough
The DDoS attacks can shut down websites and services, so that, for example, hotels and restaurants cannot receive or view bookings, webshops cannot sell goods, citizens do not have access to information, and financial transactions cannot be made. They can also be diversionary maneuvers for more serious attacks.
But perhaps because the attacks themselves do not smash the systems, many organizations do not take the threat as seriously as they should. Because although DDoS attacks are mostly relatively easy to contain, few companies choose to invest in protection and preparedness.
You don’t have to be a well-known company or municipality to become a target for the hackers. Often they go after expected weak links in the countries they want to trouble, and an attack can do serious damage to reputation, trust and finances.
Therefore, it is crucial for the individual organization and for society as a whole that we raise the minimum level when it comes to IT security. For one thing, we become less vulnerable, and at the same time, Danish organizations become a less obvious target for long-term attacks.
By Søren Gjevert, responsible for cyber security solutions at GlobalConnect Group. The entry was first brought by ITWatch.
To GlobalConnect
Source: it-kanalen.dk
