Distributed Denial of Service (DDoS) protection vendor, Prolexic, has fought off attacks against London-based online trading company Henyep Capital Markets, which has had been threatened with multiple SYN, GET and ICMP (aka ping attack) floods directed against its websites.
As always with DDoS attacks, except where the motive is political, the victim is coerced into paying to stop the denial of service attack or accept the resulting business losses – unless their security vendor can stop the attack.
Henyep Capital Markets’ specified service provider, Prolexic, says it prevented the company falling victim to a coordinated attack. The initial DDoS ‘campaign’ caused performance issues on multiple Henyep trading websites for 24 hours in the run-up to the holiday season.
The trading firm’s management did not respond to the DDoS attackers’ demand for a ransom in exchange for ending the attack, and instead contacted Prolexic, whose mitigation engineers restored access to all services on the sites within minutes after routing traffic through the group’s global scrubbing centres, where malicious traffic was removed.
The group’s DDoS mitigation engineers in the US quickly identified the initial attack as a SYN flood, followed by multiple GET floods. The attack campaign peaked at 35.30 megabits per second (Mbps), 8.10 kilo packets per second (Kpps), and 122.00 kilo connections per second (Kconn) over two days. The engineers monitored the attacks and counteracted the perpetrator’s changing attack vectors throughout the campaign. As a result, the attackers were unable to take down the Henyep site, nor disrupt services despite the length of the attack.
“Financial services companies like Henyep and their mission critical online services continue to be favourite targets of DDoS attackers,” said Prolexic’s president, Stuart Scholly. "It is vitally important to have DDoS mitigation services in place from a proven, experienced provider with the global resources and bandwidth capable of handling attacks well in excess of 50 gigabytes per second [Gpbs].”
According to data in Prolexic’s ‘Q4 2012 Global DDoS Attack Report’, financial services, electronic commerce and many other Software-as-a-Service (SaaS) companies were targeted with high bandwidth DDoS attacks in excess of 50 Gbps in Q412, leading to a rise in its business. Over the three month Q4 2012 period, Prolexic logged more attacks than ever before against its global client base and predicts the scale and diversity of DDoS attacks will continue to increase.