Skip to main content

DDoS Attacks - How They Work and How to Mitigate

About 2 min read

A DDoS attack (Distributed Denial of Service) is an attack that sends a massive volume of requests to a target server from many computers, rendering the service unusable. A network of infected devices known as a botnet is often used to carry out the attack, making it a serious threat that endangers the availability of websites and online services. In 2024, Cloudflare reported mitigating the largest DDoS attack ever recorded, reaching 5.6 Tbps.

Types of DDoS Attacks

Volumetric attacks saturate bandwidth with massive amounts of traffic. UDP floods and DNS amplification are representative, sometimes reaching the scale of hundreds of Gbps. Protocol attacks exhaust server resources with techniques such as SYN floods. Application-layer attacks send large volumes of HTTP requests to overload web servers. In recent years, multi-vector attacks that combine several techniques have become mainstream, making it difficult for defenders to respond.DDoS defense books on Amazon to learn defense techniques.

Real-World Use Cases

"Around 11 p.m. last night, traffic to our e-commerce site surged to 200 times the normal level, and the CDN origin server became unresponsive. We combined WAF rate limiting with a cloud-based DDoS mitigation service and recovered in about 40 minutes."

DDoS Attack Patterns

Volumetric
Saturate bandwidth with UDP/DNS floods
Protocol
Exhaust server resources with SYN floods
Application-layer
Overload web servers with floods of HTTP requests

Real-World Impact and Concrete Scenarios

A common misconception is that "DDoS attacks only target large corporations." In reality, the e-commerce sites and game servers of small and medium-sized businesses are also frequently attacked. For example, if an online shop is hit by a DDoS attack during a sale, one hour of downtime can result in millions of yen in lost sales. When a service goes down due to a DDoS attack, password resets and two-factor authentication may become unavailable. By keeping your passwords stored offline in a password manager, you can still access your account information even during a service outage.

Preparation for Individual Users

DDoS attacks do not directly target individuals, but preparing for when a service you use comes under attack is important. Set up multiple authentication methods for important accounts so that you can still access them through alternative means during a service outage.infrastructure security books (Amazon) are also helpful references.

Related Terms

Was this article helpful?

XHatena