- Apr 25, 2013
- 5,355
The Distributed Denial of Service (DDoS) attack is becoming more sophisticated and complex, and, according to security experts, the next DDoS vector to be concerned about is SNMP (Simple Network Management Protocol) amplification attacks.
Yesterday afternoon, the SANS Internet Storm Center reported SNMP scans spoofed from Google’s public recursive DNS server searching for vulnerable routers and other devices that support the protocol with DDoS traffic and are opened to the public Internet.
"We are receiving some reports about SNMP scans that claim to originate from 8.8.8.8 (Google's public recursive DNS server)," wrote Johannes Ullrich, dean of research of the SANS Technology Institute and head of the Internet Storm Center. "This is likely part of an attempt to launch a DDoS against Google by using SNMP as an amplifier/reflector."
Simple Network Management Protocol (SNMP) is a UDP-based protocol designed to allow the monitoring of network-attached devices by querying information about their configuration. SNMP-enabled devices with such configurations can be found both in home and business environments and is typically used in devices such as printers, switches, firewalls and routers.
Full Article
Yesterday afternoon, the SANS Internet Storm Center reported SNMP scans spoofed from Google’s public recursive DNS server searching for vulnerable routers and other devices that support the protocol with DDoS traffic and are opened to the public Internet.
"We are receiving some reports about SNMP scans that claim to originate from 8.8.8.8 (Google's public recursive DNS server)," wrote Johannes Ullrich, dean of research of the SANS Technology Institute and head of the Internet Storm Center. "This is likely part of an attempt to launch a DDoS against Google by using SNMP as an amplifier/reflector."
Simple Network Management Protocol (SNMP) is a UDP-based protocol designed to allow the monitoring of network-attached devices by querying information about their configuration. SNMP-enabled devices with such configurations can be found both in home and business environments and is typically used in devices such as printers, switches, firewalls and routers.
Full Article
![[correlate]](/data/avatars/s/79/79653.jpg?1556985072){kind=avatar}
