Security News 300,000 Systems Vulnerable to New Loop DoS Attack

silversurfer

Super Moderator
Thread author
Verified
Top Poster
Staff Member
Malware Hunter
Aug 17, 2014
11,108
Researchers from the CISPA Helmholtz Center for Information Security in Germany have disclosed the details of a new denial-of-service (DoS) attack vector that impacts several widely used UDP-based application protocols and hundreds of thousands of internet-facing systems.

The experts have demonstrated a loop DoS attack where an attacker uses IP spoofing to get two servers to communicate with each other indefinitely over a protocol they both use.

“The newly discovered DoS loop attack is self-perpetuating and targets application-layer messages. It pairs two network services in such a way that they keep responding to one another’s messages indefinitely. In doing so, they create large volumes of traffic that result in a denial of service for involved systems or networks,” the researchers explained. “Once a trigger is injected and the loop set in motion, even the attackers are unable to stop the attack. Previously known loop attacks occurred on the routing layer of a single network and were limited to a finite number of loop iterations,” they added.
 

jlino

New Member
Jul 18, 2024
2
As part of the security team, this new DoS attack vector uncovered by researchers at CISPA Helmholtz Center raises critical questions. How can we effectively mitigate the risks posed by such self-perpetuating loop attacks leveraging IP spoofing? Are current detection and prevention measures equipped to handle this level of sophistication? It's clear that proactive measures, including enhanced network monitoring and robust filtering mechanisms, will be essential in defending against these emerging threats.
 
  • Like
Reactions: cartaphilus

cartaphilus

Level 11
Verified
Top Poster
Well-known
Mar 17, 2023
504
It pairs two network services in such a way that they keep responding to one another’s messages indefinitely. In doing so, they create large volumes of traffic that result in a denial of service
Well that's fascinating! It somehow remind me of an argument with my wife. It initially starts slow bust then it escalates to the point that both of us are responding to each other in a loop and each response is just an escalation of the last message. The outcome; I suffer from denial of service and am forced to sleep on the sofa.

So basically the DoS is a optical resonator in a laser.

I should test that DoS on my local Comcast network...not like anyone could tell a difference....oh how I miss my ATT FIBRE.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top