Posts

Bad Actors Innovate, Extort and Launch 9.7M DDoS Attacks in 2021 According to the Latest NETSCOUT Threat Intelligence Report

Ransomware Gangs, DDoS-for-Hire Services, and Server Class Botnet Armies Make Attacks Easier to Launch with Greater Sophistication

London – 22 March 2022 NETSCOUT SYSTEMS, INC., (NASDAQ: NTCT) today announced findings from its bi-annual Threat Intelligence Report. During the second half of 2021, cybercriminals launched approximately 4.4 million Distributed Denial of Service (DDoS) attacks, bringing the total number of DDoS attacks in 2021 to 9.75 million. These attacks represent a 3% decrease from the record number set during the height of the pandemic but continue at a pace that’s 14% above pre-pandemic levels.

The report details how the second half of 2021 established high-powered botnet armies and rebalanced the scales between volumetric and direct-path (non-spoofed) attacks, creating more sophisticated operating procedures for attackers and adding new tactics, techniques, and methods to their arsenals.

“While it may be tempting to look at the decrease in overall attacks as threat actors scaling back their efforts, we saw significantly higher activity compared to pre-pandemic levels,” said Richard Hummel, threat intelligence lead, NETSCOUT. “The reality is that attackers are constantly innovating and adapting new techniques, including the use of server-class botnets, DDoS-for-Hire services, and increased used direct-path attacks that continually perpetuate the advancement of the threat landscape.”

Other key findings from the NETSCOUT 2H2021 Threat Intelligence Report include:

  • DDoS Extortion and Ransomware Operations are on the rise. Three high-profile DDoS extortion campaigns simultaneously operating is a new high. Ransomware gangs including Avaddon, REvil, BlackCat, AvosLocker, and Suncrypt were observed using DDoS to extort victims. Because of their success, ransomware groups have DDoS extortion operators masquerading as affiliates like the recent REvil DDoS Extortion campaign.
  • VOIP Services were Targets of DDoS Extortion. Worldwide DDoS extortion attack campaigns from the REvil copycat were waged against several VOIP services providers. One VOIP service provider reported $9M-$12M in revenue loss due to DDoS attacks.
  • DDoS-for-Hire services made attacks easy to launch. NETSCOUT examined 19 DDoS-for-Hire services and their capabilities that eliminate the technical requirements and cost of launching massive DDoS attacks. When combined, they offer more than 200 different attack types.
  • APAC attacks increased by 7% as other regions subsided. Amid ongoing geopolitical tensions in China, Hong Kong, and Taiwan, the Asia-Pacific region saw the most significant increase in attacks year over year compared to other regions.
  • Server-class botnet armies arrived. Cybercriminals have not only increased the number of Internet-of-Things (IoT) botnets but have also conscripted high-powered servers and high-capacity network devices, as seen with the GitMirai, Meris, and Dvinis botnets.
  • Direct-path attacks are gaining in popularity. Adversaries inundated organisations with TCP- and UDP-based floods, otherwise known as direct-path or non-spoofed attacks. Meanwhile, a decrease in some amplification attacks drove down the number of total attacks.
  • Attackers targeted select industries. Those hardest hit include software publishers (606% increase), insurance agencies and brokers (257% increase), computer manufacturers (162% increase), and colleges, universities, and professional schools (102% increase)
  • The fastest DDoS attack recorded a 107% year-over-year increase. Using DNS, DNS amplification, ICMP, TCP, ACK, TCP RST, and TCP SYN vectors, the multi-vector attack against a target in Russia recorded 453 Mpps.

NETSCOUT’s Threat Intelligence Report covers the latest trends and activities in the DDoS threat landscape. It covers data captured from NETSCOUT’s Active Level Threat Analysis System (ATLAS™) coupled with insights from NETSCOUT’s ATLAS Security Engineering & Response Team.

The visibility and insights compiled from the global DDOS attack data, which is represented in the Threat Intelligence Report and can be seen in the Omnis Threat Horizon portal, fuel the ATLAS Intelligence Feed used across NETSCOUT’s Omnis security portfolio to detect and block threat activity for enterprises and service providers worldwide.

Visit our interactive website more information on NETSCOUT’s semi-annual Threat Intelligence Report. You can also find us on Facebook, LinkedIn, and Twitter for threat updates and the latest trends and insights.

New guide for educators in optimising independence in sixth form learning

Facet Publishing announce the publication of Facilitating Effective Sixth Form Independent Learning by Andrew K. Shenton

 

For young people who have opted to continue their education post-sixteen, it is difficult to overstate the importance of the independent learning which takes place in the Sixth Form. Typically, the balance between classroom teaching and independent study shifts dramatically at this point. Individuals who intend to go on to university will need strategies that will stand them in good stead for the next stage of their academic lives, in addition to serving their current needs. 

 

Facilitating Effective Sixth Form Independent Learning is a comprehensive guide for educators looking to support independent learning in the Sixth Form. It takes the reader on a step-by-step journey, showing how an appropriate teaching programme may be set up, and offering proven tools and strategies that can be adopted in the classroom. The book advises on how to formulate a worthwhile research question, and establishes the importance of teaching unifying methodologies, in addition to individual techniques, before various means of finding information are identified. It also faces up to the challenges experienced by many learners by introducing Shenton’s Information/Writing Interaction (IWIM) model for helping students construct essays. Further coverage includes strategies for countering plagiarism and numerous suggestions for promoting student reflection.

 

Described as ‘an absolute goldmine for educators’ by Dr Wendy Beautyman of the National College of Education, Shenton has emphasized the book’s timeliness. He said, ‘the lockdowns of 2020 and 2021 have emphasised the importance of students’ skills in learning autonomously learning has never been so complex and challenging to the individual’.

 

Rigorous yet accessible and featuring numerous practical examples, Facilitating Effective Sixth Form Independent Learning is an essential resource for educators working in a world where developing independent learning skills is not an option, but essential.

 

Facilitating Effective Sixth Form Independent Learning: Methodologies, Methods and Tools | 9781783305582 | 288pp | September 2021 | £55 |

 

Andrew K. Shenton, BA (Hons), MSc, PhD, DLitt, PGCE, FCLIP, has worked at Monkseaton High School, in north-east England, for the last 17 years. Dually qualified in education and information science, he has been involved in teaching the Extended Project Qualification since its inauguration in the organisation in 2010. Andrew is a widely published specialist in the fields of information behaviour, information literacy and research methods, with over 200 publications to his name across a range of professional periodicals and peer-reviewed journals in education and LIS. On becoming a Chartered Fellow of CILIP in October 2020, Andrew gained the unusual distinction of holding both the highest academic degree in his field and the highest professional qualification.

 

 

The book is published by Facet Publishing and is available to order from Ingram Publisher Services UK | Tel: +44 (0)1572 202301| Fax: +44 (0)1752 202333 | Email: IPSUK.Orders@ingramcontent.com(link sends e-mail) | Web: www.facetpublishing.co.uk | Mailing Address: Ingram Publisher Services UK, 10 Thornbury Road, Plymouth, PL6 7PP |  It will be available in North America from the American Library Association.

 

 

 

 

Selby College improves the student experience with high-density WiFi 6 – delivered in just 8 weeks – from Redway Networks.

Selby College has improved wireless connectivity and delivered the coverage and capacity required to support bring-your-own-device (BYOD) services for its high-density learning environment.  The College’s transition to next-generation Cisco Meraki WiFi 6 from Redway Networks has given the campus a hyper-secure, robust cloud-networking solution that delivers a seamless WiFi experience to students and staff.

Selby College, in North Yorkshire is a tertiary college that offers courses for A Level, degree, adult education and work-related business vocation.  Thanks to a huge £35m investment in its state-of-the-art campus, the College now boasts some of the most up-to-date facilities of any education provider in the area. Selby College has an open BYOD policy which actively encourages and supports students using their own devices.  It can see more than 1500 devices connecting to its wireless network and to support throughput and optimise services for these devices, particularly in high-density gathering areas, hyper-reliable wireless is vital.  

Current WiFi cannot support density of users.

Mike Pilling, Network Services Manager at Selby College says: “During normal circumstances we have between 1,000 and 2,000 students on-site over several buildings all with smart phones, ipads and laptops accessing the College and guest WiFi.  Times have moved on since we installed our existing Netgear solution, and it was struggling to provide the bandwidth we needed to support this number of devices and we felt the students were missing out”. 

Mike continues: “When we analysed our network, we found that 90% of its usage was actually for social  and only 10% for the College side, so that really highlighted the need to improve our bandwidth. In this digital age, students choose a college not just for its courses but for the social side, so reliable WiFi is important to them.  The College had received a government grant to enhance its IT infrastructure so we took the opportunity to improve the wireless network with a more sophisticated solution that would support our high-density needs and future proof the network.”   

 

 

College goes out to tender.

Once it had gone through its wireless requirements Selby College completed a specification document which was sent out to a purchase consortium to get advice on wireless technology vendors.  Mike Says: “At the point of contacting the consortium, I received an email from Redway Networks (who has experience in the education sector) so I decided to add them to the list for review.  Timescales were really tight due to our budget having to be spent by March 2021 so we not only needed a wireless provider who had the expertise to meet our requirements, but who could work around our short timescales and deliver a seamless project.” 

An ITT was then sent out and Redway Networks demonstrated the best technical ability, product knowledge and pricing in its bid.  Mike says: “I didn’t want to just go on price and was really impressed with Redway Networks.  I felt confident that Redway had the technical knowledge and design capabilities to provide the best fit solution for us and we received a great service throughout the whole tender process”.

Selby College selects Redway Networks.

Redway Networks was then chosen to provide the new WiFi.  Mike says: “I was looking for a cloud solution rather than an onsite wireless controller and when Redway showed me a demonstration of Meraki I really liked it and knew it would meet our requirements for connectivity and performance and I liked its easy-to-use dashboard. Plus, Meraki’s 10-year software licence (plus the free year offer) was cheaper than the 5-year support deal offered by the other vendors.”

Selby originally had 45 access points (APs) across the campus but wanted to increase that number both inside and outside to meet its high-density needs.  So, Redway installed 72 Meraki APs with services that included WiFi survey, design, configuration, and support. Due to coronavirus Redway’s engineer conducted the WiFi survey remotely to determine AP positioning, coverage and performance and the results were verified using Ekahau’s visual heat mapping software.

Mike says: “Everything was done off plan.  We literally went from building-to-building using video conferencing to discuss what the building was used for, size of the space, coverage requirements and wall material etc, so that Redway could design and create a bespoke network for our needs.  When I got the heat maps back everything looked great, and it was signed off.”

Seamless Meraki install in less than 8 weeks.

From Selby College’s initial request for information to the survey, design and installation was completed in less than eight weeks. Mike says: “I was over the moon with the service I received from Redway Networks and was delighted that not only did Redway install our new WiFi in less than a week, but the whole project was delivered sooner than our original planned date of the February 2021 half term – so our timescales were certainly met.” 

WiFi that supports a digital future.

Selby College now has hyper-secure Meraki WiFi 6 solution with a centralised cloud-managed licence and automatic firmware upgrades for the next ten years.  This provides the flexibility and control to keep the College connected and secure, whilst delivering a seamless wireless experience to its high-density student population.

Mike says: “Meraki hasn’t been tested in full anger yet, but from what we’ve seen on-site we now have significantly better network coverage and must much faster WiFi.  I am sure when the students come flooding back, they will be impressed with the bandwidth and speed at which they can access digital resources and stream media from anywhere on campus – even in large groups (which is something they couldn’t do before) so we’ve improved the student experience.”

Mike concludes: “I couldn’t be more impressed with our new Meraki solution and I’m confident that even when we start seeing new educational technology and WiFi 7/ 8 capable devices coming onto our network, we’ll have the wireless in place to build the digital College of the future.”