The growing interest in cryptocurrency has led cybercriminals to apply their knowledge to mine Bitcoin and Ethereum. There were only 10% more attacks than in Q4 2020 YoY. However, there was a drop of 31% in attacks in the period against Q3 2020, according to Kaspersky. Due to the surge in cryptocurrency costs, some botnets might have been reprofiled by cybercriminals so that the C&C servers used in DDoS attacks could be used to mine cryptocurrencies.
Citrix has been hit by a DDoS cyberattack. The company said it is investigating the impact of the attack it may have on its apps delivery controller devices. ADC is the most comprehensive app delivery and load balancing solution for security and visibility. Online gaming services, such as Steam and Xbox, were the most impacted among its clients which was first detected and documented by German IT systems administrator Marco Hofmann.
Delhi govt’s transport department website for high-security registration plates or colour coded fuel stickers was hacked on Wednesday. HSRP manufacturer said that a DDoS attempt was observed on http://www.bookmyhsrp.com and its domain name IP was mapped for compromise by unauthorised attempt through international traffic with virtual multiple counts hitting the domain creating false overloading of high volume traffic. No data breach has happened in this event, the manufacturer claimed.
Cloud-enabled cybersecurity firm Barracuda Networks have detected millions of bad bots attacks on e-com sites during the festive month of November. These attacks were an attempt by cybercriminals to run DDoS attacks, make fraudulent purchases, and scan for vulnerabilities they can exploit. With the holiday season expected to continue till the New Year, more such attacks on e-com sites are likely, Barracuda Networks warned.
PUBG Mobile was hit by DDoS attacks leading to several players getting disconnected from the game worldwide. The developer acknowledged the issue and said that its teams were actively working to resolve the attack. PUBG Mobile was one of the most popular battle royale games in India, before the centre banned it on 2nd Sept 2020. The S Korean developer has been trying to get the ban revoked whereas the govt officials say that they are in no hurry to do so.
The frequency of DDoS attacks in India saw a steady increase from January till June this year, followed by a dip in July. But the attacks were up again in August, with total DDoS packets exceeding 10 billion, as per a study by global cyber security firm Radware. Web apps of hi-tech firms (33%), banking and finance (33%), government (17%), and transportation (17%), were the most heavily targeted during Jul-Aug period.
Mashreq Bank, despite having a strong internal security measure, continued to face several phishing attacks and a few DDoS attacks. They launched an AI, ML-based Enterprise fraud management system that covers transactions from all bank channels and derives customer transaction patterns. It then sends out early warning signals. The bank has also put in place real-time payment tracking that lets customers see where their money is during a transaction.
DDoS attacks on educational online resources, from Jan-June, have increased by at least 350%, compared to the same time in 2019. Globally, the total number of DDoS attacks increased by 80% in Q1, 2020, as compared to 2019. Apart from DDoS attacks, educators and students, during the period, also encountered an increased number of various threats distributed through online learning platforms. Phishing pages and emails also exploited these platforms.
1) Exploit a user’s query for a file (replacing it with a malicious one). 2) Bots are used in DDoS attacks. 3. Bots are used to verify stolen credentials – brute forcing. 4) Bots hold the tickets for checkout and never actually buy them. This holds legitimate users from buying it. 5) Used to post fake reviews on e-comm sites, tarnishing the image of a particular seller. 6) Bots are used to log keystrokes which is then used by cybercriminals to harvest personal info.