French bank Societe Generale has released a guide to help businesses prepare and defend against Distributed Denial of Service (DDoS) attacks.
The guide covers preparation, identification, containment, remediation, and aftermath and is the fourth incident response management document released by the bank.
The bank's computer emergency response team said it hopes the document (pdf) will be a useful resource, but that it preferred to “stay under the radar” regarding the prevalence of DDoS and what actions victims typically take.
In Australia, DDoS attacks have remained a problem for businesses.
“DDoS is still a problem and is driven by the same motives,” AusCERT senior information security analyst Zane Jarvis said. “They do it because it works.”
Log review is the most important step in DDoS defence, Jarvis said, because it helps to ascertain if an attack can be blocked.
“We then can work with upstream providers to block the attack, or reach out to the security community to clean infected machines.”
Australian DDoS victims should contact AusCERT as a first response.
Responding to DDoS
Containment / remediation:
Aftermath / recovery:
Correction: This article originally attributed the guide to the French Computer Emergency Response Team (CERT). The document was actually prepared by French bank Societe Generale. iTnews apologies for the error.
Copyright © SC Magazine, Australia
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @itnews.com.au to your white-listed senders.