The Broad Impact of DDoS: It’s More Than Just an IT Issue!
1The Broad Impact of DDoS: It’s More Than Just an IT Issue!Distributed denial of service (DDoS) attacks can bring websites down and display thedreaded“404 Page Not Available” error message. When that happens, everyone thinks it is theIT department’s problem, but that is a narrow, dangerous view.The damage from a DDoS attack on an online business or organization goes far beyond IT.Unfortunately, many business leaders do not realize that denial of service attacks are a seriousthreat to the entire enterprise; one that can result in lost revenue, dissatisfied customers,negative press coverage and even lower stock prices.Depending on the type of DDoS attack and the targeted IT network elements, a DDoS attackcan also disrupt email systems, call centers, VoIP networks and accessibility to information thatcustomers and other users need 24/7. For e-Commerce sites, it can also disrupt revenue flowwhen shopping carts are inaccessible.Therefore, when a DDoS attack hits, it should not be left to the IT department alone to deal withthe fallout. Other departments have important roles too, and need to be prepared to take action.DDoS is an enterprise problem that has become more prevalent and serious as cyber attackersbecome more malicious and sophisticated.Attackers will target your network’s weaknessesDifferent types of DDoS attacks can cause outages in different elements of your network.Attackers can, and will, deliberately target specific elements that may be weak links in yournetwork architecture and inflict exactly the kind of damage they want. For example:• An application (Layer 7) DDoS attack may not disrupt routers, but it can wreak havoc bypenetrating deeply into load balancers, applications and databases.• A high packet-per-second SYN flood may affect servers and routers.• A high packet-per-second UDP flood may cause issues with the routers only.• Content switches are at risk, because they are designed to respond very quickly to userrequests. A botnet can easily overwhelm a switch’s ability to respond to a flood of
2SYNrequests, which causes the switch to fail and makes the application unavailable tousers.What you can doUnfortunately, it’s not a matter of if but when a website will be hit by a DDoS attack. Allindustries are targets.In Prolexic’s experience, online organizations that are prepared for denial of service attacks witha dedicated DDoS mitigation service and a tested, well-rehearsed response plan will experiencethe fastest and most successful attack mitigation.Prolexic recommends that you work with a DDoS mitigation service provider to implement asimulated DDoS attack – a dry run – to confirm your preparedness. This exercise will exposemanagement to the challenges that need to be addressed to manage both internal and externalcommunications when confronted with a DDoS attack.Minimize the damage to your enterpriseThe damage from a DDoS attack can quickly spin out of control. This collateral damage canonly be eradicated when online business leaders recognize the broader impact of DDoS attacksbeyond the IT department.Download our free white paperDownload The Broad Impact of DDoS: It’s More than Just an IT Issue at www.prolexic.com/impact.You’ll also read:Details about a DDoS mitigation playbook and how it can help you ensure a streamlinedresponse in an emergencyWhy a practiced response is necessary to limit the damage from a DDoS attackCase studies of enterprises under attack.12 questions to ask when evaluating a DDoS mitigation service provider
3About ProlexicProlexic Technologies is the world’s largest, most trusted distributed denial of service (DDoS)protection and mitigation service provider. Able to absorb the largest and most complex DDoSattacks ever launched, Prolexic protects and restores within minutes mission-critical Internet-facing infrastructures for global enterprises and government agencies. Ten of the world’s largestbanks and the leading companies in e-Commerce, SaaS, payment processing, travel,hospitality, gaming and other industries at risk for DDoS attacks rely on Prolexic for DDoSprotection. Founded in 2003 as the world’s first in-the-cloud DDoS mitigation platform, Prolexicis headquartered in Hollywood, Florida, and has DDoS scrubbing centers located in theAmericas, Europe and Asia. To learn more about how Prolexic can stop DDoS attacks andprotect your business, please visit www.prolexic.com, call +1 (954) 620 6002 or follow@Prolexic on Twitter.