At first glance, the common view is to wag a blaming finger for unmitigated distributed denial of service (DDoS) attacks at Internet service providers (ISPs). But maybe there’s more to the evolving story, particularly for MSSPs.
In a new research study, conducted by Corero Network Security, a provider of real-time DDoS defense solutions, 60 percent of IT security pros surprisingly said their own security teams were to blame for letting in the invasive and debilitating attacks. Only 25 percent of those surveyed tagged their ISP for insufficient defenses against DDoS attackers.
Still, it’s not like ISPs are getting off the hook easily. Some 73 percent of the respondents expect regulatory pressure to be exerted on ISPs for not protecting their customers against DDoS threats, according to the study’s data.
Those figures are but a few of a number of eye-opening results springing from Corero’s DDoS-focused survey, which spanned about 100 IT pros attending the recent Infosecurity Europe conference in London.
DDoS Attacks: Bigger, More Intense
The study’s results take on particular importance given the rising consensus that DDoS blitzes present the most imposing security threat we’ll face going forward. The expectation is that DDoS attacks will get larger and more significant throughout the year as security pros gird themselves for anticipated run-ins that could prompt major outages worldwide,
Most agree that last October’s attack on DNS provider Dyn denying access to a bevy of popular web sites including Twitter, PayPal, CNN, Reddit, Netflix, Github, Pinterest, Spotify, Wired and Yelp, is but the foreboding kick off of new era in security.
Of late, as the looming threat heightens some security providers are teaming to deliver mitigation services to organizations, an example of which is a recent deal between Radware and TierPoint. Others, such as Arbor Networks, a provider of DDoS protection services, are ramping up their technology with new releases.
“While most in the IT security industry wouldn’t expect their ISP to automatically protect them against DDoS attacks, there is a growing trend to blame upstream providers for not being more proactive when it comes to DDoS defence,” said Ashley Stephenson, Corero’s CEO.
“To help their cause, ISPs could do more to position themselves as leading the charge against DDoS attacks, both in terms of protecting their own networks, and by offering more comprehensive solutions to their customers as a paid-for, managed service,” he said.
DDoS Attacks: What Cybersecurity Pros Say
Here are more of the study’s high notes:
“Considering the significant amount of revenue that can be lost when a business is taken offline, it’s understandable why some organizations may choose to pay a ransom. But this is a dangerous game and offers no guarantees,” Stephenson said.
More results:
