Following the news that Lloyds Bank was reportedly hit with a two-day-long DDoS attack, which led to customers being unable to check their account balances or make payments. IT security experts from Corero Network Security, ZoneFox and Infoblox commented below.
Sean Newman, Director at Corero Network Security:
“Best practices around resilient local, and wide-area, network design are well understood and typically implemented as a matter of course. However, the rapid pace at which the cyber threat landscape is evolving often leaves organisations unsure of where best to invest their available security budget. As DDoS has become a significant and worrying resurgence over recent years, organisations now need to ensure this targeted threat is considered as part of their risk profiling. Where every minute offline can be easily equated to significant amounts of lost revenue, and brand damage, the cost of protection is easily justified.
“Protecting against modern DDoS attacks, requires an always-on solution, which can react to attacks in true real-time, surgically removing the attack traffic, and ensuring legitimate traffic can proceed uninterrupted – only then, can services stay online, all the time.”
Jamie Graves, CEO at ZoneFox:
.
Dr Malcolm Murphy, Technology Director Western Europe at Infoblox:
Organisations must prioritise the ever-increasing threat posed to DNS if they want to successfully mitigate the risk of DDoS attacks. The steps to reduce an organisation’s DNS threat level are relatively simple, yet can massively help reduce exposure to attacks; these include learning to recognise when a DDoS attack is taking place; scrutinising their Internet-facing infrastructure for single points of failure; distributing external authoritative name servers geographically to avoid single points of failure; and overproviding their existing infrastructure.”
The opinions expressed in this article belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.