In a recent press statement, The Russian banking giant Alfa announced that hackers targeted its cyber infrastructure in a large-scale DNS Botnet attack to make it seem as though the bank had been communicating with the Trump Organization. The bank is now asking U.S. to assist it to find who was behind the attacks. Stephen Gates, Chief Research Intelligence Analyst at NSFOCUS commented below.
Stephen Gates, Chief Research Intelligence Analyst at NSFOCUS:
“It’s no secret that the Department of Homeland Security in the U.S. is spearheading efforts to counter DDoS attacks. One of their initiatives encourages worldwide implementation of Internet Best Current Practice 38 (BCP 38). This document recommends service providers stop allowing devices connected to their networks to spoof their source IP addresses. Believe it or not, BCP 38 was released in the year 2000. Nearly seventeen years later, service providers all over the world still allow spoofing on their networks. Why hasn’t this issue been solved? Simple, there are no incentives or regulations in place for service providers to change their habits. As a result, the world will continue to witness this type of activity for countless years to come.”
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.