Safer Internet Day Archives - Miller Media, Digital Marketing Agency, PPC, Industrial Web Design, WordPress

Cloudflare blocks 15M rps HTTPS DDoS attack

millermedia — Wed, 04 May 2022 13:07:53 +0000

Earlier this month, Cloudflare’s systems automatically detected and mitigated one of the largest HTTPS DDoS attacks on record, a 15.3 million request-per-second DDoS attack. HTTPS attacks are more expensive in terms of required computational resources due to the higher cost of establishing a secure TLS encrypted connection. Translation, it costs the attacker more to launch the attack and the victim more to mitigate the attack. While large attacks have been seen in the past, this attack stands out because of the resources required at its scale. The attack was launched by a botnet and lasted less than 15 seconds. It targeted a Cloudflare customer on a Professional Plan operating a crypto launchpad used to surface Decentralized Finance projects to potential investors. Cloudflare customers are protected against this botnet and do not need to take any action.

The Attack:

The attack mostly came from data centers during a change from residential network Internet Service Providers (ISPs) to cloud compute ISPs. It was launched from a botnet with approximately 6,00 unique bots. It originated from 112 countries with almost 15% of the attack traffic originated from Indonesia, followed by Russia, Brazil, India, Colombia, and the United States. Within these countries, over 1,300 different networks including the German provider Hetzner Online GmbH (Autonomous System Number 24940), Azteca Comunicaciones Colombia (ASN 262186), OVH in France (ASN 16276), and more were used.

How this attack was automatically detected and mitigated:

Cloudflare built and operates software-defined systems that run autonomously to detect and mitigate DDoS attacks across your entire network without human intervention. The system starts off by sampling traffic, analyzes the samples, and applies mitigations when needed. During sampling, traffic is routed through the Internet via BGP Anycast to the nearest Cloudflare data centers located in over 270 cities around the world. Once the traffic reaches the data center, the DDoS systems sample it asynchronously allowing for out-of-path analysis of traffic without introducing latency penalties. Then, once analysis is done using data streaming algorithms, HTTP request samples are compared to conditional fingerprints. Multiple real-time signatures are created based on dynamic masking of various request fields and metadata. Each time another request matches one of the signatures, a counter is increased. When the activation threshold is reached for a given signature, a mitigation rule is compiled and pushed inline. The mitigation rule includes the real-time signature and the mitigation action, e.g. block.

Protect your HTTPS today. Call 248.528.3600

The post Cloudflare blocks 15M rps HTTPS DDoS attack appeared first on Miller Media, Digital Marketing Agency, PPC, Industrial Web Design, WordPress.

Domain Listings Billing Scam

millermedia — Thu, 07 Apr 2022 13:06:08 +0000

SCAM ALERT! A company named “Domain Listings” (domain-listings.org) is sending out misleading “Annual Website Domain Listing” invoices to domain name owners via postal/paper mail. Look at the red circled area on the photo provided. These are not real bills. This bill has nothing to do with your domain name registration or services with Miller Media. They are trying to sell you a “listing on an internet directory”, but that service is useless. You DO NOT have to pay for basic search engine listings in Google, Bing, or any other reputable search engine.

How did the scammers get your postal address? They got your address from public records, or a “contact” form you put in on your website. We absolutely DO NOT share your address with them. We have also received fake notices and are taking the time to alert everyone now.

What should you do if you did receive this fake invoice? First and most important DO NOT pay this fake company or any company that sends you an unsolicited invoice for search engine services. Secondly, pass the warning on to your accounting department or person in charge of your invoices to sure they are aware that it is fake. Finally, if you are in the United States, file a complaint with the FTC and/or your state’s Attorney’s General.

Question? Call 248.528.3600

The post Domain Listings Billing Scam appeared first on Miller Media, Digital Marketing Agency, PPC, Industrial Web Design, WordPress.

Safer Internet Day- Googles Initiative for Kids

millermedia — Tue, 06 Feb 2018 18:11:55 +0000

It’s Safer Internet Day!

Help your kids Be Internet Awesome!

This Google Initiative is helping kids be safe, confident explorers of the online world.

Google is instilling THE FUNDAMENTALS

“The Internet Code of Awesome”

1. Be Internet Smart- Share With Care

2. Be Internet Alert- Don’t Fall or Fake

3. Be Internet Strong – Secure your Secrets

4. Be Internet Kind- Be COOL Be KIND

5. Be Internet Brave- When in DOUBT Talk it Out

Check out the BE INTERNET AWESOME Portal>

The post Safer Internet Day- Googles Initiative for Kids appeared first on Miller Media, Digital Marketing Agency, PPC, Industrial Web Design, WordPress.