distributed denial-of-service attack

A hacker (or, if you prefer, cracker) begins a DDoS attack by exploiting a vulnerability in one computer system and making it the DDoS "master." It is from the master system that the intruder identifies and communicates with other systems that can be compromised. The intruder loads cracking tools available on the Internet on multiple -- sometimes thousands of -- compromised systems. With a single command, the intruder instructs the controlled machines to launch one of many flood attacks against a specified target. The inundation of packets to the target causes a denial of service.

While the press tends to focus on the target of DDoS attacks as the victim, in reality there are many victims in a DDoS attack -- the final target and as well the systems controlled by the intruder.

Read more about distributed denial-of-service attack: - The SANS Institute paper, "Defenses against distributed denial of service attacks," suggests ways to guard against them. - OpenSourceFirewall.com provides another paper about heading off distributed denial-of-service attacks. - SearchSecurity.com provides selected Web links to more information about "Denial of Service."

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Microsoft tools won't be quick fix for SQL injection attacks Microsoft's security advisory will help raise awareness about secure software coding, but it won't stop the onslaught of SQL injection attacks,... New defenses for automated SQL injection attacks By automating SQL injection attacks, hackers have found a way to expedite the process of finding and exploiting vulnerable websites. The old defenses... HP aims at IBM with application vulnerability scanning as service HP offers application scanning as a service to meet IBM's Watchfire AppScan OnDemand software. Interest is being driven by the growing use of Web...

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary anonymous Web surfing  (SearchSecurity.com) buffer overflow  (SearchSecurity.com)