Johnathan Azaria – WindowsTechs.com

The Anatomy of Massive Application Layer DDoS Attacks

Posted on July 20, 2020 by Johnathan Azaria

During 2020 between June 18 and June 24 Imperva mitigated massive 200K RPS (Request Per Second) attacks on a daily basis. Here at Imperva we investigate major attacks we mitigated in order to gain a better understanding of their anatomy and allow for s… Continue reading The Anatomy of Massive Application Layer DDoS Attacks→

The Challenges of DIY Botnet Detection – and How to Overcome Them

Posted on February 4, 2019 by Johnathan Azaria

Botnets have been around for over two decades, and with the rise of the Internet of Things (IoT) they have spread further to devices no one imagined they would – printers, webcams, and even toasters and fridges. Some botnets enlist infected devic… Continue reading The Challenges of DIY Botnet Detection – and How to Overcome Them→

Scapy-sploit: Python Network Tool is Vulnerable to Denial of Service (DoS) Attack CVE pending

Posted on January 8, 2019 by Johnathan Azaria

We recently discovered that the latest version of Scapy, a powerful packet manipulation tool used by cybersecurity researchers and network engineers, is susceptible to a Denial of Service (DoS) vulnerability. Ironically, we found this vulnerability whi… Continue reading Scapy-sploit: Python Network Tool is Vulnerable to Denial of Service (DoS) Attack CVE pending→

The World’s Most Popular Coding Language Happens to be Most Hackers’ Weapon of Choice

Posted on September 26, 2018 by Johnathan Azaria

Python will soon be the world’s most prevalent coding language. That’s quite a statement, but if you look at its simplicity, flexibility and the relative ease with which folks pick it up, it’s not hard to see why The Economist recentl… Continue reading The World’s Most Popular Coding Language Happens to be Most Hackers’ Weapon of Choice→

Fortnite Scammers Approaching $1m in Annual Takings

Posted on July 26, 2018 by Johnathan Azaria

When something seems too good to be true, it probably is. It’s a hard lesson to learn and, in this case, one that’s being taught by scammers. The perpetrators are abusing the fact that online players of Battle Royale games may be very… Continue reading Fortnite Scammers Approaching $1m in Annual Takings→

A WordPress SPAMbot Wants You to Bet on the 2018 FIFA World Cup

Posted on July 12, 2018 by Johnathan Azaria

Our researchers recently picked up on a spike in SPAM activity directed at sites powered by WordPress, which, naturally, led them to take a closer look. Turns out the attack was launched by a botnet and implemented in the form of comment SPAM – m… Continue reading A WordPress SPAMbot Wants You to Bet on the 2018 FIFA World Cup→

Inside a New DDoS Amplification Attack Vector via Memcached Servers

Posted on March 1, 2018 by Johnathan Azaria

We recently saw a new DDoS amplification attack vector via memcached servers that culminated in two massive DDoS amplification attacks on February 28. Both attacks were mitigated successfully. Here’s how memchached servers work and how the attack… Continue reading Inside a New DDoS Amplification Attack Vector via Memcached Servers→

CVE-2018-6389 WordPress Parameter Resource Consumption Remote DoS

Posted on February 6, 2018 by Johnathan Azaria

Yesterday (Monday, February 5, 2018), a zero-day vulnerability in WordPress core was disclosed, which allows an attacker to perform a denial of service (DoS) attack against a vulnerable application. The vulnerability exists in the modules used to load … Continue reading CVE-2018-6389 WordPress Parameter Resource Consumption Remote DoS→