In a case study released Thursday, distributed denial of service protection services provider Prolexic outlined how it mitigated multiple SYN, GET and ICMP floods directed against different trading websites operated by online trading and financial company Henyep Capital Markets.
The case study follows the release of Prolexic’s Quarterly Global DDoS Attack Report, which found that the scale and diversity of attacks increased against its global client base in Q4 2012.
The case study details how the initial DDoS attack caused performance issues on multiple Henyep trading websites for 24 hours.
When the DDoS attackers demanded a ransom in exchange for putting an end to the attack, the company’s management turned to Prolexic to help protect their websites.
Prolexic’s mitigation engineers restored access to all services on the sites within minutes after routing traffic through Prolexic’s global scrubbing centers where they successfully removed any malicious traffic.
“Financial services companies like Henyep and their mission critical online services continue to be favorite targets of DDoS attackers,” said Prolexic president, Stuart Scholly. “It is vitally important to have DDoS mitigation services in place from a proven, experienced provider with the global resources and bandwidth capable of handling attacks well in excess of 50 Gpbs.”
Prolexic DDoS mitigation engineers in the U.S. quickly identified the initial attack as a SYN flood followed by multiple GET floods.
According to Prolexic’s records, the attack campaign peaked at 35.30 Mbps, 8.10 Kpps, and 122.00 Kconn over two days.
Throughout the attack campaign, Prolexic mitigation engineers were monitoring these attacks and counteracting the hacker’s changing attack vectors.
This allowed the Prolexic mitigation engineers to successfully thwart the attackers attempts to shut down the Henyep site, or disrupt its services.
Prolexic DDoS mitigation services also recently prevented DDoS attackers from taking down Henyep’s trading operations with a 30 Mbps ICMP flood and GET flood.
The full Henyep case study can be downloaded for free after registering on Prolexic’s website.
Talk back: Are you planning on downloading the Prolexic Technologies quarterly DDoS attack report? Do you find this kind of information helpful in determining how to mitigate attacks on clients’ sites? Have you seen an increase in the size of DDoS attacks? Let us know in a comment.