Contact
QR code for the current URL

Story Box-ID: 575686

Gartner UK Ltd Tamesis, The Glanty Egham TW20 9 Surrey http://www.gartner.com
Contact Ms Marina Lovric +49 89 99837010
Company logo of Gartner UK Ltd
Gartner UK Ltd

Gartner Says 25 Per Cent of Distributed Denial of Services Attacks in 2013 Will Be Application-Based

(PresseBox) (Stamford, Conn., )
.
- E-Commerce and Financial Services Companies to Be Hit by Increasingly Sophisticated Attacks and Attackers in 2013
- Analysts to Discuss How to Fight Internal and External Threats at the Gartner Identity Access & Management Summit 2013, 11-12 March in London

Twenty-five per cent of distributed denial of service (DDoS) attacks that occur in 2013 will be application-based, according to Gartner, Inc. During such incidents, attackers send out targeted commands to applications to tax the central processing unit (CPU) and memory and make the application unavailable.

"2012 witnessed a new level of sophistication in organised attacks against businesses across the globe, and they will grow in sophistication and effectiveness in 2013," said Avivah Litan, vice president and distinguished analyst at Gartner. "A new class of damaging DDoS attacks and devious criminal social-engineering ploys were launched against US banks in the second half of 2012, and this will continue in 2013 as well-organised criminal activity takes advantage of weaknesses in people, processes and systems."

Gartner has identified some of the top 2013 criminal trends and potential safeguards and solutions for firms at risk of attack.

High-bandwidth DDoS attacks are becoming the new norm and will continue wreaking havoc on unprepared organisations in 2013

A new class of damaging DDoS attacks was launched against US banks in the second half of 2012, sometimes adding up to 70 Gbps of noisy network traffic blasting at the banks through their internet pipes. Until this recent spate of attacks, most network-level DDoS attacks consumed only five Gbps of bandwidth, but more recent levels made it impossible for bank customers and others using the same pipes to get to their web sites.

"To combat this risk, organisations need to revisit their network configurations, and rearchitect them to minimise the damage that can be done," said Ms Litan. "Organisations that have a critical web presence and cannot afford relatively lengthy disruptions in online service should employ a layered approach that combines multiple DOS defences."

Hackers use DDoS attacks to distract security staff so that they can steal sensitive information or money from accounts

Organisations subject to DDoS attacks should take steps to mitigate potential damage from these attacks. In particular, Gartner advocates cooperation with industry associations to share intelligence that can be acted on collectively and quickly, as well as investment in fraud prevention technology and the strengthening of organisational processes.

People continue to be the weakest link in the security chain, as criminal social engineering ploys reach new levels of deviousness in 2013

In 2012, several different fraud scams that took social engineering tactics to new heights of deviousness have been reported, including criminals approaching people in person as law enforcement or bank officers to help them through account migration that then comprised their bank accounts.

Gartner recommends deploying layered fraud prevention and identity-proofing techniques to help stop the social engineering attacks from succeeding. In particular, fraud prevention systems that provide user or account behavioural profiling and entity link analysis are useful in these cases. Call centre call analytics and fraud prevention software can be deployed to help catch fraudsters committing crimes via social engineering or by using stolen identities. Customers should also be educated on best security practices to help them avoid phishing attacks and social engineering ploys.

More detailed analysis is available in the report "Arming Financial and E-Commerce Services Against Top 2013 Cyberthreats" The report is available on Gartner's website at http://www.gartner.com/....

More information on security solutions and management will be presented at the Gartner Identity & Access Management Summit 2013 taking place 11-13 March in London, UK. More information can be found at europe.gartner.com/iam. Members of the media can register to attend the event by contact Rob van der Meulen at rob.vandermeulen@gartner.com.

Information from the Gartner IAM Summit 2013 will be shared on Twitter at http://twitter.com/... using #GartnerIAM.

Gartner analysts will also look at the outlook for security solutions at the Gartner Security & Risk Management Summit 2013 taking place 10-13 June in National Harbor, MD and 18-20 September in London, UK. More information on the US event can be found at www.gartner.com/us/itsecurity. Details on the UK event are at europe.gartner.com/security. Members of the media can register for press passes to the Summits by contacting christy.pettey@gartner.com (US), or laurence.goasduff@gartner.com (UK).

Information from the Gartner Security & Risk Management Summits 2013 will be shared on Twitter at http://twitter.com/... using #GartnerSEC.

Website Promotion

Website Promotion

Gartner UK Ltd

Gartner, Inc. (NYSE: IT) is the world's leading information technology research and advisory company. Gartner delivers the technology-related insight necessary for its clients to make the right decisions, every day. From CIOs and senior IT leaders in corporations and government agencies, to business leaders in high-tech and telecom enterprises and professional services firms, to technology investors, Gartner is a valuable partner in 12,400 distinct organisations. Through the resources of Gartner Research, Gartner Executive Programs, Gartner Consulting and Gartner Events, Gartner works with every client to research, analyze and interpret the business of IT within the context of their individual role. Founded in 1979, Gartner is headquartered in Stamford, Connecticut, USA, and has 5,300 associates, including 1,390 research analysts and consultants, and clients in 85 countries. For more information, visit www.gartner.com.

The publisher indicated in each case (see company info by clicking on image/title or company info in the right-hand column) is solely responsible for the stories above, the event or job offer shown and for the image and audio material displayed. As a rule, the publisher is also the author of the texts and the attached image, audio and information material. The use of information published here is generally free of charge for personal information and editorial processing. Please clarify any copyright issues with the stated publisher before further use. In case of publication, please send a specimen copy to service@pressebox.de.
Important note:

Systematic data storage as well as the use of even parts of this database are only permitted with the written consent of unn | UNITED NEWS NETWORK GmbH.

unn | UNITED NEWS NETWORK GmbH 2002–2024, All rights reserved

The publisher indicated in each case (see company info by clicking on image/title or company info in the right-hand column) is solely responsible for the stories above, the event or job offer shown and for the image and audio material displayed. As a rule, the publisher is also the author of the texts and the attached image, audio and information material. The use of information published here is generally free of charge for personal information and editorial processing. Please clarify any copyright issues with the stated publisher before further use. In case of publication, please send a specimen copy to service@pressebox.de.