November 27, 2006 10:57 AM PST

Security from A to Z: DDoS

A denial-of-service (DoS) attack aims to render a Web resource unavailable to its everyday users.

It works by flooding a Web server with more requests to serve a Web page than it can handle. That means that during the attack period, the hosted site will be dramatically slower to load or may not load at all.

Another type of DoS attack, known as an "e-mail bomb," targets an organization's servers by sending more e-mail than the systems can handle.

The A to Z of security
Read the first part in our rundown of hot security topics, from antivirus to zero-day threats.

A distributed denial-of-service attack (DDoS) is when multiple compromised PCs are used to overwhelm a Web site's bandwidth or resources. The machines used in such attacks are collectively known as a botnet, or zombie network, and will have previously been infected with malicious software, meaning they can be remote-controlled by the attacker.

The cybercriminal fraternity uses denial-of-service attacks as a weapon to blackmail e-commerce businesses, which rely on their Web sites being accessible in order to make money. Online gambling sites are popular targets, due to the nature of their business and the lure of ready money. But attacks are not always financially motivated. Perpetrators can simply be seeking to cause disruption or make a name for themselves.

Natasha Lomas reported for in London.

See more CNET content tagged:
distributed denial of service, denial of service, attack, security, server


Join the conversation

Add your comment

The posting of advertisements, profanity, or personal attacks is prohibited. Click here to review our Terms of Use.

What's Hot



RSS Feeds

Add headlines from CNET News to your homepage or feedreader.