November 27, 2006 10:57 AM PST
Security from A to Z: DDoS
- Related Stories
Security adviser: Cyberthreats keep growingNovember 22, 2006
U.K. outlaws denial-of-service attacksNovember 10, 2006
Another denial-of-service bug found in Firefox 2November 1, 2006
Florida man charged in botnet attack on AkamaiOctober 24, 2006
Blue Security attack linked to blog crashesMay 4, 2006
It works by flooding a Web server with more requests to serve a Web page than it can handle. That means that during the attack period, the hosted site will be dramatically slower to load or may not load at all.
Another type of DoS attack, known as an "e-mail bomb," targets an organization's servers by sending more e-mail than the systems can handle.
A distributed denial-of-service attack (DDoS) is when multiple compromised PCs are used to overwhelm a Web site's bandwidth or resources. The machines used in such attacks are collectively known as a botnet, or zombie network, and will have previously been infected with malicious software, meaning they can be remote-controlled by the attacker.
The cybercriminal fraternity uses denial-of-service attacks as a weapon to blackmail e-commerce businesses, which rely on their Web sites being accessible in order to make money. Online gambling sites are popular targets, due to the nature of their business and the lure of ready money. But attacks are not always financially motivated. Perpetrators can simply be seeking to cause disruption or make a name for themselves.
Natasha Lomas reported for Silicon.com in London.