{"id":5728,"date":"2021-12-02T13:25:32","date_gmt":"2021-12-02T13:25:32","guid":{"rendered":"https:\/\/www.acefone.com\/blog\/?p=5728"},"modified":"2026-04-03T06:31:01","modified_gmt":"2026-04-03T06:31:01","slug":"protection-against-ddos-attacks","status":"publish","type":"post","link":"https:\/\/www.acefone.com\/blog\/protection-against-ddos-attacks\/","title":{"rendered":"DDoS Attacks: What are They and How to Secure your Systems Against One"},"content":{"rendered":"<p><span style=\"font-weight: 400;\">In the world of cybercrime, targeting of businesses is commonplace.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">It is not just large businesses that are threatened by such attacks. Unfortunately, whether an organisation is big or small, the vulnerability exists. And it is important to be cognizant of disruptions that such attacks can bring about.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">This is certainly an important topic for both\u2014your enterprise cloud phone system as well as your overall business.\u00a0\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Read on as you build your strategy against DDoS attacks.<\/span><\/p>\n<h2>What is a DDoS attack and what are its symptoms?<\/h2>\n<p><span style=\"font-weight: 400;\"><a class=\"acefone_web_click\" href=\"https:\/\/en.wikipedia.org\/wiki\/Denial-of-service_attack\" target=\"blank\" rel=\"nofollow noopener noreferrer\">DDoS<\/a> stands for Distributed Denial of Service. In simpler terms, DDoS refers to a digital attack that renders a service unavailable for users.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In cyberattacks, this happens when a system on the Internet begins to send a targeted overload of requests or malware to a web server.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">When such malware or malicious requests come in from multiple systems connected on the Internet, we call it Distributed Denial of Service or DDoS.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The modus operandi of attackers is simple\u2014swarm a web server with an extraordinarily large number of requests for a page or a barrage of queries to a database.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In both cases, attackers choke either the bandwidth or resources of the web server like CPU or the available RAM.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Invariably, there are initial symptoms such as a possible break in the network or just a server going down. Only an analysis of the traffic gives real insights into the severity of the attack.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Now, the drop in services can happen due to the unavailability of either or some of the following:<\/span><\/p>\n<ol>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Servers\u00a0<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Attached devices<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Applications<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Networks<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Certain types of transactions in applications\u00a0<\/span><\/li>\n<\/ol>\n<p><span style=\"font-weight: 400;\">When a web server comes under such an attack, the disturbance may range from a denial of service for a short period of time to something as severe as the whole system crashing.\u00a0<\/span><\/p>\n<h2>Types of DDoS attacks<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-5740 aligncenter\" src=\"https:\/\/www.acefone.com\/blog\/wp-content\/uploads\/2021\/12\/types-of-ddos-attacks.jpg\" alt=\"Types of DDoS Attacks\" width=\"738\" height=\"376\" \/><\/p>\n<p><span style=\"font-weight: 400;\">While such attacks can come camouflaged in a multitude of ways, they all have the same underlying objective\u2014to choke the resources to a point where access becomes extremely slow or completely unavailable.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">These attacks can broadly be classified into three key types:<\/span><\/p>\n<ul>\n<li aria-level=\"1\">\n<h3>Volume attacks<\/h3>\n<\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">Measured in bits per second, or BPS, such attacks happen through huge volumes of malicious traffic targeting a web server or a particular website\u00a0<\/span><\/p>\n<ul>\n<li aria-level=\"1\">\n<h3>Attacks on network layer<\/h3>\n<\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">Network layer attacks are measured in packets per second or PPS. They involve an extraordinarily large number of packets sent to the targeted infrastructure. The points of such attacks are the network management tools and\/or the network infrastructure itself<\/span><\/p>\n<ul>\n<li aria-level=\"1\">\n<h3>Attacks on application layer<\/h3>\n<\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">Measured in requests per second, or RPS, these attacks are created with malicious intent and send a flood of requests targeting a specific application<\/span><\/p>\n<h2>Key tips for mitigating DDoS attacks<\/h2>\n<p><span style=\"font-weight: 400;\">DDoS attacks have been around for almost two decades now and have evolved over time. They are now sharper, more incisive and, as we have seen, come in different forms.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Let us review some tips that will help you minimise the impact of such attacks. These are relevant for all aspects of your business, starting with your <a class=\"acefone_web_click\" href=\"https:\/\/www.acefone.com\/blog\/cloud-services-benefitting-it-industry\/\" target=\"_blank\" rel=\"noopener noreferrer\">cloud system<\/a>.<\/span><\/p>\n<ul>\n<li aria-level=\"1\">\n<h3>Plan ahead<\/h3>\n<\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">From the different types of attacks listed above, we know that primary vulnerabilities show up in the network infrastructure, connected devices, and applications.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">This step is all about accepting the fact that an attack is inevitable, sooner or later. And thus, planning a suitable response in advance.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In other words, the first step, and possibly the most important one, is to create a plan that an organisation can put into action almost immediately to fight the attack.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Such plans are usually referred to as emergency responses. One should identify points of vulnerability in all three components, seek expert advice and document the plan during the initial set-up itself.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Following need to be part of the plan for appropriate mitigation:<\/span><\/p>\n<ol>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">A disaster recovery plan (DRP) including fail-over networks in case the DDoS attack actually takes over the entire system<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Infrastructure diversity\u2014both in the type of components used in infrastructure and their geographical deployment<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Using a combination of <a class=\"acefone_web_click\" href=\"https:\/\/www.acefone.com\/blog\/private-cloud-vs-public-cloud-which-is-better-for-your-business\/\" target=\"_blank\" rel=\"noopener noreferrer\">private and public cloud systems<\/a><\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">For enterprises, it makes sense to integrate their network and application teams for a cohesive plan, with suitable escalation mechanisms that kick in when the attack actually occurs\u00a0\u00a0<\/span><\/li>\n<\/ol>\n<p><span style=\"font-weight: 400;\">An effective way that is used by enterprises is to have a larger number of wide-area network (WAN) entry points. They also enlist cloud scrubbing service providers in order to re-route such attacks to scrubbers.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">We will talk about such service providers further in the article.\u00a0<\/span><\/p>\n<ul>\n<li aria-level=\"1\">\n<h3>Refinements and adjustments<\/h3>\n<\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">Attackers with obvious malicious intent are getting smarter and more innovative. They are now able to modify attacks based on the responses of companies.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In real-time, they are able to attack from a different IP, a different port, or even a different protocol. It is thus important to continuously adjust and refine the response to such attacks.<\/span><\/p>\n<ul>\n<li aria-level=\"1\">\n<h3>Agreements with mitigation and protection service providers<\/h3>\n<\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">There is a lot that companies can do themselves to establish an operational response plan. However, to augment their efforts, it is advisable to take help from service providers in this domain.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\"><span data-olk-copy-source=\"MessageBody\">On one hand, a business gets the benefit of advice from domain experts; their services are also more affordable than putting it all together. Leading platforms that specialise in filtering malicious traffic, such as the cloud-based DDoS mitigation platform, <a href=\"https:\/\/www.imperva.com\/learn\/ddos\/anti-ddos-protection\/\" target=\"_blank\" rel=\"noopener noreferrer\">can absorb volumetric surges<\/a> before they ever reach your network. The other benefit is that these service providers also collaborate within themselves and are, thus, ahead on the knowledge curve.<\/span><\/span><\/p>\n<p><span style=\"font-weight: 400;\">Even if you\u2019re signing up for external service providers, you can still monitor everything in-house to ensure alertness in case of abnormal traffic.\u00a0<\/span><\/p>\n<ul>\n<li aria-level=\"1\">\n<h3>Onsite devices are never enough<\/h3>\n<\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">However powerful or secure onsite devices like <a href=\"https:\/\/www.acefone.com\/blog\/using-firewall-to-secure-voip-system\/\">firewalls<\/a>, load balancers or even systems for prevention of intrusion may be, the fact is that they may not be able to block off all types of attacks.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">While these tools are extremely crucial in setting up defensive measures, there are certain inherent vulnerabilities that attackers can target despite these protections.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The key here is to handle such attacks before they land on your on-site devices. Services offered by third party providers come in handy while diverting the attacks away from the main site.\u00a0<\/span><\/p>\n<ul>\n<li aria-level=\"1\">\n<h3>On-site actions for application layer<\/h3>\n<\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">For the application layer, network mitigations may not be successful as targeted attacks on certain applications can still go through on-site protection devices.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">For these applications, you will need tools for web protection in your <a class=\"acefone_web_click\" href=\"https:\/\/www.acefone.com\/blog\/benefits-multiple-data-centres\/\" target=\"_blank\" rel=\"noopener noreferrer\">data center<\/a>.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Such tools enable you to conduct deep inspections at packet levels to view the application layer. These are possibly the best mitigation tips for attacks on individual applications.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Another approach is to deploy application redundancy through multiple cloud systems. This way, in the event of an attack on the application, you can always switch to another cloud network.<\/span><\/p>\n<ul>\n<li aria-level=\"1\">\n<h3>Collaborate<\/h3>\n<\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">It will be helpful to share information and mitigation plans with companies in the same industry or domain.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Collaboration on a topic like this, with mutual sharing of knowledge and information, will be immensely helpful to all participants. Your telecom service providers are the other party that you can collaborate with as you plan and refine your responses to DDoS attacks.<\/span><\/p>\n<ul>\n<li aria-level=\"1\">\n<h3>Remain vigilant, especially for secondary attacks<\/h3>\n<\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">Another trend that is becoming more common is a more targeted or sustained attack following an initial DDoS attack. In other words, the first attack may just be a distraction to something bigger.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">DDoS attacks may just be deployed to create a panic situation, while a backdoor application gets targeted to extract more valuable data.<\/span><\/p>\n<h4>Conclusion<\/h4>\n<p><span style=\"font-weight: 400;\">Attackers do not just target large enterprises. They can target all types of businesses, whether large or small.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Your <a class=\"acefone_web_click\" href=\"https:\/\/www.acefone.com\/solutions\/cloud-phone-system\/\" target=\"_blank\" rel=\"noopener noreferrer\">cloud phone system<\/a>, or even upstream providers like telecom, are equally vulnerable. In certain instances, attackers have also taken an indirect route to target a particular company\u2019s information.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">We have reviewed the different types of attacks and how they may be multi-pronged, increasing the scale of their impact.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Planning for mitigation is simpler than it may seem. There are domain experts that can offer invaluable advice to keep you and your data secure.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The bottom line is to plan, review, refine, and evolve. And this needs to keep pace with the evolution of sophisticated attackers.\u00a0<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>In the world of cybercrime, targeting of businesses is commonplace.\u00a0 It is not just large businesses that are threatened by such attacks. Unfortunately, whether an organisation is big or small, the vulnerability exists. And it is important to be cognizant of disruptions that such attacks can bring about.\u00a0 This is certainly an important topic for [&hellip;]<\/p>\n","protected":false},"author":36,"featured_media":26300,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[121,114,115],"tags":[],"class_list":{"0":"post-5728","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-editors-choice","8":"category-business-communications","9":"category-cloud-telephony"},"_links":{"self":[{"href":"https:\/\/www.acefone.com\/blog\/wp-json\/wp\/v2\/posts\/5728","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.acefone.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.acefone.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.acefone.com\/blog\/wp-json\/wp\/v2\/users\/36"}],"replies":[{"embeddable":true,"href":"https:\/\/www.acefone.com\/blog\/wp-json\/wp\/v2\/comments?post=5728"}],"version-history":[{"count":6,"href":"https:\/\/www.acefone.com\/blog\/wp-json\/wp\/v2\/posts\/5728\/revisions"}],"predecessor-version":[{"id":26104,"href":"https:\/\/www.acefone.com\/blog\/wp-json\/wp\/v2\/posts\/5728\/revisions\/26104"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.acefone.com\/blog\/wp-json\/wp\/v2\/media\/26300"}],"wp:attachment":[{"href":"https:\/\/www.acefone.com\/blog\/wp-json\/wp\/v2\/media?parent=5728"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.acefone.com\/blog\/wp-json\/wp\/v2\/categories?post=5728"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.acefone.com\/blog\/wp-json\/wp\/v2\/tags?post=5728"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}