Nearly two-thirds of retail banks experienced at least one distributed denial of service (DDoS) attack in the past year, according to a new survey. In a new report, (12-page/941KB PDF) commissioned by Corero Network Security, 64 per cent of 650 IT and IT security experts from 351 banks said a DDoS attack had been carried out on …
It's only fair
Most US bank customers were Dissed last year.
Banks, DDoS, Kettle, Black
It's because a) the world hates them and b) they're fairly incompetent when it comes to anything IT related and c) most of their jobs are outsourced to India.
Trust me; a, b and c are *completely unrelated*.
Seriously though they have to slavishly follow security rules where they can't get access to copious bandwidth at reasonable price - they have to overpay for very little bandwidth - very much like the government, so they're very easy targets. Being a publicly known name and an easy target is the end of you.
Does their misson statement exhort the imperative of reaching the entirety of the survey population?
"Organsations need to add first line of defence solutions that can provide this protection and are able to remove all of the ‘noise’ at the perimeter before it hits the network so that firewalls and servers can optimally work on the functions they were originally designed for," he added.
What the hell does he think a firewall is actually for?
The problem is that co-locating just a firewall at the ISP is rather expensive.
Most ISPs offer services that can filter a lot of the DDoS noise before it gets to your pipe. I don't think "all of the 'noise'" is appropriate, but it works fairly well. Modern DDoS attacks will cap your firewalls CPU pretty fast even if they aren't really using up the total bandwidth. Huge numbers of small packets from a lot of unique sources uses up resources fairly quickly.