New hacker attacks emerge every day, and it appears that we have another one to deal with. This time, hackers are using a new type of distributed denial-of-service attack. The attackers use memcached servers in order to amplify these DDoS attacks. This way they are able to attack volumes of UDP traffic, sending large ones.
The entire technique was explained by Marek Majkowski, a CloudFlare engineer: “At peak we’ve seen 260 Gbps of inbound UDP memcached traffic. This is massive for a new amplification vector.” In some cases, there were attack volumes of 190 Gbps, but it has been reported that larger memcached attacks were also seen.
Google Secure Sockets Layer Policies
This week Google made an important announcement related to the Secure Sockets Layer Policies for HTTPS and SSL Proxy Load Balancers. This is a new capability and it comes with several advantages for the administrators. For example, they allow them to specify the profile of features Google’s load balancer, as well as the Transport Layer Security version.
This means that it will be easier to get organized, and the administrators will be able to handle different security needs that occur in the cloud in a more flexible way. David Gingold, a Google software engineer, offered us more details: “When you use a load balancer as an HTTPS or Transport Layer Security front end, you need to be able to control how it secures connections to clients.”
Basically, the new Secure Sockets Layer Policies will come with many benefits for the organizations, and they will be able to create a better connection with the clients. The feature that allows policy control will let the administrators decide how they want to manage the settings and how the load balancer negotiate.