SINGAPORE –\u00a0Media
\u00a0<\/p>\n According to the firm’s analysis, hackers can
\u00a0<\/p>\n “The potential risk from impending Black Storm
\u00a0<\/p>\n The pandemic witnessed a massive increase in
\u00a0<\/p>\n To help CSPs quickly launch anti-DDoS
\u00a0<\/p>\n Nexusguard’s DDoS threat research reports on
\u00a0<\/p>\n Read
\nOutReach<\/a>\u00a0– 5 October 2021 –\u00a0A new cyber threat, coined a “Black Storm” attack, could potentially
\nwreak havoc on communications service provider (CSP) networks, according to new
\ndistributed denial-of-service (DDoS) research from Nexusguard<\/a>:
\n
\nNew Threat to CSP Networks \u2013 The Impending “Black Storm.”<\/a> While DDoS
\namplification attacks rely on DNS servers or other similar open services to
\ninterrupt connectivity, a Black Storm attack can leverage any device connected
\nto the Internet. Researchers caution that the volume from one Black Storm
\nattack could terminate medium to large-sized enterprises in a clean sweep and
\nseverely cripple a large-scale CSP network.<\/p>\n![](\"https:\/\/images.media-outreach.com\/Thumb\/500x0\/182876\/Nexus.jpg#image-182876\")
<\/p>\n
\nachieve Black Storm attacks more easily than amplification attacks, which could
\nquickly dominate the cyberworld. Black Storm attacks could be manifested by
\nhackers employing a BlackNurse attack in a reflective manner (rBlackNurse
\nattacks).
\nspoofed UDP requests to CSP devices’ closed UDP ports\u2014a reflection of the ping
\nreplies returned t
\nnetwork ping sources in BlackNurse attacks\u2014the devices respond with destination
\nport unreachable responses. As more devices continue to respond to the spoofed
\nIP source, the volume of responses completely overwhelms the target CSP network
\nand creates the Black Storm attack. Nexusguard advises CSPs
\nscanning, apply access control to routers and use deep learning-based detection
\nmethods. Deep learning approaches can help CSPs analyze huge amounts of data
\nquickly and accurately while overcoming the inefficiencies inherent in
\nthreshold or signature-based methods.<\/p>\n
\nattacks could obliterate individual enterprises and have devastating
\nconsequences for communications service providers and completely saturate their
\nnetworks,” warned Juniman Kasman, chief technology officer for Nexusguard.
\n“Networks targeted by these attacks need to apply deep learning
\ntraffic patterns and identify Black Storm attacks well before they can be
\nexploited.”<\/p>\n
\nreliance on connectivity as well as a 341% increase in DDoS attacks in 2020<\/a>, which
\nstrained CSPs and internet service providers (ISPs) that provide the networks
\nfor the new levels of remote work. Nexusguard researchers caution that CSPs and
\nother organizations that rely on standard DDoS mitigation solutions designed to
\ndetect and mitigate incoming traffic risk missing internal traffic issues,
\nwhich can arise from rBlackNurse traffic proliferating internally within CSP
\nnetworks. <\/p>\n
\ncapabilities to protect customers, Nexusguard launched the TAP100
\nProgram<\/a>, which removes the hardware barriers associated with typical
\nanti-DDoS service ramp-up, allowing CSP product teams and C-suites to capture
\nnew revenue opportunities and ensure superior customer service.<\/p>\n
\nattack data from botnet scanning, honeypots, CSPs and traffic moving between
\nattackers and their targets to help companies identify vulnerabilities and stay
\ninformed about global cyber security trends.<\/p>\n
\nwhite paper<\/a> for more details.<\/p>\n