Stop security breaches
Stay two steps ahead. Protect against threats across devices—and identities, apps, email, data, and cloud workloads—and learn how to close gaps.
Secure your platforms, get leading security tools, and empower rapid response.
Cyberthreats can harm your business—both online and offline—in a variety of ways. Learn more about DDoS attacks and how to prevent them.
A distributed denial-of-service (DDoS) attack targets websites and servers by disrupting network services. A DDoS attack attempts to exhaust an application’s resources. The perpetrators behind these attacks flood a site with errant traffic, resulting in poor website functionality or knocking it offline altogether.
These types of attacks are on the rise: In the first half of 2021, Azure Networking reported a 25 percent increase in DDoS attacks compared to Q4 in 2020. From there, Azure mitigated upwards of 359,713 unique attacks against its global infrastructure during the second half of 2021—a 43 percent increase from the first half of the year.
DDoS attacks are wide-reaching, targeting all sorts of industries and companies of all sizes worldwide. With that stated, certain industries, such as gaming, ecommerce, and telecommunications, are targeted more than others. DDoS attacks are some of the most common cyberthreats, and they can potentially compromise your business, online security, sales, and reputation.
During a DDoS attack, a series of bots, or botnet, floods a website or service with HTTP requests and traffic. Essentially, multiple computers storm one computer during an attack, pushing out legitimate users. As a result, service can be delayed or otherwise disrupted for a length of time.
It’s possible that hackers can also infiltrate your database during an attack, accessing all kinds of sensitive information. DDoS attacks can exploit security vulnerabilities and be targeted at any endpoint that is reachable, publicly, through the internet.
Denial-of-service attacks can last hours, or even days. These cyber assaults can also cause multiple disruptions throughout a singular attack. Both personal and business devices are susceptible to them.
There are several different types of DDoS attacks. In general, a DDoS attack falls under three primary categories: volumetric attack, protocol attack, and resource layer attack.
Cyber-attackers might use one or multiple types of attacks against a network. For instance, an attack might start off as one class of attack and then morph into or combine with another threat to wreak havoc on a system.
Additionally, there are a variety of cyberattacks within each category. The number of new cyberthreats is on the rise, and expected to climb, as cybercriminals become more sophisticated.
If you suspect your network is under attack, it’s important that you act fast—on top of downtime, a DDoS attack can leave your organization vulnerable to other hackers, malware, or cyberthreats.
While there’s no one way to detect a DDoS attack, there are a few signs your network is under assault:
Modern software solutions can help determine potential threats. A network security and monitoring service can alert you to system changes so that you can respond quickly.
You also want to have a DDoS-attack action plan—with defined roles and procedures—so your team can take swift and decisive action against these threats. It’s important to remember that not all DDoS attacks are the same; you’ll need different response protocols in place to mitigate different attacks.
Before a cyberthreat is on your radar, you need to have a process for one in place. Preparedness is key to promptly detecting and remedying an attack.
You want to:
It’s essential that you boost your efforts with products, processes, and services that help you secure your business. That way, once a threat is detected, your team is knowledgeable and empowered to act on it.
Guard your network against future attacks. To help secure your business:
DDoS attack protection comes in many forms—from online resources to monitoring software to threat-detection tools. Learn how to thwart malicious attacks with the help of industry-leading, trusted Microsoft security experts.
Through securing your clouds and platforms, integrated security tools, and rapid response capabilities, Microsoft Security helps stop DDoS attacks across your entire organization.
Cyberthreats like DDoS attacks and malware can harm your website or online service, and negatively affect functionality, customer trust, and sales.
Detect, defend, and secure your organization. With integrated threat protection products and expert resources, you can better protect your business, online operations, and sensitive data. Learn more.
Protect your application from targeted cyberattacks.
Join this digital event to learn how to secure your organization with the latest innovations.
Learn how real-world deployments and attacks are shaping the future of Zero Trust strategies.
Explore comprehensive, AI-driven security for your organization.
Read the following so you can evaluate the features and capabilities of Microsoft 365 Defender.
Engage with The Microsoft Security Response Center, part of the defender community.
Defender for Cloud is a tool for security posture management and threat protection.
It delivers leading endpoint security for Windows, macOS, Linux, Android, iOS, and network devices.
Learn diverse and timely insights into cyberthreats to create successful defense strategies.
Get a window into malware activity around the world and across different industries.
When it comes to a DDoS attack, any size organization—from small to large and every size in between—is susceptible to cyberattacks. Even AWS thwarted a major attack in 2020.
Businesses with security gaps or vulnerabilities are especially at risk. Make sure you have updated security resources, software, and tools to get ahead of any potential threats. It’s essential for all businesses to protect their websites against DDoS attacks.
An example of a DDoS attack would be a volumetric attack, one of the largest categories of DDoS attacks. In this type of attack, a cybercriminal overwhelms a website with illegitimate traffic. As a result, the website might slow down or stop working, edging out real users who are trying to access the site.
On top of slow or otherwise disrupted service, DDoS attacks can negatively affect online security, brand trust, and sales.
No, a firewall alone is typically not enough to stop a DDoS attack. A firewall acts as a protective barrier against some malware and viruses, but not all of them. A firewall is helpful in protecting your computer against cyberthreats but can only offer so much protection. Therefore, it’s important that you incorporate other threat detection, prevention, and protection tools.
Cybersecurity refers to the people, software, tools, and processes that go into protecting networks, computers, and other cyberspace operations. This expansive field aims to protect users from malicious, illegal, or unauthorized access, as well as thwart DDoS attacks, malware, and viruses.
A DDoS attack can last anywhere from a couple of hours to a couple of days. One attack might last four hours, while another might last a week (or longer). DDoS attacks can also happen once or repeatedly over a period of time and consist of more than one type of cyberattack.
An Application Layer 7 attack is an example of a resource (application) layer attack. This type of cyber assault targets the top layer in the OSI (Open Systems Interconnection) model, attacking target web application packets to disrupt the transmission of data between hosts.