Website is down? Call us now, we can help!

Do you know why your web site or web application on the Internet is not available? Possibly there are some problems with the hardware, software or internet service provider, but it seems to be a denial-of-service attack (DoS).

DoS or DDoS?

Denial-of-service attack (DoS attack) is an attempt to make a website, server, application, specific service or even network unavailable to its intended users. Ordinary it results in direct financial losses specifically for electronic payment and banking systems, reputational damage and client dissatisfaction.

In today’s Internet Distributed Denial of Service (DDoS) attacks are widely used by cybercriminals. They occur when multiple compromised computer systems attack and flood the resources of a target computer system. The statistics and media show that the number of attacks is growing and nowadays it’s a criminal business.

You can monitor number of DDoS attacks for last 24 hours at: http://atlas.arbor.net/summary/dos

This information was obtained from Arbor Networks` ATLAS Initiative on (date) and permission to republish has been obtained. ATLAS initiative data is dynamic and therefore, the information may have changed since the date of publication of the data. © Arbor Networks, Inc. ALL RIGHTS RESERVED. Atlas is a trademark of Arbor Networks, Inc.

How you can deal with it?

There are different ways of fighting DoS and DDoS, for example:

  • Usage of complex tools like IPS, IDS and Firewalls and powerful hardware;
  • Replication of servers under one DNS and load balancing between them;
  • Redundant infrastructure;
  • Tunneling of all server requests to security service provide to receive a clean network traffic.

We can respond

Group-IB is specialized on protection from DoS and DDoS attacks. We have 24 hour, 7 days a week and 365 days per year Security Incident Response Team (SIRT) which is ready immediately response on DDoS attacks.

Practical example

The company was not protected from DDoS and contacted Group-IB for urgent service.

  • 2:00 am: phone call to our SIRT +7 (495) 661-5538, client said that his corporate Internet website is under DDoS attack;
  • 2:15 am: first information is gathered, client left his contacts and was given instructions to involve IT network engineers;
  • 2:30 am: analysis was done and our servers are ready to stop the DDoS;
  • 2:35 am: client is contacted by our SIRT, few technical instructions are given to clients IT network engineers;
  • 2:55 am: Client’s infrastructure is ready to redirect network traffic to our servers;
  • 4:00 am: Client is receiving users request without malicious traffic.
  • 5:00 am: DDoS attack is stopped.
  • 10:00 am: Group-IB and Client are discussing DDoS protection services. Client is requesting Group-IB to investigate incident and find the attacker and a customer.

Incident summary:

  • Reaction time on the incident: around 15 minutes after first contact;
  • Bandwidth per attack: around 20 Gbps;
  • Client involvement: provide required information, follow SIRT instructions;
  • Unavailability of service: 2 hours;
  • Duration of attack: around 3 hours;

For questions related to DDOS protection and attack investigation please visit our FAQ.