Netscout Adaptive DDoS Protection to battle Water Torture attacks

Netscout Adaptive DDoS Protection to battle Water Torture attacks

According to the most recent NETSCOUT DDoS Threat Intelligence Report, Domain Name System (DNS) ‘water torture’ attacks increased 353% in the first six months of 2023, overwhelming Authoritative DNS server resources and bringing down critical DNS services. NETSCOUT SYSTEMS, INC, a provider of DDoS prevention services, today launched Adaptive DDoS Protection for Arbor Edge Defense (AED) to protect ISPs and enterprises from these DNS water torture attacks.

“DNS water torture DDoS attacks have been around since 1997, yet many organizations still struggle to efficiently identify and mitigate them,” said John Grady, Principal at Enterprise Strategy Group. “These attacks send invalid requests to an Authoritative DNS server to slow it down and prevent legitimate requests from getting a response. Security teams cannot broadly block this traffic without potentially impacting valid requests due to the pervasiveness of DNS and can easily misdiagnose an attack as a performance issue. NETSCOUT’s Adaptive DDoS Protection auto-learns and adapts to changes in DNS server configuration, enabling AED to identify and mitigate these attacks.”

DNS water torture is one of many attack techniques threat actors can adopt to assault DNS infrastructure, protection needs to be scalable and constantly operational. According to NETSCOUTS’ recent announcement, the Adaptive DDoS protection system is:

  • Auto-learning legitimate hostnames for each domain by continually analyzing DNS query and response packets
  • Adapting to DNS server configuration changes to prevent blocking legitimate domains and changes to attack techniques
  • Intelligently blocking DNS water torture IP sources on a query-by-query basis

“Adaptive DDoS Protection for AED provides customers with a unique hybrid multi-layer DDoS defence architecture,” said Scott Iekel-Johnson, AVP, DDoS and Threat Intelligence at NETSCOUT. “It can learn and filter millions of legitimate hostnames and thousands of domains backed by our ATLAS® Intelligence Feed (AIF) to thwart modern-day attacks and advanced threats.”

To learn more about Adaptive DDoS Protection for AED, visit our website.

Register for Intersec Dubai 2024