It’s bad enough, the authors write, that these hosts can be victimized by existing attacks, but they can also facilitate new distributed denial-of-service (DDoS) amplification attacks, the researchers found. One concentrates traffic in time, while the other bundles packets between vulnerable hosts, resulting in a magnification factor of at least 16 and 75, respectively.
In addition, hosts can be hit by what the authors call an Economic Denial of Sustainability (EDoS) attack, in which a host’s outgoing bandwidth is throttled, or an Administrative Denial of Service, in which vulnerable hosts send traffic that causes the host to file an abuse report with the host’s ISP , which may lead to his account being suspended.
Self defense
However, CISOs are not immune, the paper says.
Source link