A reflection DDoS attack is a technique used to carry out distributed denial-of-service (DDoS) attacks in an amplified form. It works by sending malicious requests to vulnerable network services, causing these services to reflect the malicious requests back to the target of the attack, increasing the volume of traffic that the target has to deal with.
Reflection attacks are carried out using network protocols that have the ability to reflect or amplify the traffic sent to them. Some examples of protocols commonly used in reflection attacks include DNS, NTP, SNMP and SSDP.
By exploiting vulnerabilities in DNS servers, for example, the attacker can send fake DNS requests to vulnerable DNS servers, causing these servers to reflect the requests to the target of the attack. As a result, the target of the attack is flooded with a large amount of traffic, which can cause a denial of service.
It is important to note that reflection attacks are much more powerful than traditional DDoS attacks, as they amplify the traffic sent to the target of the attack, making it more difficult to defend. In addition, reflection attacks can be difficult to detect and block due to the distributed nature of the traffic.
And here at Master da Web, in addition to standard protection (100 Mbps, available on all services), we have Premium DDoS protection (1 Tbps) available for hire. Get in touch and find out more!
