How DDoS Attacks Threaten Your Website

With the rapid growth of volumetric DDoS threats, even the largest networks, equipped with carrier grade hardware and with huge amounts of bandwidth at their disposal, are at risk of being taken down by a large DDoS attack. Over the past few months, we have seen a marked increase in DDoS activity where new reflection and amplification attack tools delivered a powerful punch. Q1 saw a 39 percent increase in average bandwidth and the largest-ever DDoS attack on the Akamai DDoS mitigation network. This attack involved multiple reflection techniques combined with a traditional botnet-based application attack to generate peak traffic of more than 200 Gbps (gigabits per second) and 53.5 Mpps (million packets per second). Bash Foo recently moved its hardware and network architecture to a newer data center in Lansing, Michigan where clients were outfitted with SSD, fault tolerant storage as well as a greater level of network and firewall filtering. These changes came at no small expense, and it still does not protect us or our clients from a very targeted, and intense volumetric DDoS attack. While our long-time clients have seen uptimes of 99.99% with very little of our time attributed to maintenance, in the coming months you will see a much greater amount of time attributed to patching IOS vulnerabilities to network and firewall architecture. These outages will come in the evening, and on weekends to mitigate service interruptions during peak use hours. These maintenance outages are occurring in order to prevent unplanned outages caused by these DDoS attacks.

What clients need to know

  1. These outages are going to be short, and can be recognized by slowness in response to webpage requests or failure of the page to load.
  2. The DDoS attacks are made internationally, yet they affect regions, and data centers differently. Amazon.com could be down due to a DDoS attack but CNN.com may not be.
  3. DDoS attacks do not impact data integrity, only server and network uptime. databases and your site data is backed up nightly to a private network storage unit.
  4. The vast majority of DDoS¬†attacks originate from Russia, China, and former Soviet bloc countries. We try our best to filter out traffic from these regions, however they often use domestic servers and PC’s to do their bidding as a part of this very coordinated and planned attack.
  5. If you are paying for proactive website/server maintenance ($129/mos) we are proactively patching your website in order to provide the very best in protection against DDoS attacks as vulnerabilities in software versions is the primary source of becoming a target for hackers.
  6. If you are not paying for proactive website/server maintenance, we will respond to patching of your site when changes are requested by you, on a time and materials basis. The average cost to repair a website that has been hacked is $600.

Web hosting is often the least looked at service we provide, however it often is the most important. Google search ranks based on things like page speed, site content, and availability. If your site is slow, or down because of a DDoS attack on it, your rankings will suffer. While it is true that you can obtain web hosting on a server at Go Daddy or 1&1 for $3.95/mos. we ask that you consider exactly what that is buying you. Small pipe, unprotected networks, unpatched and antiquated hardware and zero service.

Good luck out there people!


clutch logo

Our Certifications

Contact Us Today, for Better Digital Marketing Tomorrow

Let us know how Bash Foo can help your organization.

140 E. Broadway Ave.
Tipp City, OH 45371 USA