Zero-day vulnerability in LDAP amplifies DDoS attacks

by | Oct 28, 2016

ETIQUETAS: Hot news | Security

Corero Network Security identified a zero-day vulnerability in LDAP protocol that enables to amplify Distributed Denial of Service attacks (DDoS) 50 times, making them much more effective and much more difficult to mitigate.

This protocol, mainly used in Windows Server Active Directory administration tool has become an ally for cybercriminals, that leverage vulnerable servers supporting LDAP to bounce junk traffic to a server with a single IP address, so the service is overcrowded and stops working.

Apart from LDAP, attackers use other protocols to increase the scope of their DDoS offensives. Last year the most used were NetBIOS, RPC, Sentinel, DNSSEC and TFTP.

Source: Redes Zone



Submit a Comment

Your email address will not be published. Required fields are marked *

Recent posts

VDI: The most secure environment for hybrid working

Today is Data Privacy Day. The purpose of this date is to raise awareness and promote privacy and data protection best practices. It was initiated by the European Commission, the Council of Europe, and the Data Protection authorities of the European Union’s member states. Their main goal was to drive attention to the importance of privacy, user data protection, and compliance of the General Data Protection Regulation (RGPD). It is a regulation characterized by significant fines for non-compliance since its implementation in 2018.

How to avoid issues with virtual machines

Virtualization comes with a wide range of benefits for organizations. It helps cut IT costs and reduces downtime while increasing efficiency and productivity. It also increases the resiliency of networks, primarily when disasters occur, and promotes more green-friendly operations.

However, using virtual machines also comes with a set of downsides. Information security may get compromised, workloads mixed up, separation duties lost, among other issues. It is vital to know how you can get over these problems, and that’s what this article will discuss.

Let’s get started.

Top 5 articles on VDI technology of the year 2021

After the Christmas holidays, we return to our blog posts, looking back and reviewing the most read news during the year that just ended. As you may know, the main topic we deal with is desktop virtualization (VDI), although we also echo articles on virtualization in general, cybersecurity or Open Source that may be interesting for our audience. The news about our UDS Enterprise VDI software, virtual applications and remote access take on special prominence, as well as the announcements related to our partner channel and our technological alliances.


Stay up to date with all the news from UDS ENTERPRISE through our social networks. Follow us!

Skip to content