What is a ddos attack?

It is not only good to know what it is about. It is also important for users to know how they work. In this way they will be able to detect them, but also work on their prevention. Or know how to stop it. Aspects that are also essential for us.

You have probably heard in some media that DDoS attacks are a means of protest. Is it really so? We will answer questions like this below. But, first of all, it is important that we know exactly what a DDoS attack is.

What is it?

DDoS, as some of you already know, is an acronym for Distributed Denial of Service. If we translate this into Spanish, it means “distributed denial of service attack”. Although, the most real and correct definition that we can give about this type of attack is that it is an attack that is based on attacking a server from many computers so that said server stops working.

That is basically the main way in which we can define this type of attack and that sums up the operation of the attacks in a quite correct way. When we refer to many computers in the definition of this type of attack, we say a high number. A normal server has a certain capacity. You can service and support a certain number of computers (depends on the server). As the number of computers on that server increases, its speed decreases. Something that will happen if more and more are added. Until finally a point comes when it is unable to respond to all those computers. Therefore, the server hangs and stops working.

We recommend: Differences between viruses, worms, Trojans and much more

It may be the case that the server is turned off directly. There are also others where it stops responding connections. But, in both cases the server will not work normally again until said attack stops. For the attack to stop, two things can happen. Either the attackers themselves have stopped, or there is another option. It may have been possible to block illegitimate connections.

This is the main definition about a DDoS attack and the way it works. Said in a way as simple as possible. Although, it must also be said that a DDoS attack can be modified in various ways to make it more effective. There are ways like sending data very slowly so that the server consumes more resources per connection.

How is a DDoS attack carried out?

The concept of this type of attack is simple as you can see. With a large number of people connecting, it is relatively easy to carry out a DDoS attack. Although, the attacks are becoming more sophisticated and complex over time. Attackers bet on other ways to carry out a DDoS attack. So that in this way it is more effective.

There are more and more techniques that make it possible. Packets can be modified by putting a false IP, therefore, the attacker cannot be detected. Another way is with the use of botnets. They are networks of computers infected by a Trojan and that the attacker or attackers can control remotely. By doing this, this type of DDoS attack is being carried out by people who do not know that they are really participating. Which is undoubtedly dangerous, since it will have to be shown that the computer was being controlled by someone else. This makes finding the real attacker very complex.

Therefore, as you can see, DDoS attacks are becoming much more complex. Which not only makes them much more effective. It also makes it more difficult to fight them. And also that it is increasingly difficult to track the people who carry out these types of attacks. Which without a doubt is the nightmare of many security agencies.

What are the effects of a DDoS attack on a website?

In general, each attack is different and so are its effects. It depends on the attack and the server must also be taken into account. They are getting better prepared, and also, it is possible to protect a server with filters to reject false IPs. In this way, only true IPs will reach the server. This can certainly help to prevent an attack, and also to be able to know who carried it out should it occur.

We recommend: what it is and how a Ransomware works

Logically, these measures are not enough. If many people organize it, they can carry out an attack if they plan it correctly. Traffic during an attack needs to massively outnumber the regular traffic that the server owns. That way, it is when you know that the attack is effective or is going to really affect the operation of the server in question.

Generally when an attack occurs, the server will be saturated. It is most likely. This means that it will cease to be available until said attack ends. Even if it doesn't work, there is almost never physical damage to the server. Therefore, a DDoS attack the most it achieves is a crash from the web. Obviously this can be very serious depending on the type of website it is. There are web pages that can have millions of losses if they are victims of a DDoS attack. Think of companies like Amazon or AliExpress, and the large amount they can lose if their website does not work for a few hours or a day.

What happens in the case of an informative website?

To a company that makes money with your page, a DDoS attack can be a huge waste of money. But in the case of a website that simply seeks to inform, the case is different. Put the website of a public institution (ministry or university). A website where information is given to users. If the web doesn't work for a while because there is a DDoS attack preventing it, they don't lose money. Users simply cannot view such information.

Therefore, the effect in this case is not too noticeable. Therefore, those who hide in saying that a DDoS attack is a means of protest, have little reason to say so. It does not have the desired effect or, and also, all it does is generate a bad image of those who have carried it out. And it will undoubtedly affect the cause for which they are protesting, however laudable and justified the cause may be. Therefore, such an attack is not a good means of protest. Furthermore, with the increasing security measures and new legal frameworks that we are seeing, there are people who are exposed to fines or other penalties for such an attack. So it is not worth it either. What do you think about DDoS attacks?