If you have suddenly become a new victim of a DDoS attack, it can be difficult to know exactly what to do as the attack is happening. You may have prepared with a number of preventative measures, as well as backed up your data in the event that an attack may come, however as an attack is happening there are certain steps that you can take in order to minimize the amount of damage that a DDoS attack can have on your website.
Why DDoS attacks happen?
DDoS attacks occur for a variety of different reasons, and using many different methods. Hackers generally start DDoS attacks in order to challenge themselves, create anarchy, protest, and occasionally profit. There have been some businesses that have taken down competitors with the help of DDoS attacks for example.
Some websites have also been taken down by DDoS attacks because of their controversial content. In many cases hackers will band together for a cause or to simply take down a high profile website for notoriety.
How you can get caught in the crossfire
With many reasons for starting DDoS attacks, businesses can also fall victim even if they are unrelated to the website which is being attacked. Because this type of method will generally attacked servers, if your website is hosted on the same server you can experience the same type of downtime and malfunctions.
Here is a checklist on what to do if you feel as though you may be under DDoS attack:
- Determine if you are being attacked: check to see if all of your equipment is functioning normally. You may just be experiencing problems with your local Internet connection. You may also want to do a quick virus scan to see if that is part of the problem. Your computers may be running slow if they are infected with a virus.
- Determine how large the attack is: check through all of your appropriate services. If you cannot access your web mail, DNS server, entire network, or just your website this can help to determine the type of attack that you are being subjected to. If you are running your own server check to see what the load on the server is like. At this time it may be wise to call your service provider.
- Calling your service provider: if you have an IT department or the service provider for your website, it may be a good idea if you have identified a high CPU load on your server and you can no longer access any of your important web systems. They will be able to look into the attack and block many of the incoming connections to manage the threat.
- Turn on DDoS options with your equipment: at this time you can use your router to filter some of the incoming connections to your website. By using your firewall and your router you can filter a lot of the incoming connections with odd packets and half open connections to minimize the traffic coming in.
- Call an expert: if the attack is not leveled off after filtering some of the results and working with the service provider, consider calling an IT expert in for a special DDoS consultation. An expert in managing DDoS threats will be able to work at stopping the attack.
- Call the police: it’s not important to ask the police for help but to report the DDoS attack. DDoS attacks are illegal and are enforced under cyber crime laws. If you can provide evidence of the attacks there could be a chance that the people involved could be arrested and charged.
- Using new prevention methods: consider getting a security professional back into your business after the attack has finished to help upgrade your mitigation techniques and better prepare you in the event of another attack.
About the Author: Gene Wright
This article on DDoS protection was proudly presented by Gene Wright, a passionate technology writer, computer security expert and software testing professional. If you have a question on DDoS or DDoS protection, click to see the website and feel free to submit your feedback under the article.