Posted on Nov 14, 2016
Even A Single Computer Can Take Down Big Servers Using BlackNurse Attack
1.11K
4
3
4
4
0
Cisco seems to be (mostly) the pet target of this hack, but BlackNurse almost strikes me as a tentative first wave attack instead of the real deal. Time will tell.
Here's an extra bit of backup:
https://isc.sans.edu/diary/ICMP+Unreachable+DoS+Attacks+%28aka+%22Black+Nurse%22%29/21699
http://www.netresec.com/?page=Blog&month=2016-11&post=BlackNurse-Denial-of-Service-Attack
Here's an extra bit of backup:
https://isc.sans.edu/diary/ICMP+Unreachable+DoS+Attacks+%28aka+%22Black+Nurse%22%29/21699
http://www.netresec.com/?page=Blog&month=2016-11&post=BlackNurse-Denial-of-Service-Attack
Even A Single Computer Can Take Down Big Servers Using BlackNurse Attack
Posted from thehackernews.com
Hacking
Internet
Computers
Technology
Cybersecurity
Posted 8 y ago
Responses: 3
0
0
0
Very interesting thought on attacking networks... instead of launching attacks that focus on high bandwidth consumption, instead focus on high CPU consumption.
This train of thought could be spread to other things: Identify a content or traffic filter (snort) and keep hitting it with traffic that invokes computationally expensive rules in hopes that the device fails open.
One step further and the human factor comes into play. Invoke an attack that makes the IDS to fire off a bunch of emails to the human factor that are false positives, or appear to be false positives. The human factor will likely review the notices and realize they are false positives and begin to ignore. Slip through an attack that is likely to slip between the cracks and not be initially noticed.
This train of thought could be spread to other things: Identify a content or traffic filter (snort) and keep hitting it with traffic that invokes computationally expensive rules in hopes that the device fails open.
One step further and the human factor comes into play. Invoke an attack that makes the IDS to fire off a bunch of emails to the human factor that are false positives, or appear to be false positives. The human factor will likely review the notices and realize they are false positives and begin to ignore. Slip through an attack that is likely to slip between the cracks and not be initially noticed.
(0)
(0)
0
0
0
0
0
0
Read This Next
Continue with Facebook 
Continue with Google