In the face of a new type of DDOS attack that may erupt in the future, how should DDOS protection respond?

There are currently thousands of security products and DDoS protection experts predicting potential threats that may appear in the future. IBM experts have given several new types of DDoS attacks that may be fully proliferated in the next year.　
　　Although two types of attacks that the IBM team is concerned about have actually appeared in the past year, they have also proposed another new DDoS attack concept, which has not yet really appeared in the real world.
　　1. The Bit Torrent network will become an ideal hotbed for DDoS broilers.
　　types of DDoS attacks actually appeared in August, which is precisely the abuse of the BitTorrent client.
　　As for its specific implementation, malicious people will use various BitTorrent protocols to organize DRDoS (Distributed Reflection Denial of Service) attacks, some of which can even enlarge their scale to 120 times the original level.
　　The BitTorrent team has currently fixed specific security vulnerabilities in its protocol, but considering that there are millions of BitTorrent seed users in the global network, criminals may also find new ways to abuse this technology and cause DDOS protection to become difficult.
　　2. Using malicious JavaScript to trigger DDoS attacks
　　As the second type of DDoS attack, this method uses related technologies to hijack the traffic of the target site, thereby triggering other activities that are not expected. Although IBM only mentioned one attack before, in fact there were two such attacks in 2015, and its number is expected to increase further in 2016.
　　This attack occurred in April 2016. At that time, malicious people used JavaScript code to cause users to visit a certain Baidu page, which would quietly trigger the loading of two other GitHub pages.
　　The second such attack is relatively more complicated, but it also uses JavaScript code embedded in the Imgur image, which will secretly insert an extra 500 or more into the embedded frame during the loading process of the Reddit website. 4chan pictures. This means that every Reddit user will request an additional 500 4chan pictures, which is enough to paralyze any self-managed web server.
　　3. What exactly is a Temporal Lensing (temporary lens) DDoS attack?
　　The third type of DDoS attack is expected to appear in 2016. The relevant conclusions were obtained by technical experts from IBM based on a research paper in May, and it is this type of DDoS attack called TemporalLensing that is mentioned. These types of attacks are still not officially recorded, but they all have significant advantages in DDoS attack capabilities.
　　The only condition for attackers to use it is to ensure that all network packets arrive at the target site synchronously at the same time, and to find a protocol that supports the amplification factor, after which they can enjoy the millions of attack activities. The data packet swallowed the victim completely. DDOS protection against this type of attack requires a new method to deal with it.
In the face of more and more types of DDOS attacks, the difficulties faced by DDOS protection are becoming more and more complicated, but as long as you maintain your awareness of network security protection and prepare for DDOS protection, you don’t have to be afraid of DDOS attacks.
This article is transferred from: https://www.zhuanqq.com/News/Industry/368.html