Name: Microsoft RDP, DNS and Other Protocols are Exploited in DDoS Extortion Campaign
Start: 2021-03-24T17:00:00Z
End: 2021-03-24T17:00:52.000Z
Location: BrightTALK
Rating: 4.43

NETSCOUT's Arbor DDoS protection solutions provide pervasive network visibility, automated DDoS attack detection, and intelligently orchestrated mitigation.

Patrick Donegan of HardenStance is joined by Roland Dobbins of the NETSCOUT ASERT Threat Research team to discuss the widespread operational impact of outbound and crossbound (East-West) high-volume DDoS attacks launched by the Aisuru DDoS-for-hire IoT botnet. They explore techniques network operators can use to maintain availability and resilience in the face of DDoS attacks exceeding 30tb/sec and 5gpps.

Aisuru Explained: Strategies Every Security Team Should Know

In this webinar you will get strategic recommendations with actionable steps to strengthen your organization’s resilience against multi-vector DDoS attacks.

QKS Group’s latest research reveals a dramatic surge in multi-vector DDoS attacks, with incidents growing by triple digits year-over-year. Attackers are now leveraging sophisticated, multi-pronged tactics that combine volumetric, protocol, and application-layer vectors—resulting in peak assaults that exceed multi-terabit volumes and persist for hours or even days.

Join Sofia Ali of QKS, co-author of the “Spark Matrix™ Distributed Denial of Service (DDoS) Mitigation, Q3 2025” report, and Gary Sockrider, Director of Security Solutions at NETSCOUT, for an in-depth exploration of the evolving multi-vector threat landscape. Discover how attackers orchestrate complex campaigns to bypass traditional defenses. Learn about the latest adaptive automation strategies that empower organizations to detect, mitigate, and respond to these advanced threats in real time.

Key Highlights:

• The modern DDoS threat landscape: trends and statistics

• Multi-vector attacks: how attackers combine tactics to overwhelm defenses, and the unique challenges these pose for security teams

• Insights from Spark Matrix research: key findings and NETSCOUT’s recognition as a “Leader” and “Ace Performer”

In this webinar you will get strategic recommendations with actionable steps to strengthen your organization’s resilience against multi-vector DDoS attacks.

Multi-Vector DDoS Defense with Adaptive Automation

This webinar will be delivered in German.

Automatisierung und KI haben Einzug in die DDoS-for-Hire Szene gehalten und dadurch die Effektivität und Anpassungsfähigkeit heutiger DDoS Angriffe derart verbessert, dass herkömmliche Verteidigungsmaßnahmen obsolet sind.

Die KI-Integration kann Angreifern eine Reihe neuer Funktionen bieten, darunter: Anpassung der Angriffsmuster in Echtzeit, CAPTCHA-Auflösung und Nachahmung von Verhaltensweisen.

Genauso wie KI die Methoden von Angreifern verändert, müssen Verteidiger darüber nachdenken, wie sie ihre Abwehrmechanismen stärken. 

In dem heutigen Webinar erfahren Sie mehr über DDoS-for-Hire Services, KI gestützte und automatisierte Angriffsmethoden und wie Ihnen Adaptiver Schutz gepaart mit Echtzeitz-Threat Intelligence hillft, Ihre Dienste zu schützen - Inklusive einer Live-Demo.

KI trifft auf DDoS-for-Hire: Smarte Abwehr gegen dynamische Bedrohungen

This webinar will be delivered in English.

Automation and AI have entered the DDoS-for-hire landscape — making today’s attacks faster, smarter, and more adaptive than ever before. Traditional defenses are no longer enough.

AI integration can provide attackers with a range of new capabilities, including: real-time adaptation of attack patterns, CAPTCHA solving, and behavior emulation.

Just as AI is changing attackers’ methods, defenders must also consider how to strengthen their defense mechanisms.

In today’s webinar, you will learn more about DDoS-for-hire services, AI-powered and automated attack methods, and how adaptive protection combined with real-time threat intelligence can help safeguard your services — including a live demo.

AI Meets DDoS-for-Hire: Evolving Threats, Smarter Defenses

In the first half of 2025, over 8 million DDoS attacks disrupted networks across the globe, many timed to coincide with geopolitical flashpoints and executed with unprecedented sophistication. Watch NETSCOUT’s ASERT expert Richard Hummel, as he unpacks the latest findings from our DDoS Threat Intelligence Report. This session will explore how threat actors are evolving, how botnets are weaponized, and why traditional defenses are no longer enough.

As you defend enterprise, carrier provider, or government infrastructure, this webinar will equip you with the intelligence and strategies needed to stay ahead of the threat curve.

Key Highlights:

• Global Trends: Breakdown of regional attack volumes and peak metrics from 1H 2025
• Geopolitical Catalysts: How political events triggered massive DDoS campaigns
• Botnet Evolution: The rise of AI-enhanced, multi-vector attacks and DDoS-for-hire services
• Threat Actor Spotlight: Profiles of NoName057(16), DieNet, and other active groups
• Defense Strategies: How NETSCOUT’s visibility and adaptive protection mitigate modern DDoS risks

Digital Aftershocks: Damage from DDoS Attacks

Traditional protection isn’t designed to stop these evolving DDoS threats, which can devastate enterprise services, productivity, revenue, and reputation. NETSCOUT Adaptive DDoS Protection uses AI/ML and automation powered by the world’s best threat intelligence so you can stop the latest DDoS attacks before they take you down.

Gary Sockrider digs into the latest Adaptive DDoS protection from NETSCOUT to show how no other solution is more informed by more global threat intelligence, or more equipped to help you detect and mitigate attacks at the speed of AI. 

See DDoS Protection in Action!

• Start with Adaptive DDoS Protection: – what it is and how it’s used to defend against modern attacks

• Fed with Threat Intelligence to stop inbound and outbound threats

• Using AI automation to defend against changing DDoS tactics in real-time

Win the Fight with AI, ML, and Automation for DDoS Protection

EMEA/APAC: Win the Fight with AI, ML, and Automation for DDoS Protection

The fight against DDoS is no longer just about absorbing traffic. It’s about outmaneuvering an adversary that is growing smarter, faster, more organized, and more relentless by the nanosecond. And it will take more than traditional defenses to protect your services, revenue, and reputation.  
 
Darren Anstee and Richard Hummel break down the evolving tactics AI-powered DDoS attacks are adopting and why traditional defenses fail and provide critical insights into what it will take in today’s AI-powered world to protect your organization. 
 
Register Now

Key Takeaways of AI-Powered Tactics:

• Real-Time Adaptation: Attack vectors shift automatically and cannot be stopped without real-time threat intelligence

• Behavioral Mimicry: AI enables bots to imitate legitimate user behavior, bypassing common defenses, including firewalls

• Adjusted Traffic Flow: Adjusted traffic patterns avoid detection, so alarms are not triggered

• Bypassing CAPTCHAs & Rate Limits: Bots slip past these barriers undetected

How AI-Powered & Automated DDoS Attacks Outsmart Traditional Defenses

EMEA/APAC: How AI-Powered & Automated DDoS Attacks Outsmart Traditional Defenses

In 6 months alone, DDoS attacks surged by 12.75%, surpassing 8.9 million globally. Modern enterprise organizations must be successful in preventing malicious attacks every time, yet those with malintent only need to hit the target once to be successful. This means the playing field is far from level and the stakes are incredibly high.

Join Richard Hummel, Director of Threat Intelligence at NETSCOUT and co-author of the NETSCOUT DDoS Threat Intelligence Report, for expert analysis of the global DDoS attack trends  and insights into targeted industries, attack types, and tactics.

Key Topics:

• The rise of Geopolitical DDoS Attacks

• The evolution of Next-Gen DDoS for Hire

• The spread of Botnet activity

• How attackers are using AI to design and launch attacks

Learn how NETSCOUT solutions use threat intelligence and adaptive techniques to  help you identify and mitigate impacts from evolving DDoS attacks.

AI-Powered Attacks Change Threat Landscape

Geopolitical attacks, botnets, DDoS-for Hire, AI-powered attacks – the DDoS threat landscape is evolving fast. NETSCOUT’s latest DDoS Threat Intelligence Report reveals over 8 million attacks in just 6 months, highlighting the extent and complexity of these threats.

Watch this presentation with Richard Hummel, Director of Threat intelligence and co-author of the report, as he breaks down the attack trends, real-world examples and hacktivist groups driving disruption globally and in the Americas.

Americas: New DDoS Threat Intelligence Report – AI-Powered Attacks Are Here

Geopolitical attacks, botnets, DDoS-for Hire, AI-powered attacks – the DDoS threat landscape is evolving fast. NETSCOUT’s latest DDoS Threat Intelligence Report reveals over 8 million attacks in just 6 months, highlighting the extent and complexity of these threats.

Watch this presentation with Richard Hummel, Director of Threat Intelligence and co-author author of the report, as he breaks down the attack trends, real-world examples and hacktivist groups driving disruption in Europe, the Middle East, and the Asia Pacific regions.

EMEA/APAC: New DDoS Threat Intelligence Report – Hacktivist Attacks Growing

This webinar will be delivered in English.

In today's connected world, DDoS attacks have become a constant part of our daily lives. Since hacker groups and DDoS-Stresser run highly sophisticated and automated DDoS attacks, monitoring their effectiveness and dynamically adopting attack vectors, the implementation of robust detection and defense strategies paired with a high level of cyber threat intelligence is therefore crucial for successfully strengthening resilience against cyberattacks for organizations worldwide.

In today's webinar you will learn more about global trends, threats and attack methods used by DDoS hackers and how you can protect your organization and services.

An Era of DDoS Hacktivism – Your Roadmap for Detection and Mitigation

This webinar will be delivered in German.

In der vernetzten Welt von heute sind DDoS-Attacken ein steter Begleiter unseres Alltags geworden. Es vergeht kein Tag, wo wir nicht von den erfolgreichen und über Landesgrenzen hinaus sichtbare DDoS Angriffen diverser Hackergruppierungen lesen können. Hackergruppen und DDoS-Stresser führen heute hochentwickelte und automatisierte DDoS-Angriffe durch-, überwachen deren Effektivität und passen Angriffsvektoren dynamisch an. Die Implementierung robuster Detection und Defense-Strategien gepaart mit einer hohen Cyber-Threat Intelligence ist daher entscheidend für eine erfolgreiche Stärkung der Resilienz gegen Cyberattacken für Organisationen weltweit.

In dem heutigen Webinar erfahren Sie mehr über globale Trends, Bedrohungen und Angriffsmethoden von DDoS-Hackern und wie Sie Ihr Unternehmen und Ihre Dienste schützen können.

Die Ära der DDoS Hacktivisten – Globale Angriffstrends und Verteidigungsstrategien

In addition to working towards preventing breaches, cybersecurity leaders and their teams must devote significant resources to planning for an efficient recovery when one happens. That’s because for every day, the organization’s IT systems are down, operational resilience is impacted, and the financial drain worsens. 

So just what should cyber leaders be doing to prepare? What steps can be taken inside cybersecurity, within IT, and then in collaboration with operational units and emergency management to ensure all affected by an outage will be on the same page until the applications come back on? 

In this timely webinar, we’ll speak to leaders who are building an understanding of operations and key relationships that will be required to weather a cyber-outage storm.

Examining Cyber's Role in the Development of Business Continuity Plans that Strengthen Operational Resilience

NETSCOUT ASERT reports that DDoS attack frequency is up 12.8%, with application layer attacks up 43% and volumetric attacks up 30%. With 7.9 million attacks in 6 months, companies need a clear roadmap to fine-tune real-time detection and mitigation strategies to stay ahead of evolving threats.
                                                                                                                                                                                                                                                                                                          
Listen at your convenience to NETSCOUT and Heavy Reading experts as they explore the impact of DDoS attacks:

• Threats - including the rise of DDoS capable Botnets

• Targets -  hacktivist attack claims by industry

• Defense Strategies and Best Practices

• And more…

DDoS Threat Intelligence Report: Latest Threats, Targets, and Defense Strategies

The healthcare sector is currently facing an unprecedented array of cyber threats, growing in complexity and frequency. Malicious actors increasingly target sensitive patient data and critical infrastructure, often through sophisticated techniques like ransomware and phishing. They exploit vulnerabilities in healthcare systems, sometimes lying dormant for extended periods before launching an attack. These attacks are not just about financial gain; they also aim to disrupt healthcare services, risking patient care. 

When cybercriminals infiltrate a network, they move laterally (East/West network traffic) to access more critical systems and data. By focusing on this internal traffic, healthcare providers can detect unusual activities that may signal an ongoing breach.

NETSCOUT is pleased to bring Colin Hung, a leading healthcare technology expert and Editor of Healthcare IT Today, and Sameer Khanna, Sr. Director at NETSCOUT, together to explore these critical issues and discuss how innovative technology solutions can empower healthcare organizations to overcome the challenges.  We will dive into:

• What critical capabilities are required to enable a more proactive approach to cybersecurity?

• What are the technical advantages of a network-based approach to security?

• Conversely, what challenges is a system likely to encounter with poor visibility?

Join us to discover how NETSCOUT can be your partner in navigating the complexities of today's healthcare environment.

A Better Approach to Healthcare Systems Security

In today's rapidly evolving healthcare landscape, sustaining world-class care delivery and fortifying cyber resilience have become central priorities for health systems worldwide. The urgency for a robust technology strategy has intensified as the industry recovers from the financial strain of reduced reimbursements, expense inflation, and cybersecurity challenges.

Over the next 18-24 months, healthcare leaders must focus on strategies that drive revenue through enhanced digital initiatives and ensure a quick recovery from potential cyber threats.

NETSCOUT is pleased to bring David Chou, a leading healthcare technology executive, and Jerry Mancini, Sr. Director at NETSCOUT together to explore these critical issues and discuss how innovative technology solutions can empower healthcare organizations to overcome the challenges. We will delve into:

  • Optimizing digital front-door processes, ensuring a seamless patient experience that drives revenue and improves operational efficiency.
  • Enhancing network visibility and threat-hunting capabilities to enable rapid response and recovery in the face of cyberattacks. 

Join us to discover how NETSCOUT can be your partner in navigating the complexities of today's healthcare environment.

Navigate Healthcare's Dual Challenge: Timely Care Delivery & Cyber Resiliency

For the past several months NETSCOUT’s ATLAS Security Engineering and Response Team (ASERT) has been tracking and helping organizations defend themselves from the Lazarus Bear Armada (LBA) DDoS Extortion Campaign.  Join us in this webinar to:
·       Learn how the attacker continues to target and retarget different industries and critical infrastructure (e.g. as VPN concentrators) on a worldwide basis.   
·       Get updated information on the latest attack vectors being used in the campaign including everyday protocols such as Microsoft RDP, DNS, NTP and more.
·       Take a behind-the-scenes glimpse into how ASERT gathers Threat Intelligence.
·       Understand current best practices in defense

Microsoft RDP, DNS and Other Protocols are Exploited in DDoS Extortion Campaign

DDoS

Cyber Attacks

Lazarus Bear Armada

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

The IT project management community on BrightTALK includes thousands of IT project and portfolio management professionals. Find relevant webinars and videos on agile methodologies, scrum strategy, project management processes and more. Attend live webinars or view on demand content presented by recognized thought leaders in the IT project management industry.

IT Project Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Microsoft RDP, DNS and Other Protocols are Exploited in DDoS Extortion Campaign

Presented by

About this talk

NETSCOUT Arbor DDoS Protection