In the modern application landscape, where businesses are constantly under the threat of cyber attacks, one of the most recent to emerge is HTTP/2 Rapid Reset, a type of Distributed Denial-of-Service attack.
This attack is larger than any previously reported application layer incident, with the largest recorded attack surpassing an alarming 398 million requests per second.
HTTP/2-based DDoS attacks are a new breed of cyber threats that have primarily targeted Google services and Cloud customers.
The main objective of HTTP/2 was to enhance efficiency.
The very features that make HTTP/2 more efficient for legitimate clients can also be exploited to make DDoS attacks more potent.
The HTTP/2 protocol allows clients to indicate that a previous stream should be canceled by sending a RST STREAM frame.
This feature is exploited in the HTTP/2 Rapid Reset attack, where the client opens a large number of streams at once and then cancels each request immediately.
This allows each connection to have an indefinite number of requests in flight, creating an exploitable cost asymmetry between the server and the client.
The Imperva Web Application Firewall offers a robust defense against a multitude of cyber threats, including the HTTP/2 'Rapid Reset' DDoS attack and provides unparalleled visibility into these attacks.
Our WAF's reporting capabilities offer customers a comprehensive and detailed view of all attack vectors, as illustrated in the dashboard below.
The extensive visibility extends to the intricacies of each attack, revealing patterns and trends that can inform future security strategies.
With Imperva WAF, you are protected against DDoS attacks and empowered with the knowledge to proactively mitigate future threats.
While HTTP/2-based DDoS attacks pose a significant threat, Imperva WAF is designed to protect a business from all forms of DDoS attacks.
It leverages a global network of scrubbing centers to absorb large volumetric attacks, and its advanced algorithms accurately identify and mitigate application layer attacks.
In addition to its robust protection features, Imperva WAF also provides integrated Attack Analytics that correlate DDoS and related critical events to focus on what truly matters.
This allows your business to quickly adjust security policies on the fly based on recommended actions to stop attacks in their tracks.
As stated in a previous blog post past, as a member of the security community, Imperva values its collaborations with companies such as Google and Fastly.
Our world is more secure when our industry collaborates to tackle complex security challenges.
If you need protection from HTTP/2-based attacks, contact us.
This Cyber News was published on www.imperva.com. Publication date: Wed, 03 Jan 2024 16:13:06 +0000