Spike DDoS Attack Kit Could Put IoT Apps at Risk
DDoS attacks are now being packaged into kits that can target the Internet of things, according to new research from Akamai.Akamai issued an advisory today about the new Spike distributed denial-of-service (DDoS) kit that is responsible for a number of recent high-bandwidth attacks. Spike is responsible for attacks against multiple Akamai customers around the world, with one of the largest coming in at a peak of 215 gigabits per second. DDoS attacks overall have been increasingly growing in volume in 2014. A recent report from VeriSign points to an 83 percent rise in the average DDoS attack size. DDoS tool kits are common, and previous examples include Dirt Jumper and Zeus, said David Fernandez, head of the PLXsert, security engineering and research team at Akamai. Spike, which goes beyond earlier kits, includes a wide variety of techniques for both infrastructure- and application-based attacks, he told eWEEK.
Spike can be used on both x86- and ARM-based systems, which implies a risk to the emerging Internet of things (IoT) world. Many IoT devices leverage the ARM architecture, which means that Spike could potentially create a DDoS botnet from the IoT world of connected devices.