Message Image

Skip main navigation (Press Enter).

Endpoint Protection

View Only

Back to discussions

Expand all | Collapse all

UDP-based Amplification Attacks

DCSEPadminApr 13, 2015 04:11 PM

Does anyone know if Symantec Endpoint Protection RU5 has some protection for this attack? Thanks. ...

ℬrίαηApr 13, 2015 04:19 PM

Assuming you're running the IPS/fw component then yes there should be protectiona available.Unsure on ...

Mithun SanghaviApr 14, 2015 04:33 AM

Hello, The link provided is quite old - Original release date: January 17, 2014 | Last revised: March ...

1. UDP-based Amplification Attacks

0 Recommend
DCSEPadmin
Posted Apr 13, 2015 04:11 PM

Reply Reply Privately
Does anyone know if Symantec Endpoint Protection RU5 has some protection for this attack?

Thanks.

https://www.us-cert.gov/ncas/alerts/TA14-017A
2. RE: UDP-based Amplification Attacks

0 Recommend
ℬrίαη
Posted Apr 13, 2015 04:19 PM

Reply Reply Privately
Assuming you're running the IPS/fw component then yes there should be protectiona available.Unsure on a signature name for the IPS though but you can drop the traffic at the firewall as well.
3. RE: UDP-based Amplification Attacks

0 Recommend
Trusted Advisor

Mithun Sanghavi
Posted Apr 14, 2015 04:33 AM

Reply Reply Privately
Hello,

The link provided is quite old - Original release date: January 17, 2014 | Last revised: March 07, 2014

Here are the articles below which answers all your questions -

http://www.securityweek.com/symantec-observed-spike-dns-amplification-attacks

http://www.scmagazine.com/distributed-denial-of-service-attacks-are-increasing-in-power/article/379299/

Hope that helps!!

Copyright 2019. All rights reserved.

Powered by Higher Logic