The Agency has followed the latest news that show an increase of large scale attacks exploiting specific vulnerabilities of the Internet core protocols. In the latest cases, the Network Time Protocol (NTP), which allows synchronizing devices to the coordinated universal time (UTC), has been misused.
More specifically, in December 2013, a vulnerability in this UDP protocol became mainstream and started to be exploited for large scale reflection attacks leading to a dramatic increase of the size of denial of services.
ENISA looks into the new trend and issues a series of recommendations to network providers, which they can already put in place to mitigate these threats.
For the full ENISA flash note: Large scale UDP attacks: the 2014 trend and how to face it
Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!