SEOUL, South Korea – South Korea has installed digital “bunkers” to prevent a repeat of the massive distributed-denial-of-service (DDoS) attacks that crippled parts of the country last year.
The nation was floored after huge streams of junk internet data poured across South Korea’s networks last year, targeting the infrastructure of government and businesses in what is known as a DDoS attack, CNET Australia reports.
It took-out parts of the communications networks for up to a week, also hitting US targets, before the malware behind the DDoS attacks self destructed.
“We were caught off-guard,” Jinhyun Cho of the Korea Computer Emergency Response Team (KrCERT) told ZDNet Australia. “It was on the mouths of everyone; the whole country knows what a DDoS attack is.”
The attacks forced blas� telcos to cooperate with KrCERT and forge “DDoS bunkers” to protect the nation’s small-to-medium enterprises from attack.
Simply-put, a “bunker” is a new IP address served to a business that is under persistent DDoS attack but lacks the funds or resources to protect itself. Traffic from the DDoS attack continues to hit the original IP address (2.2.2.2 in the image) while the business remains in operation under a new address (1.1.1.1 in the image).
Cho said it is an effective, but temporary measure and expects businesses would revert to their original address after about a week.
KrCERT is also using anti-DDoS technologies such as sinkholes (PDF) and tarpits.
a>>
