Sun Tzu’s ancient wisdom applies to modern cybersecurity, as organizations face ever-evolving online threats. Sean Newman, VP/Product Management at Corero, emphasizes the importance of choosing the right DDoS defense solutions in the digital age. With the increasing reliance on the internet for business operations, the stakes are high for companies to maintain 24/7 availability and secure their online presence.
According to Gartner, downtime can cost companies up to $5,600 per minute, while other estimates suggest that even small businesses may lose over $100,000 per hour. These figures underscore the severity of potential damage from DDoS attacks, making it imperative for organizations to invest in robust defenses.
Newman highlights the evolving nature of DDoS attacks, which can now be launched from anywhere in the world, automated, and multi-vector. Moreover, attackers have developed techniques to blend malicious traffic with “normal” internet traffic, making it difficult to detect and mitigate using traditional methods. Legacy DDoS mitigation solutions can take more than ten minutes before they kick in, leaving companies vulnerable to shorter, sub-saturating attacks that inflict significant damage.
The rise of carpet-bomb (or “spread spectrum”) DDoS attacks presents an additional challenge for defenders. This technique distributes attacks across multiple targets, evading detection and null-route mitigation methods, while also overwhelming cloud services and reporting systems.
To counter these threats, IT security leaders must select DDoS defense solutions that prioritize prevention over mitigation. Newman emphasizes the importance of “always on” protection, which is capable of reacting to and preventing attacks in mere seconds. This proactive approach can minimize downtime and its associated costs, ensuring business continuity even in the face of evolving attack techniques.
Semantics matter in the selection of DDoS defense solutions, with the distinction between “always on” and “on demand” being crucial. Companies should seek solutions that provide automatic protection against known and zero-day attacks, as well as the capability to defend against advanced evasive techniques. A customizable approach tailored to a company’s specific needs, along with flexible deployment options and automation, is essential for comprehensive DDoS defense.
Newman advises companies to consider the true cost of an outage when making investment decisions, emphasizing the importance of proactive protection against both high-volume and sub-saturating DDoS attacks. The ability to view the IP address space holistically and deliver full protection in seconds should be key considerations in selecting the right DDoS defense solution.
Overall, effective DDoS defense requires careful consideration and planning, as reflected in Sun Tzu’s approach to warfare. Newman’s expertise in the cybersecurity and networking industry lends weight to his advice, encouraging companies to prioritize advanced, proactive DDoS defense solutions over legacy methods. In an era where digital resilience is paramount, the thoughtful selection of DDoS defense solutions can make all the difference for organizations seeking to protect their online operations.