it has been some time since i ran an #isp myself, so i am curious: do today's large volumetric (l2/l3) #ddos attacks still rely on source ip spoofing? have the attempts to implement unicast reverse path forwarding checks got anywhere on a broader scale? #infosec
@slink Spoofing is still a thing, but it has been made harder for attackers to rely upon the past few years. We have also seen the popularity of Mirai-based IoT infections, for example, drive this "rebalancing" of more direct-path attacks.
Add comment