The Collapsing Horizon of Telecommunications--The Era of DNS Amplification Attacks (2013-2016)

The Collapsing Horizon of Telecommunications--The Era of DNS Amplification Attacks (2013-2016)

DNS amplification attacks are a technique that takes advantage of the Internet's name resolution capabilities to elicit dozens of times more responses from a small query and impose them on the target. By spoofing the sender and planting the query on an open server, the attacker is able to impose an enormous load on the attacker while hiding his or her own identity. The query may be only a few dozen bytes, but the response may be thousands of bytes--the "amplification effect" is said to sometimes be as much as 100 times greater.

The world witnessed the onslaught in 2013, when a spam watchdog group shut down a spammer in retaliation. At that time, the volume of traffic used in the attack exceeded 300 gigabytes per second, disrupting the entire Internet. Over 30,000 unprotected DNS servers were exploited, casting a shadow over global connectivity all at once.

The next year, 2014, saw the emergence of an amplification attack, this time using a time-signaling mechanism; the combination of DNS and NTP made the attack even more aggressive, with transmission rates exceeding 400 gigabytes per second. Not even the major telecommunications companies were able to respond to this destructive wave.

Then came 2016. In October, the swarm, tied to DNS attacks, hit DNS service company Dyn. In the aftermath, major services such as Twitter, Netflix, and GitHub were all silenced.

These attacks do not end with mere web outages. They can fundamentally shake infrastructures and even cause national communication failures. To prevent the threat, it has become essential to shut down open servers, block spoofing, limit responses, strengthen monitoring, and even deploy outside defenses.

This attack is frightening because of its simplicity. Silently but surely, it erodes the reliability of communications. As long as technology evolves, so too will this shadow. Those who intercept it will need to be agile, prepared, and vigilant.