The press service representative added that for small hosting providers

[tanjimajuha20]

The servers of OOO REG.RU were subjected to a major cyber attack from mixed botnets consisting of several malicious programs. This became known on November 8. According to Reg.ru, the DDoS attack was aimed at the company's main services: cloud services "Reg.cloud", VPS, dedicated servers and virtual hosting, but did not have a significant impact on client sites.

"Reg.ru" is a Russian hosting provider malta whatsapp number database and domain name registrar, hosting the largest number of sites in the .RU and .РФ domains (according to Statdom.ru). According to the "Reg.ru" report, hackers simultaneously attacked almost 10 thousand IP addresses of the hosting provider, the attack lasted 72 hours: with the help of a special utility, any device, computer, server and even virtual hosting could join the attack. However, all of the company's services worked in normal mode. "Reg.ru" has automatic protection against DDoS attacks.

The press service of Reg.ru told a ComNews correspondent that the total costs of repelling the current attack for the company amounted to several hundred thousand rubles, but this has become a routine investment in the uninterrupted operation of the service.

, such an attack would most likely result in the service being unavailable due to a lack of capacity, and the costs of eliminating it could be much higher.

The press service of the Coordination Center for .RU/.РФ domains told a ComNews correspondent that they had not received any information about this problem.

Andrey Savelyev, CEO of Domains.RF LLC (Rf.ru), told ComNews that in the event of cyber attacks on hosting providers such as Reg.ru, the sites they host may stop working.

"When an attack occurs on us as a domain registrar, we bear mainly reputational risks: clients cannot log into their personal account for some time. But nothing more. The sites that we service continue to work. They can only suffer if an attack is made on the Technical Center of the Internet (TCI), which is practically impossible - this system is protected. At the same time, in three years of work of the registrar Rf.ru, we have encountered cyber attacks only a few times," noted Andrey Savelyev.

Alexey Rogdev, CEO of OOO TCI, told a ComNews correspondent that the attack on Reg.ru was carried out not as a domain registrar, but as a hosting provider, and therefore did not have a significant impact on activities related to domain registration.

"After the start of the special military operation, the number of DDoS attacks on the information systems of the Russian Federation has definitely increased. Moreover, such attacks are, among other things, spontaneous and untargeted. This can be called a trend of the current time. It is worth noting that this leads to the development of both attack tools and protection tools. In particular, the Russian segment of the Internet is protected not only at the level of telecom operators and information systems, but also at the state level. For example, within the framework of the project to create a national protection system against DDoS attacks, which Roskomnadzor and the Center for Monitoring and Management of Communication Networks spoke about at the XXII Forum on Regulation in the Sphere of Infocommunication Technologies," added Alexey Rogdev.

Ilya Krukover, CEO of the domain name registrar Active.domains LLC, reported that 90% of DDoS attacks target vulnerabilities that can be avoided or quickly closed with the right approach to development: "As a rule, attacks are rarely critical and can lead to the impossibility of providing new services within one business day. DDoS attacks are specific and easily repelled and, in general, have become less frequent."

"The number of DDoS attacks on Russian organizations is gradually decreasing, but it is still an order of magnitude higher than it was last year. But this does not mean that Russian organizations are no longer of interest to hackers: the approach to attacks itself is changing. Attackers are moving from simultaneous DDoS attacks on many organizations to targeted and pinpoint attacks," explains Alexander Chernyakov, head of web analytics at the Innostage group of companies.

According to him, repelling DDoS attacks is a difficult task: for complete and effective protection against such attacks, it is necessary to use several tools at different levels of processing incoming traffic. "For example, systems for preventing DDoS attacks at the provider level and specialized solutions on the external perimeter of the organization. It would not be superfluous to conduct additional traffic analysis at the WAF and NGFW level. The very fact of a successful attack greatly slows down the business process, and often completely stops it, which results in large financial losses for the attacked organization," noted Alexander Chernyakov.