AI/ML-Powered Intelligence Feed and Adaptive Mitigation Essential for Defeating DDoS Attacks
NETSCOUT SYSTEMS has announced significant enhancements to its Arbor® Threat Mitigation System (TMS) Adaptive DDoS Protection solution. The latest update incorporates advanced AI/ML functionality to better detect and block malicious traffic, addressing the increasing frequency and sophistication of DDoS attacks.
“With more sophisticated and frequent DDoS attacks, the risks have never been greater,” said Scott Nichols, Chief Commercial Officer at Arelion. “Through our partnership with NETSCOUT, we’re able to deliver industry-leading Adaptive DDoS protection to ensure the best experience possible for our customers.”
Rising Threat of DDoS Attacks
Over the past four years, DDoS attacks targeting critical IT infrastructure and services have surged by 55%. This increase is driven by AI-driven automation, evolving DDoS-for-hire services, augmented IoT botnets, and geopolitical conflicts. These factors have created a perfect storm, resulting in more frequent and damaging attacks.
“With AI-driven attacks, ransomware, and nation-state threats impacting corporate governance, financial performance, and customer trust, corporate boards expect their IT teams to be proactive in adapting to emerging threats like DDoS,” said Chris Steffen, Vice President of Research – Information Security, Enterprise Management Associates. “Implementing solutions that can adapt to threats helps minimize that risk.”
AI/ML-Powered Protection
NETSCOUT’s enhanced solution leverages a hybrid AI/ML strategy, combining cloud-scale analysis with software-based AI/ML for fast, accurate, and automated threat detection and mitigation. The AI/ML capabilities analyze data from 550 Tbps of Internet traffic, nearly half of all Internet traffic, to provide comprehensive protection.
The ATLAS Intelligence Feed, updated multiple times daily, delivers insights into active DDoS campaigns, source IP addresses, and novel attack vectors. This continuous analysis enables the Adaptive DDoS Protection to quickly and accurately detect and block attacks, even those that are small and direct-path.
New Features and Benefits
The latest update includes AI/ML-powered source host misuse detection, allowing network operators to track and mitigate threats from misbehaving subscribers, infected hosts, and compromised IoT devices. This feature helps detect and block outbound DDoS attacks, ensuring better protection for service providers’ critical infrastructures and services.
Additionally, the enhanced Geo-IP location functionality maps IP addresses to geographic locations, enabling faster and more precise identification and blocking of malicious traffic. The ATLAS Intelligence Feed now includes tracking of active DDoS campaigns from over 65 known threat actors, providing robust protection against a wide range of targets.
Service Provider Advantages
With these updates, service providers can better protect their critical infrastructures and the services they offer to customers. Key benefits include enhanced availability, reduced downtime costs, less aggravation, and new revenue-generating opportunities.
NETSCOUT’s commitment to innovation and cybersecurity ensures that organizations, enterprises, and service providers can stay ahead of emerging threats and maintain robust protection against DDoS attacks.