What We Learned from Anonymous: DDoS is now 3DoS

What this means is organizations need to be thinking of security as spanning all attack vectors at the same time. It is imperative that organizations protect critical applications against both traditional attack vectors as well as those at the application layer disguised as image_thumb_2[1] legitimate requests. Organizations need to evaluate their security posture and ensure that every infrastructure component through which a request flows can handle the load in the event of a massive “3DoS”. It’s not enough to ensure that there’s capacity in the application infrastructure if an upstream network component may buckle under the load. 

Lori MacVittie’s post on Anonymous DDoS attacks raises a pertinent issue - are we ready to deal with next generation of Denial of Service attacks?