The botnet is a popular tool with cyber-criminals as it enables them to distribute malicious software or bring websites down with DDoS attacks. Botnets comprise multiple infected systems and can be controlled remotely for malicious purposes. Smart devices within the internet of things (IoT) are increasingly becoming a target for online fraudsters.
For example, a French website hosting firm was the victim of the biggest DDoS attack of all time at the end of September. The attack included security cameras as well as video recorders. The growing threat situation has also prompted Germany’s Federal Network Agency to enforce compliance with the new IT security regulations by increasing checks. Its goal is to verify whether telcos are really fulfilling requirements concerning information and protection. To help telcos implement these measures effectively, the German security specialist Secucloud is now providing an IoT Anti-Bot Package. This automatically detects suspicious bot activity and blocks it immediately, even for smart IoT devices.
The goal of Germany’s new IT security law is to better support the police working to block criminal botnets. Since July 2015, telecommunication providers have been required to inform their customers of suspicious activity that could indicate malware attacks on their users’ systems. They must also suggest “appropriate, effective and accessible” technical means of detecting and ideally blocking these malicious attacks.
With its IoT Anti-Bot Package, Secucloud enables telcos to meet the Federal Network Agency’s requirements and protect customers effectively from botnets. To achieve this, the company’s high-performance OEM Cloud Framework uses tools like IDS and IPS systems within its packet analyser module in the Intelligent Algorithm Based Steering Engine (IABS Engine) to detect and immediately block botnet activity. The on-premise cloud system includes highly elastic scaling that can protect large numbers of users – up to 100 million – effectively. A director node (DiNO) load balancer forms part of the network and automatically distributes traffic directed to it across a sufficient number of filter nodes (SAN). This is controlled by an overarching management instance, the Secucloud Cloud Operations Controller (CLOC). The framework can be optimally integrated into providers’ networks using the Secucloud system’s APIs.
Efficient security in the cloud
Secucloud specialises in providing security for the internet of things. It offers a comprehensive, completely cloud-based enterprise-class security system for telcos and mobile phone operators that they can install directly into their network infrastructure. This enables them to protect their customers from all cyber-threats on the internet in a centralised way. Customers do not need to install any software on their devices, so no setup or maintenance is required. The Secucloud solution scales elastically and can protect up to 100 million users effectively and in real time.