loader gif

Large-scale DDoS Attack Abuses HTML's Hyperlink Audit Ping Facility

Large-scale DDoS Attack Abuses HTML's Hyperlink Audit Ping Facility (Malware and Vulnerabilities)

A new type of DDoS attack that abuses the HTML5 Ping-based hyperlink auditing feature has been detected following a major attack emanating from primarily Chinese-speaking mobile users of the QQBrowser. Imperva researchers Vitaly Simonovich and Dima Bekerman monitored an attack that peaked at a massive 7,500 requests per second, and delivered more than 70 million requests over a four-hour period from around 4,000 user IPs. Although the new attack primarily emanated from QQBrowser users, the technique could involve almost any browser. The attack involved users innocently visiting a crafted web page with two external JavaScript files. The result was that for as long as the crafted website was open in the visitor's browser, a hyperlink auditing ping was sent to the target. Such an attack requires getting users to visit the crafted web page, and to leave it open in the browser for as long as possible.

loader gif