Denial of Service Attack — Technology Wiki

Overview

Direct Answer

A Denial of Service (DoS) attack is a malicious attempt to render a computer system, service, or network temporarily or permanently unavailable by flooding it with excessive traffic or exploiting resource limitations. Distributed variants (DDoS) amplify impact by orchestrating the attack across multiple source machines.

How It Works

Attackers inundate target systems with requests—whether HTTP floods, SYN floods, UDP packets, or DNS queries—faster than the infrastructure can process them. Resources such as bandwidth, CPU, or connection pools become exhausted, causing legitimate requests to be dropped or delayed. Some attacks exploit protocol weaknesses or application-layer logic rather than relying on volume alone.

Why It Matters

Organisations face direct revenue loss, reputational damage, and operational downtime when services become inaccessible. Compliance obligations under data protection regulations may be triggered if availability requirements are breached. Financial services, e-commerce, and critical infrastructure sectors face particularly severe business continuity risks.

Common Applications

Attackers target web servers, DNS infrastructure, APIs, and cloud platforms. Incidents affect financial institutions during market-sensitive periods, online retailers during peak shopping events, and gaming services. Ransom-motivated groups sometimes combine these attacks with extortion demands.

Key Considerations

Distinguishing legitimate traffic spikes from attack patterns remains challenging; mitigation requires balancing protection with access availability. Attack sophistication continues to evolve, rendering static defences inadequate without continuous monitoring and adaptive response strategies.

Related in Offensive Security

Cybersecurity

The practice of protecting systems, networks, and programs from digital attacks, unauthorised access, and data breaches.

Threat Intelligence

Evidence-based knowledge about existing or emerging threats to an organisation's digital assets and infrastructure.

Vulnerability Assessment

The process of identifying, quantifying, and prioritising security vulnerabilities in systems and applications.

Penetration Testing

A simulated cyberattack against a system to evaluate the security of its defences and identify exploitable vulnerabilities.

Red Team

A group of security professionals who simulate real-world attacks to test an organisation's defensive capabilities.

Blue Team

A group of security professionals who defend against both real attackers and simulated attacks from red teams.

Purple Team

A collaborative security approach combining red team attack knowledge with blue team defensive capabilities.

Intrusion Prevention System

A network security technology that examines network traffic to detect and prevent vulnerability exploits.

Ransomware

Malicious software that encrypts a victim's files and demands payment for the decryption key.

Malware

Malicious software designed to disrupt, damage, or gain unauthorised access to computer systems.

Phishing

A social engineering attack that uses fraudulent communications to trick recipients into revealing sensitive information.

Spear Phishing

A targeted phishing attack directed at specific individuals or organisations using personalised deceptive content.

More in Cybersecurity

Extended Detection and Response

Offensive Security

A unified security platform that integrates multiple security tools and data sources for comprehensive threat detection.

Security Audit

Security Governance

A systematic evaluation of an organisation's information system security by measuring compliance with established criteria.

Security Information and Event Management

Offensive Security

Technology that aggregates and analyses security data from across an organisation to detect threats.

Attack Vector

Offensive Security

The specific path, method, or scenario used by an attacker to gain unauthorised access to a system.

DevSecOps

Security Governance

An approach integrating security practices within the DevOps process, making security a shared responsibility.

Threat Hunting

Defensive Security

The proactive search for cyber threats within an organisation's environment that have evaded automated detection, using hypotheses, threat intelligence, and advanced analytics.

Sandbox

Offensive Security

An isolated testing environment that mimics production settings for safely running untrusted programs or code.

Zero-Day Vulnerability

Offensive Security

A software security flaw unknown to the vendor that can be exploited before a patch is available.