No weakness remains unexploited by the DDoSers. Their new weapon of choice is the NTP amplification attack. Just like its predecessor, the DNS amplification attack, it exploits a weakness in the protocol which enables it to amplify attack traffic by a factor of 200. Preventing the use of a NTP server in such attacks is possible but no one knows what will be the next exploited service.
ORIGINAL POST
