News

  • Kandinsky WordPress theme
    A new website creation framework ‘Kandinsky‘ has just been released as a WordPress theme by our friends from «Теплица социальных технологий» (Greenhouse for Social Technologies) in response to needs expressed by civil society groups. The free and open source release on Github offers three templates for installation and guides website creators with helpful tips and […]
  • Updates from Deflect – January 2021
    Giant leaps in our machine-lead mitigation tooling have removed some of the heavy load in mitigating attacks from our support team this month. We’re very pleased with the machine’s performance but it won’t replace the humans! Below, we share some traffic highlights, Deflect relevant events and stories from our clients. January Traffic Throughout the month […]
  • Introducing Baskerville (waf!)
    The more outré and grotesque an incident is the more carefully it deserves to be examined. ― Arthur Conan Doyle, The Hound of the Baskervilles Chapter 1 – Baskerville Baskerville is a machine operating on the Deflect network that protects  sites from hounding, malicious bots. It’s also an open source project that, in time, will […]
  • Deflect website security services for free in response to COVID-19
    In response and solidarity with numerous efforts that have sprung up to help with communications, coordination and outreach during the COVID-19 epidemic, eQualitie is offering Deflect website security and content delivery services for free until the end of 2020 to organizations and individuals working to help others during this difficult time. This includes: Availability: as […]
  • Deflect Labs Report #6: Phishing and Web Attacks Targeting Uzbek Human Right Activists and Independent Media
    Key Findings We’ve discovered infrastructure used to launch and coordinate attacks targeting independent media and human rights activists from Uzbekistan The campaign has been active since early 2016, using web and phishing attacks to suppress and exploit their targets We have no evidence of who is behind this campaign but the target list points to […]
  • Deflect Labs Report #5 – Baskerville
    Using Machine Learning to Identify Cyber Attacks The Deflect platform is a free website security service defending civil society and human rights groups from digital attack. Currently, malicious traffic is identified on the Deflect network by Banjax, a system that uses handwritten rules to flag IPs that are behaving like attacking bots, so that they […]
  • News from Deflect Labs: DDoS attacks against Caucasian Knot
    Key Findings In November and December 2018, we identified 3 DDoS attacks against independent media website Кавказский Узел (Caucasian Knot) The first attack was by far the largest DDoS attack seen by the Deflect project in 2018, clocking over 7.7 million queries in 4 hours The three attacks used different types of relays, including open […]
  • Deflect Labs Report #4 – Anatomy of a booter
    Key Findings We identified a DDoS attack against the Israeli human rights website www.btselem.org on the 2nd of November Attackers used three different type of relays to overload the website and were automatically mitigated by Deflect We identified the booter infrastructure (professional DDoS service) and accessed and analyzed its tools, which we describe in this article In […]
  • News From Deflect Labs: Botnet Targeting WordPress Websites
    Key Findings We identified traffic from thousands of IPs trying to brute-force WordPress websites protected by Deflect using the same user-agent (Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0) since September 2017 We confirmed that it was not only targeting Deflect protected websites, but targeting also a large number of websites over Internet We analyze in […]
  • News From Deflect Labs: DDoS attacks against Vietnamese Civil Society
    Key Findings We identified 10 different DDoS attacks targeting two Vietnamese websites protected by Deflect, viettan.org and baotiengdan.com, between the 17th of April and 15th of June 2018. These attacks happened in the context of an important lack of Internet Freedom in Vietnam with regular online attacks against activists and independent media. We sorted these […]
  • Distributed Deflect – project review
    This is the fifth year of Deflect operations and an opportune time to draw some conclusions from the past and provide a round of feedback to our many users and peers. We fought and won several hundred battles with various distributed denial of service and social engineering attacks against us and our clients, expanding the […]
  • Deflect Labs report #3
    Botnet attack analysis of Deflect protected website blacklivesmatter.com Seamus Tuohy and eQualit.ie View the report with 3D rendering (5mb) This report covers attacks between April 29th and October 15th, 2016. Over this seven-month period, we recorded more than a hundred separate denial-of-service incidents against the official Black Lives Matter website. Our analysis shows a variety […]
  • Deflecting cyber attacks against the Black Lives Matter website
    Last week and throughout the weekend, Deflect helped mitigate several DDoS attack bursts against the official Black Lives Matter website. At current estimates over 12,000 bots pounded the website just over 35 million times in 24 hours. An unusual trait of this attack was the prevalence of  malicious connections originating from the US. An in-depth […]
  • Deflect Labs Report #2
    Botnet attack analysis of Deflect protected website bdsmovement.net This report covers attacks between February 1st and March 31st of six discovered incidents targeting the bdsmovement.net website, including methods of attack, identified botnets and their characteristics. It provides detailed technical information and analysis of trends with the introduction of the Bothound library for attack fingerprinting and […]
  • Deflect Labs Report #1
    Botnet attack analysis covering reporting period February 1 – 29 2016 Deflect protected website – kotsubynske.com.ua This report covers attacks against the Kotsubynske independent media news site in Ukraine, in particular during the first two weeks of February 2016. It details the various methods used to bring down the website via distributed denial of service […]
  • Deflect Labs – fighting impunity with analytics and advocacy
    For the last four years, the Deflect DDoS mitigation system has protected independent online voices from the onslaught of cyber-attacks aiming to silence them. We have grown, learning our lessons as we took the punches. One aspect of this work stood out as particularly interesting during this time: there were stories to be told in […]
  • Standing strong in August
    Ongoing conflicts in Ukraine and the Middle East saw a stream of independent media and human rights organizations turn to Deflect for DDoS protection. The network delivered over 75 million pages to legitimate readers in August, our highest numbers to date. One week in particular stood out as we brought on-board two websites in the midst of ongoing DDoS […]
  • Q1 2014 Traffic Report: DDoStoyevsky’s Crimean Punishment
    In the last 12 months we have seen steady growth in many aspects of the Deflect project, particularly with respect to membership, traffic, localisation and network capacity. The most significant contributing factors have been the uptake of more partners, the efficacy of our new banning software and the continued rise in DDoS attacks as a […]