CPDoS Attack can Poison CDNs to Deliver Error Pages Instead of Legitimate Sites

Francesco Altomare Technical Sales Lead for Southern Europe, GlobalDots

25th October, 2019 1 Min read

Two academics from the Technical University of Cologne (TH Koln) have disclosed this week a new type of web attack that can poison content delivery networks (CDNs) into caching and then serving error pages instead of legitimate websites.

How One AI-Driven Media Platform Cut EBS Costs for AWS ASGs by 48%

cpdos
Image Source

The new attack has been named CPDoS (Cache-Poisoned Denial-of-Service), has three variants, and has been deemed practical in the real world (unlike most other web cache attacks).

HOW CPDOS ATTACKS WORK

CPDoS attacks are aimed at two components of the modern web — (1) web servers and (2) content delivery networks.

Web servers store the original website and its content, while CDNs store a cached copy of the website that is only refreshed at certain time intervals.

Despite their simplistic role, CDNs are a crucial part of the modern internet, as they can alleviate the load on web servers. Instead of a web server computing the same user request over and over again, a CDN can provide some of the incoming users with a copy of the website, until the CDN refreshes itself with a new version.

CDNs are widey used. Any attack on a CDN system can have devastating consequences on a website’s availability, and, hence, it’s profitability.

Latest Articles

Content Delivery Network (CDN) DDoS Protection

An expert’s analysis: Here’s what we need to build a better IoT

Eduardo Rocha, Senior Solutions Engineer at GlobalDots, contributed a guest post to BuiltIn, the online community for startups and tech companies. In the article, he outlined his approach for creating an IoT infrastructure that is both durable and secure. Here are some of the main takeaways: How One AI-Driven Media Platform Cut EBS Costs for AWS ASGs by […]

Eduardo Rocha Senior Sales Engineer and Security Analyst

28th February, 2023

Content Delivery Network (CDN)

What is a Content Delivery Network? CDN Explained

With the increasing demand for speedy and efficient content delivery, advanced solutions like the Content Delivery Network (CDN) have emerged. But what does CDN actually mean? Essentially, it’s a network of strategically positioned servers aimed at enhancing the speed and dependability of delivering content to users in different locations. These servers store cached copies of […]

Francesco Altomare Technical Sales Lead for Southern Europe, GlobalDots

4th January, 2023

Content Delivery Network (CDN) Monitoring, Logging & Observability

It’s time to unleash the power of the force!

There’s a galactic misconception that monitoring CDNs has no value and is too expensive to store and index. While that used to be true, it’s now the worst mistake an IT-jedi can make! GlobalDots, a 20-year CDN expert, teamed with observability innovator Coralogix, to develop a next generation observability platform for monitoring Content Delivery Networks’ […]

Ganesh The Awesome Senior Pre & Post-Sales Engineer at GlobalDots

12th December, 2022

Content Delivery Network (CDN)

Top 10 Benefits of Using a Modern CDN Architecture

The Global Content Delivery Network (CDN) market is expected to grow by $42.4 billion between now and 2032.

Miguel Fersen Director for Iberia and LATAM, GlobalDots

8th December, 2022

Back to Resources

Unlock Your Cloud Potential