Skip to main content

One Smart Question: Why are Application Layer Attacks so Difficult to Detect?

Application Layer Attacks are a type of #cyberattack that can be difficult to detect. Unlike other types of #DDoSAttacks, Application Layer Attacks can be launched from a single machine with low traffic rates to sneak by common cloud scrubbing alerts triggered by traffic volume. These types of attacks aim to disable some or all features of an application or website. One such example of this type of attack is a Slow Post attack. Instead of sending large volumes of traffic to overwhelm an application or website, these attacks send a small number of legimate HTTP headers that leave connections open for a lengthy period while they slowly deliver the message body. The goal of this attack is to keep the connection open as long as possible to slow the target. Defense against application layer attacks requires a solution that can differentiate between legitimate and malicious traffic automatically. This solution includes a layered #DDoSDefense strategy that leverages on-premises detection and mitigation that is informed by global threat intelligence and provides automation for defensive maneuvers. This is key to maintaining the availability of your critical business applications. Learn more about this solution at