DDoS IP Protection for SMBs is designed to provide enterprise-grade distributed denial of service protection at a price that's attractive to small and medium-size companies. Credit: Thinkstock/Microsoft Microsoft is extending the Azure DDoS Protection family with a new product focusing on small and medium-size businesses (SMBs). The product, DDoS IP Protection for SMBs, was announced at Microsoft’s Ignite conference and is now in public preview.DDoS IP Protection for SMBs is designed to provide enterprise-grade DDoS (distributed denial of service) protection at a price that’s attractive to SMBs, Microsoft said. With the new product, Microsoft’s Azure DDoS Protection family now has two programs, DDoS IP Protection for SMBs and DDoS Network Protection for enterprises.DDoS protection for SMBsThe DDoS IP protection for SMBs can be used to protect even a single public IP address. It delivers the same services that larger organizations use, Microsoft said. The new product can help companies defend against L3/L4 DDoS attacks with always-on monitoring and adaptive tuning designed to ensure the application is always protected. This also ensures that all customers using Public IPs on Azure are protected. L3/L4 DDoS attacks are types of volumetric DDoS attacks on a network infrastructure, according to CISA. L3 is an attack on the network infrastructure and L4 is an attack on the transport layer infrastructure, these attacks rely on high volumes of data to slow down web server perfrmance, consume bandwidth, and eventually degrade access for legitimate users. The new product offers traffic monitoring, automatic attack mitigation, integration with the firewall manager, mitigation reports and flow logs, the Azure Sentinel data connector, and workbooks. The enterprise version of the product includes cost protection, a web application firewall discount, and DDoS rapid response support—which are not available in the SMB grade.SMBs can enable IP Protection through the Azure preview portal or via PowerShell. Azure DDoS Protection integrates with other Azure services for real-time alerts, metrics, and insights. The product comes at a fixed cost of US$199 per month for each public IP resource protected, with no additional variable costs. Billing for IP Protection will be effective starting on 1 February 2023. Azure Firewall Basic also targets SMBs Microsoft has been expanding its security offering for SMBs. Last month at Ignite, Microsoft also announced Azure Firewall Basic, designed to deliver enterprise-grade network firewalls to SMBs. It’s a cloud-native firewall that offers built-in availability and cloud scalability to protect the resources within a company’s virtual network, the comany said.The product provides SMBs network firewall capabilities, like L3-L7 filtering of East-West and North-South traffic with built-in threat intelligence to block malicious traffic. Azure firewall integrates with other Azure services like Microsoft Sentinel and Microsoft Defender for cloud and helps gain more visibility into the environment and identify and respond to threats quickly, the company said. With two introductions aiming at SMBs, it appears that Azure is targeting the small and medium-size company sector more aggressively. “These two new products provide SMB customers enterprise-grade network firewall and DDoS protection at a lower price point. By deploying Azure Firewall Basic and enabling DDoS IP protection on the firewall’s public IP, customers can benefit from both services,” the company said in a blog. DDoS attacks increase DDoS attacks are one of the biggest security concerns for applications in the cloud and are increasing in complexity and frequency, based on evolving challenges in the cybersecurity landscape. All companies, including SMBs, are affected by the recent increase in DDoS attacks. DDoS was the second most used form of cyberattack last year, according to the European Union Agency for Cybersecurity. Meanwhile, the largest DDoS attack ever was launched in Europe in July 2022 against a European customer of Akamai that was using its Prolexic platform. The attack hit a peak at 853.7Gbps and 659.6Mpps (megapackets per second) over 14 hours. Research by Kaspersky showed that DDoS attacks rose by 47.87% during the third quarter of this year, compared to the third quarter of 2021. The cybersecurity firm’s DDoS Intelligence system detected 57,116 DDoS attacks in the third quarter of this year. Related content news CISA inks 68 tech vendors to secure-by-design pledge — but will it matter? CISA’s pledge drew some big names, but the impact on software security could be limited. Meanwhile the org has extended its comment period on the CIRCIA cyberattack reporting law. By Jon Gold May 10, 2024 4 mins Regulation Technology Industry Security Practices news Google Chrome gets a patch for actively exploited zero-day vulnerability Details of the use-after-free memory vulnerability were not publicly released, but Google says it’s aware an exploit for the bug exists. By Lucian Constantin May 10, 2024 3 mins Threat and Vulnerability Management Zero-day vulnerability Vulnerabilities news Dell data breach exposes data of 49 million customers The company says the breach compromised non-critical customer data and involved no sensitive personal or financial information. By Shweta Sharma May 10, 2024 3 mins Data Breach Hacking feature Social engineering: Definition, examples, and techniques Social engineering is the art of exploiting human psychology, rather than technical hacking techniques, to gain access to buildings, systems, or data. Train yourself to spot the signs. By Josh Fruhlinger May 10, 2024 15 mins Phishing Social Engineering PODCASTS VIDEOS RESOURCES EVENTS SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe