Powered by Lexis+®
View all Glossary Terms Related Content
CASE STUDY
“It's hard to quantify, right now. But at a guess, I'd say it's probably more than 50% faster, at times. It's literally that quick. We've found to be an essential practical tool. We're very satisfied.”
Walsall CouncilAccess all documents on Distributed denial of service
Distributed denial of service meaning
What does Distributed denial of service mean?
Distributed denial of service (DDoS) describes a coordinated cyber attack that overwhelms an online service, network or website so legitimate users cannot access it. Attackers flood bandwidth, connections or application resources using many malware‑controlled, compromised devices (a botnet), often via reflection or amplification.
The term is descriptive rather than defined in statute. In the UK, such conduct is typically charged as unauthorised acts impairing operation of a computer under the Computer Misuse Act 1990, section 3 (with section 3A covering making or supplying attack tools). In Ireland, equivalent offences arise under the Criminal Justice (Offences Relating to Information Systems) Act 2017. Usage is broadly consistent across England & Wales, Scotland, Northern Ireland and Ireland.
Typical legal issues include criminal liability; urgent injunctions and Norwich Pharmacal or other disclosure orders to identify perpetrators; contractual allocation of risk (service levels, indemnities, force majeure); regulatory notifications where availability of personal data is affected (UK GDPR/Irish GDPR) and under the NIS regime for essential/important entities; and cyber insurance coverage. Evidence commonly relies on network logs and third‑party mitigation records.
Speed up all aspects of your legal work with tools that help you to work faster and smarter. Win cases, close deals and grow your business–all whilst saving time and reducing risk.
View the related Practice Notes about Distributed denial of service
PRACTICE NOTES
Cyber insurance: coverage, triggers, business interruption, silent cyber and other exclusions, war/catastrophic risks, regulatory investigations, ransom payments, aggregation and notification—key issues for legal advisers
What is cyber insurance? Cyber insurance has rapidly progressed from a narrow form of cover, originally focused on liabilities anticipated following the 2002 Californian Data Security Notification Law, to a sophisticated product delivering a blend of first- and third-party protections, chiefly intended to help insureds manage cyber attacks and to indemnify them for the losses that follow. There is no single, settled definition of cyber risk. For insurance purposes, it is typically viewed as the chance of harm, financial loss, or legal liability resulting from damage to, or unauthorised access to, information systems. Frequent sources of loss include accidental events (e.g. damage to equipment that hosts data or system misconfiguration) and deliberate attacks (e.g. ransomware, business email compromise, distributed denial-of-service attacks). Such events may give rise to a range of significant incident response and remediation costs and expenses; first-party loss; third-party liabilities; and the expense of responding to regulatory investigations. Coverage available As a relatively new class of business, there remain notable differences in the cover available...
21 May
Read More 
