CIO Influence
CIO Influence News Security

New Research from Corero Network Security Provides In-Depth Look at TCP SYN Packets

New Research from Corero Network Security Provides In-Depth Look at TCP SYN Packets

Corero Network Security, the specialists in distributed denial of service (DDoS) protection solutions, released new threat research offering an in-depth examination of TCP SYN packets. These packets play a crucial role in initiating connections over the internet’s fundamental TCP/IP protocol. However, their importance also makes them a prime target for DDoS and other cyberattacks.

CIO INFLUENCE: CIO Influence Interview with Russ Ernst, Chief Technology Officer at Blancco

In the research note “TCP SYN Packets: The Good, The Bad, and The Ugly,” Corero cyber security engineer Huy Nguyen provides a comprehensive overview of SYN packets. The report details the components of a valid SYN packet and how it adheres to TCP specifications. It also covers how attackers can craft malicious SYN packets to overwhelm targets or disguise their origins.

Nguyen states, “[TCP SYN packets] are one of the most important packet types in TCP communication. Knowing their characteristics and behaviors can help defenders make better decisions when it comes to blocking a SYN-based attack.

Key highlights from the report include:

  • Characteristics of legitimate TCP SYN packets.
  • Indicators of suspicious SYN packets and the methods these may be used in DDoS attacks.
  • Examples of uncommon, but not necessarily malicious, SYN packet types.

The research provides network security experts with guidance on inspecting SYN traffic and identifying abnormalities. “Understanding SYN packets, their applications, and expected traffic patterns, will help increase the chances of blocking SYN-based attack vectors successfully,” said Nguyen.

CIO INFLUENCE: CIO Influence Interview with Lior Yaari, CEO and Co-Founder at Grip Security

Corero Network Security is a leading provider of DDoS protection solutions, specializing in automatic detection and protection solutions with network visibility, analytics, and reporting tools. Corero’s technology protects against external and internal DDoS threats in complex edge and subscriber environments, ensuring internet service availability. With operational centers in Marlborough, Massachusetts, USA, and Edinburgh, UK, Corero is headquartered in London and listed on the London Stock Exchange’s AIM market.

CIO INFLUENCE: CIO Influence Interview with Bill Lobig, VP of Product Management at IBM Automation

[To share your insights with us, please write to]

Related posts

TE Connectivity’s New Multi-fiber Cable Assemblies Connect Multiple Units

CallTower Launches Native SMS and MMS Texting for Microsoft Teams

CIO Influence News Desk

Spectro Cloud Brings Open, Secure Kubernetes Management to Government Organizations with Palette Vertex

PR Newswire