Nokia launches DDoS protection | Electronics Weekly

Genome Shield addresses the fundamental shift in DDoS threats driven by the emergence of residential proxy botnets, which now comprise approximately 200 million compromised devices worldwide.

The DDoS threat landscape has shifted over the past 12 months. Attacks now come from real subscriber devices, deliver multi‑terabit bursts that last seconds to minutes, and rapidly rotate IPs across thousands of nodes.

Residential proxy botnets — estimated at 250–600 Tbps — are used to dynamically leverage large numbers of residential users, unaware that their connections are used to generate evasive attacks impacting many national networks.

Traditional scrubber-based diversion and reactive mitigation can’t respond quickly enough to these sub‑minute attacks.

Automated, AI-driven DDoS has industrialized the residential proxy supply chain used by botnets like Kimwolf, while AI-assisted code generation is accelerating the evolution of evasion techniques.

Nokia Deepfield Genome Shield introduces a new class of proactive, network-wide security automation that extends Deepfield Defender to address previously unaddressable use cases.

The solution has been shaped through close engagement with customers and the wider security community as part of ongoing efforts to combat DDoS and botnet-driven threats.

It shifts protection from reactive mitigation to proactive enforcement leveraging existing network infrastructure. Genome Shield aggregates continuously updated threat intelligence from multiple sources, including Nokia Deepfield Secure Genome® (spanning over five billion internet endpoints), GDTA telemetry, and Deepfield’s cyber range, where live malware and botnet command-and-control (C2s) generate real-time insights.

All of this intelligence is further compiled in Deepfield Defender into automated DDoS policies and enforced as network-wide protection against modern cyberthreats, such as outbound DDoS.