DDoS - multiple attack types on the increase

Verisign observed that 52 percent of DDoS attacks that were mitigated in Q2 2018 employed multiple attack types.

  • 6 years ago Posted in
Verisign has released its Q2 2018 DDoS Trends Report, which represents a unique view into the attack trends unfolding online, through observations and insights derived from distributed denial of service (DDoS) attack mitigations enacted on behalf of customers of Verisign DDoS Protection Services.

Verisign observed that 52 percent of DDoS attacks that were mitigated in Q2 2018 employed multiple attack types. There was a 35 percent increase in the number of attacks, with a 49 percent decrease in the average of attack peak sizes, when compared to Q1 2018; however, the average of attack peak sizes has increased by 111 percent, year over year.

The largest volumetric DDoS attack observed by Verisign in Q2 2018 was a User Datagram Protocol (UDP) fragment flood that peaked at approximately 42 Gigabits per second (Gbps) and 3.5 Million packets per second (Mpps), and lasted approximately three hours. The highest intensity DDoS attack observed by Verisign in Q2 2018 was a multi-vector attack that peaked at approximately 38 Gbps and 4.7 Mpps, and lasted for approximately two hours.

KEY DDOS TRENDS AND OBSERVATIONS:

    • Fifty-six percent of DDoS attacks were UDP floods.
    • TCP-based attacks were the second most common attack vector, making up 26 percent of attack types in the quarter
    • Fifty-two percent of DDoS attacks mitigated by Verisign in Q2 2018 employed multiple attack types.
    • The Financial Services industry, representing 43 percent of mitigation activity, was the most frequently targeted industry for Q2 2018. The IT Services/Cloud/SaaS industry experienced the second highest number of DDoS attacks, representing 37 percent of mitigation activity, followed by the Media and Entertainment industry, representing 20 percent of mitigation activity.
Research shows ‘game needs to be changed,’ with security innovation years behind that of the...
73% of organizations lack automated patch management, and 62% experienced incidents involving...
Quest Software has signed a definitive agreement with Clearlake Capital Group, L.P. (together with...
Dell EMC PowerProtect Cyber Recovery for AWS provides a fast, easy-to-deploy public cloud vault to...
Aqua’s cloud native application protection platform becomes the only solution that protects cloud...
54% of organisations working on a security transformation project now or in the next 12 months.
Node4 has released its Mid-Market IT Priorities Report 2021. The independent report reveals that...
Zscaler Zero Trust exchange cloud-based architecture enables superior green security capabilities...