DDoS Threat Report 2019 Q1

Despite the earlier FBI crackdown, the DNS amplification types of DDoS attacks continued to be a favorite of DDoS-for-hire websites, soaring more than 40 times their volume compared to last quarter. The resurgence of DDoS-as-a-service and the growing botnets reinforce the evolving cyber threat of DDoS attacks for enterprises and communications service providers (CSPs).

  • "Booter” services are still readily available to meet the incessant demand for DDoS attacks — particularly DNS Amplification attacks.
  • Bit-and-Piece attack tactics evolved, becoming more automated and targeted, with attacks on targeted IP ranges showing a more precise and consistent pattern.
  • More than 60% of application attacks originated from botnets formed by mobile gateways.
  • The continued shift to the leverage of mobile devices in attacks, which has created a new breed of botnets that caused the maximum attack durations to spike to more than 40,000 minutes at a time, or more than 27 days.
2019_Q1

 

 

Much to our surprise, while iOS is perceived as being more secure than Android, we observed that, nevertheless, more than 20% of application attack traffic is generated by iOS devices. Whether these phones were jailbroken, infected by malware, or contain zero-day exploits, the observation suggests that all smartphones are vulnerable to being leveraged to extract a user’s sensitive data or hijacked into a botnet for launching DDoS attacks.

 

You may be interested in

DDoS Statistical Report for 2022

This is the Distributed Denial of Service (DDoS) Statistical Report for 2022. This comprehensive report unveils the global shift in the DDoS threat landscape, providing key observations, metrics, and trends for the year. Discover the types of att...

DDoS Statistical Report for 1HY 2022

In the first half of 2022, the total attack count and average attack size increased by 75.60% and decreased by 55.97% respectively compared to the figures recorded in the second half of 2021. Compared to the second half of 2021, the maximum attack size...

DDoS Statistical Report for 2021

In 2021, the total attack count and average attack size both fell by 13.32% and 50.00% respectively compared to the figures registered in 2020. Compared to 2020, the maximum attack size increased by 296.62%, with the maximum attack size clocking in at 699.20 Gbps. Besides, Read More >

DDoS Threat Report 2021 Q3

Q3 saw a notable trend in which attackers launched DDoS attacks at single targets within a CSP, attributing an attack size increase of 544% QoQ and 232% YoY. Over 55% of attacks focused on hitting a specific service with high volumes of traffic simultaneously, and according to our research, sever...

DDoS Threat Report FHY 2021

Small bit-and-piece DDoS attacks boomed by 233% in the first half of 2021. As the pandemic carried on into 2021, hackers experimented with new attack patterns to avoid signature-based detection. More than 99% of all DDoS attacks were smaller than 10Gbps, as we had predicted in 2020. These small, ...