DDoS Threat Report FHY 2021

Small bit-and-piece DDoS attacks boomed by 233% in the first half of 2021. As the pandemic carried on into 2021, hackers experimented with new attack patterns to avoid signature-based detection. More than 99% of all DDoS attacks were smaller than 10Gbps, as we had predicted in 2020. These small, nimble attacks can cripple communications service providers (CSPs) and Internet service providers (ISPs) if they leave detection to threshold or signature-based methods alone.

Key Observations:
  • Small but effective DDoS attacks prevalent in the first half of 2021: Rather than launching large bandwidth attacks against their targets, perpetrators now choose to employ attacks using high packet-rate loads of small-sized traffic from DDoS-for-hire services, with the aim of evading DDoS mitigation detection systems.
  • UDP attacks surge as DDoS tactics shift: UDP based attacks accounted for 43.69% of all attack cases in the first half of this year. Unlike in previous years where a large percentage of UDP attacks used DNS amplification to magnify the attack size against target networks, this half year saw only 26.08% of such attacks being employed. Instead, 3 different types of UDP-based attacks were identified.
    report sceenshot 2
  • Bit-and-piece attacks continue to rise in number and severity: A 232.83% jump was recorded for bit-and-piece attacks compared with the latter half of 2020. Based on our findings, 39.94% of bit-and-piece attacks were significantly enhanced through the use of TCP ACK traffic as a new attack vector. During the first half of 2020, a total of 84 ASNs were impacted by bit-and-piece attacks. The total number of IP prefixes (Class C) attacked was 231.
    report screenshot-1


You may be interested in

DDoS Statistical Report for 1HY 2023

The DDoS Statistical Report for 1HY 2023 shows significant changes in attack patterns and trends in the first half of 2023, revealing details of attack size, duration, types, categories, distribution and targets.

The most common attack types in 1HY 2023 were NTP Amplification Attacks and ...

DDoS Statistical Report for 2022

This is the Distributed Denial of Service (DDoS) Statistical Report for 2022. This comprehensive report unveils the global shift in the DDoS threat landscape, providing key observations, metrics, and trends for the year. Discover the types of att...

DDoS Statistical Report for 1HY 2022

In the first half of 2022, the total attack count and average attack size increased by 75.60% and decreased by 55.97% respectively compared to the figures recorded in the second half of 2021. Compared to the second half of 2021, the maximum attack size...

DDoS Statistical Report for 2021

In 2021, the total attack count and average attack size both fell by 13.32% and 50.00% respectively compared to the figures registered in 2020. Compared to 2020, the maximum attack size increased by 296.62%, with the maximum attack size clocking in at 699.20 Gbps. Besides, Read More >

DDoS Threat Report 2021 Q3

Q3 saw a notable trend in which attackers launched DDoS attacks at single targets within a CSP, attributing an attack size increase of 544% QoQ and 232% YoY. Over 55% of attacks focused on hitting a specific service with high volumes of traffic simultaneously, and according to our research, sever...