DDoS Blended Multiple Attack

December 29th, 2017 by admin Leave a reply »

Nexusguard’s Q3 2017 Threat Report shows that 55 percent of DDoS attacks in the Q3 of 2017  were multi-vector attacks, blending UDP-flood, NTP amplification and other attack vectors.

The survey analyzed more than 9,600 attacks. This number is 10 times more than the previous year.

“Our Q1 predictions that UDP-based attacks originating from NTP vulnerabilities would increase came true, as we observed NTP amplification reach a new high with a 425 percent jump compared to Q2,” Nexusguard CTO Juniman Kasman said in a statement. “Additionally, multi-vector attacks created higher levels of difficulty in differentiating attack traffic from normal traffic, overwhelming traditional mitigation methods.”

“To protect against these types of attacks, organizations need to develop coordinated efforts to uncover new threats, remedy affected apps and ensure mitigation methods can flex and suppress growing attacks,” Kasman added.

As per the reports, China accounted for almost 21 percent of DDoS attacks worldwide in the third quarter. US stands at 5 percent.

Another survey conducted by Imperva’s Global DDoS Threat Landscape shows that attacks on bitcoin exchanges represented 3.6 percent of network layer DDoS attacks during the quarter.

“This is a clear example of DDoS attackers following the money,” Imperva senior manager Igal Zeifman said by email. “As a rule, extortionists and other cybercriminals are commonly drawn to successful online industries, especially emerging ones that are less likely to be well-protected.”

The survey was conducted after analyzing 5,765 DDoS attacks. There is also rise in the number of high packet rate network layer attacks, in which the packet forwarding rate exceeded 50 Mpps or even 100 Mpps.

“This is a cause for concern, as many mitigation solutions are ill equipped to process packets at such a high rate,” the report notes.

__________________________________________________________________________________________

AlertSec ACCESS is a patent pending technology designed to check that devices are encrypted before access to a network is granted. 

Leave a Reply