DDoS Attacks Increase by 151% in First Half Of 2020
Neustar, Inc., a global information services and technology company and leader in identity resolution, today released its latest cyberthreats and trends report which identifies significant shifts in distributed denial-of-service (DDoS) attack patterns in the first half of 2020. Neustar’s Security Operations Centre (SOC) saw a 151% increase in the number of DDoS attacks compared to the same period in 2019. These included the largest and longest attacks that Neustar has ever mitigated at 1.17 Terabits-per-second (Tbps) and 5 days and 18 hours respectively. These figures are representative of the growing number, volume and intensity of network-type cyberattacks as organisations shifted to remote operations and workers’ reliance on the internet increased.
This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20200916005046/en/
Figure 1: Percentage change in number of attacks by size category, 2020 vs. 2019 (Graphic: Business Wire)
Neustar’s role in providing navigation for internet requests (via its global UltraDNS network) and in detecting and mitigating threats (through its UltraDDoS Protect service) has given the company a front-row seat from which to observe macro cyberattack trends, as detailed in its CyberThreats and Trends Report: Jan-Jun 2020.
Largest and smallest DDoS attacks becoming increasingly intense and sophisticated
Large DDoS attacks are bigger, more intense, and happening in greater numbers than ever before. There has been a noticeable spike in large attacks across the industry, most notably the 2.3 Tbps attack targeting an Amazon Web Services client in February – the largest volumetric DDoS attack on record.
Neustar saw the total number of attacks increase by over two and a half times during January through June of 2020 compared to the same period in 2019. The increase was felt across all size categories, with the biggest growth happening at opposite ends of the scale – the number of attacks sized 100 Gbps and above grew a whopping 275% and the number of very small attacks, sized 5 Gbps and below, increased by more than 200%. Overall, small attacks sized 5 Gbps and below represented 70% of all attacks mitigated by Neustar between January and June of 2020.
“While large volumetric attacks capture attention and headlines, bad actors increasingly recognise the value of striking at low enough volume to bypass the traffic thresholds that would trigger mitigation to degrade performance or precision target vulnerable infrastructure like a VPN,” said Michael Kaczmarek, Neustar Vice President of Security Products. “These shifts put every organisation with an internet presence at risk of a DDoS attack – a threat that is particularly critical with global workforces reliant on VPNs for remote login. VPN servers are often left vulnerable, making it simple for cybercriminals to take an entire workforce offline with a targeted DDoS attack."
The rise in smaller DDoS attacks has been matched by increases in attack sophistication and intensity. 52% of threats mitigated by Neustar leveraged three vectors or more, with the number of attacks featuring a single vector essentially nonexistent. Neustar also tracked new amplification methods and attacks of higher intensity targeted at critical pieces of web infrastructure. The previous high-water mark of 500 millions-of-packets-per-second (Mpps) was topped this year, with an attack of over 800 Mpps recorded.
“The dependency and growth in online communications since COVID-19 has fundamentally changed what organisations must do to succeed,” said Brian McCann, President, Neustar Security Solutions. “There is no one-size-fits-all solution for security, but having a reliable cloud service that ensures availability and security for all services and users has proven to be a critical difference between barely surviving and thriving in this rapidly changing environment.”
Ongoing impact of COVID-19 on cyberthreats and industry web traffic
The precipitous rise in DDoS attacks mirrors the growth in internet traffic seen during the pandemic. Internet use is up between 50% and 70% and streaming media rose more than 12% in the first quarter of 2020.This has meant that attackers of all types, whether serious cybercriminals or bored teenagers stuck at home, have had more screen time to be disruptive.
In a study of one of the largest cybercrime sites by Cambridge University’s Cybercrime Centre, they found that the number of attacks enacted by the website went up sharply at the start of the pandemic and associated lockdown. They also found that instead of existing cybercriminals staging more attacks, it was new attackers driving the increase in DDoS attacks.
The corresponding attacks, like internet traffic, have not been evenly spread across all websites. It’s well known that ecommerce and gaming websites have received a lot of negative attention from hackers, but there are other industries that have been hit hard by cybercriminals over the last six months. Healthcare organisations contain sensitive patient information and a growing number of IoT devices that are easily exploited. Combined with the additional pressure of the pandemic, hospitals have become some of the most desirable targets for cybercriminals. Industries that have seen a lot of growth during the pandemic, like online gambling, have also been ripe for cyberthreats. Most notably, online video has seen an incredible rise in both usage and DDoS attacks. Omdia has reported an additional 200 billion hours of Netflix viewing or Zoom video calls over initial 2020 forecasts.Where traffic rises, so too do attacks; Neustar attack mitigations for this vertical increased by 461% over the last six months.
“While 2020 has brought radical changes in behaviour to consumers and criminals alike, it is naïve to assume that actions of either audience will revert completely to pre-pandemic norms after this crisis passes,” added Kaczmarek. “Mitigating these increasingly sophisticated DDoS attacks will continue to be a necessary part of doing business online. At a time when many organisations could do with less worry, fully managed services can take the pressure off and ensure critical digital assets are safe and secure.”
The report highlights several emerging attacker tactics seen across the industry, including an increase in burst and pulse DDoS attacks, broadening abuse of built-in network protocols such as ARMS, WS-DD, CoAP and Jenkins to launch DDoS amplification attacks that can be carried out with limited resources and cause significant disruptions, NXNS attacks targeting DNS servers, RangeAmp attacks targeting Content Delivery Networks (CDNs), and a resurgence of Marai-like malware capable of building large botnets through the exploitation of poorly secured IoT devices.
A complimentary copy of Neustar’s CyberThreats and Trends Report 1H 2020 is available here.
Neustar is an information services and technology company and a leader in identity resolution providing the data and technology that enables trusted connections between companies and people at the moments that matter most. Neustar offers industry-leading solutions in Marketing, Risk, Communications and Security that responsibly connect data on people, devices and locations, continuously corroborated through billions of transactions. Neustar serves more than 8,000 clients worldwide, including 60 of the Fortune 100. Learn how your company can benefit from the power of trusted connections here: https://www.home.neustar.
# # #
Hotwire for Neustar
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Dan Bilzerian Joins Team GGPoker & Celebrates With $100,000 Birthday Freeroll3.12.2020 17:00:00 CET | Press release
GGPoker today announces that Dan Bilzerian has joined Team GGPoker as a brand ambassador. One of the world’s most recognizable poker players and social media influencers, with over 32 million followers on Instagram, “Blitz” will represent GGPoker live and online. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20201203005724/en/ Dan Bilzerian, GGPoker's newest brand ambassador. (Photo: Business Wire) To celebrate the news, the online poker room will host a special 40th birthday party for the ‘King of Instagram’ on December 7 in the form of a $100,000 Birthday Freeroll poker tournament. This free-to-enter poker game is open to all new GGPoker players that sign up using code BLITZ40 and deposit $10 or more. What: Dan’s $100,000 Birthday Freeroll When: Monday, December 7 at 17:00 UTC How To Enter: Sign up using code BLITZ40, deposit at least $10 and use your ticket to register for the freeroll tournament Tournament Prize Pool: $10
Odense Investor Summit Introduces Investors to 15 Promising Robot Companies in Europe’s Robot Capital3.12.2020 16:47:00 CET | Press release
In just five years, robotic start-ups based in Odense, Denmark – the robot capital of Europe – have attracted more than 976 million USD. This year, the local Danish entrepreneurs will be joined by companies from the RobotUnion Super Stars; finalists from the pan-European robot acceleration program. The event is being sponsored by Vækstfonden, the Danish State’s investment fund, with the objective of making matches between leading Danish entrepreneurs seeking capital backing, and top international investors on the hunt for the next “golden goose” in the world of robotics. On December 9th, a carefully selected field of robot enterprises seeking capital will be presenting their ground-breaking automation solutions for a broad spectrum of industries at this year’s Odense Investor Summit. The 2020 summit is being held as a virtual event to involve participants from all parts of Europe and provide access to a new audience while still observing the prevailing COVID-19 restrictions. In additio
IEEE Launches 802.3™ Beyond 400Gb/s Ethernet Study Group to Define Next High Speed Threshold for Ethernet Data Rate3.12.2020 16:30:00 CET | Press release
IEEE, the world's largest technical professional organization dedicated to advancing technology for humanity, and IEEE Standards Association (IEEE SA) today announced the formation of a study group within the IEEE 802.3™ Ethernet Working Group. With bandwidth demand growing across all areas of Ethernet connectivity globally, the IEEE 802.3 Beyond 400Gb/s Ethernet Study Group will explore initiating a new IEEE project that would standardize capabilities exceeding today’s maximum data rate of 400 Gigabit per second (Gb/s) for https://cts.businesswire.com/ct/CT?id=smartlink&url=https%3A%2F%2Fstandards.ieee.org%2Fstandard%2F802_3-2018.html%3Futm_source%3Dbusinesswire%26utm_medium%3Dpr%26utm_campaign%3Dworking-group-2020%26utm_content%3D802&esheet=52341781&newsitemid=20201203005124&lan=en-US&anchor=IEEE+802.3%2C+IEEE+Standard+for+Ethernet&index=2&md5=214f246922adc89c9023ea7f9b810359 IEEE 802.3, IEEE Standard for Ethernet. The publicly available IEEE 802.3™ Ethernet Bandwidth Assessment (BWA
Starcity Acquires Ollie, Accelerating Its Growth as a Vertically Integrated Global Coliving Company3.12.2020 16:00:00 CET | Press release
Starcity is acquiring Ollie’s key assets, including its technology, intellectual property, and business agreements in major cities, which when combined with Starcity, will create one of the largest coliving developers and operators globally. Ollie is widely recognized as a pioneer in the coliving asset class and has partnered with institutional owners to deliver much needed affordability and community to top tier cities such as New York, Los Angeles, the San Francisco Bay Area, and Boston. Additionally, Ollie has built a proprietary technology suite of services to foster community engagement, deliver hospitality services and provide roommate matching within its communities. Following the transaction, Ollie’s key personnel will join Starcity to create a leading organization with the mission to make great cities accessible to everyone. “We are thrilled to bring on board such a high caliber team with institutional grade communities. Most importantly, we are humbled to expand our inviting,
Andersen Global Enters Georgian Market; Adds MG Law Office3.12.2020 15:30:00 CET | Press release
Andersen Global enters the Georgian market through a Collaboration Agreement with Tbilisi-based law firm MG Law Office, further expanding the organization’s coverage in the region. MG Law, ranked Tier 1 by Legal 500, provides legal services to local and foreign companies, financial institutions, investment funds, governments and public enterprises. Led by its Founder and Managing Partner Archil Giorgadze and Co-Founder Nicola Mariani, the full-service firm focuses on corporate and M&A, banking, finance, energy tax and customs, arbitration and litigation, labor and employment, competition, infrastructure and real estate. The firm’s capabilities also include R&E, trading, blockchain and fintech. “Our track record and our ability to provide best-in-class and innovative solutions with competitive fees adapted to the local market sets us apart from any other firm in Georgia,” Archil said. “Our success is attributed to our diverse group of professionals that have been working together for ye
Aviatrix Announces New Integrations to Expand Its Enterprise-Class Networking Solution on AWS3.12.2020 15:00:00 CET | Press release
AWS re:Invent 2020 – Aviatrix, the cloud network platform, announced today that it will be showcasing at AWS re:Invent 2020 how enterprise customers are benefiting from its most recent achievement of AWS Outposts Ready designation and support for AWS Gateway Load Balancer (GWLB) as well as its multi-cloud transit capabilities for AWS Lambda serverless computing. Visit Aviatrix, an Amazon Web Services (AWS) Advanced Technology Partner that has achieved the AWS Networking Competency designation, at our AWS re:Invent 2020 virtual booth November 30 through December 18, to learn how Aviatrix’s leading cloud network platform delivers superior operational visibility, advanced networking and security control, and multi-cloud readiness for enterprises moving to AWS, or schedule a demo today. “Aviatrix provides the right business-critical cloud networking platform tools that enable us to do what we need to do for our hybrid environment. There’s so much flexibility; whether it’s network segmentat
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.Visit our pressroom