Neustar: DDoS Attacks Increase 180% in 2019 Compared To 2018
Neustar, Inc., a global information services and technology company and leader in identity resolution, announced that its Security Operations Center (SOC) saw a 168% increase in distributed denial-of-service (DDoS) attacks in Q4 2019, compared with Q4 2018, and a 180% increase overall in 2019 vs. 2018. According to Neustar’s latest cyber threats and trends report, released today, the company saw DDoS attacks across all size categories increase in 2019, with attacks sized 5 Gbps and below seeing the largest growth. These small-scale attacks made up more than three quarters of all attacks the company mitigated on behalf of its customers in 2019.
DDoS attacks taking varied forms
In 2019, the largest threat Neustar mitigated, at 587 gigabits per second (Gbps), was 31% larger than the largest attack of 2018, while the maximum attack intensity observed in 2019, 343 million packets per second (Mpps), was 252% higher than that of the most intense attack seen in 2018. However, despite these higher peaks, the average attack size (12 Gbps) and intensity (3 Mpps) remained consistent year over year. The longest single, uninterrupted attack experienced in 2019 lasted three days, 13 hours and eight minutes.
Though the number of attacks increased significantly across all size categories, small-scale attacks (5 Gbps and below) again saw the largest growth in 2019, continuing the trend from the previous year. The combination of DDoS-for-hire and botnet rental services has made DDoS attacks much easier to execute, but the fact that perpetrators seem to be in many cases choosing to engage in small-scale attacks suggests that their goal may often be something other than taking a site completely offline.
“Large, headline-making DDoS attacks do still take place, but many cybersecurity professionals believe that smaller attacks are being used simply to degrade site performance or as a smokescreen for other forms of cybercrime, such as data theft or network infiltration, which the perpetrator can execute more easily while the target’s security team is busy fighting a DDoS attack,” said Rodney Joffe, senior vice president, senior technologist and fellow at Neustar. “Furthermore, with the current move of the bulk of the workforce globally to a work from home model, we expect to see a significant increase in DDoS attacks against VPN infrastructure. This risk makes an ‘always on’ DDoS mitigation service even more critical.”
In addition to conventional DDoS attacks, which seek to exhaust bandwidth, in 2019 Neustar also observed an increase in network protocol or state exhaustion attacks, which target network infrastructure directly. Volumetric attacks continued to proliferate as well, with attackers using new DDoS vectors such as Apple Remote Management Services, Web Services Dynamic Discovery, Ubiquiti Discovery Protocol and the Constrained Application Protocol.
Said Joffe, “During the shift to teleworking at scale, we would not be surprised to see the VPN protocol ports added to these targeted attacks.”
Two- and three-vector attacks ‘just right’ for attackers
In 2019, approximately 85% of all attacks used two or more threat vectors. That number is comparable to the 2018 figure; however, the number of attacks involving two or three vectors rose from 55% to 70%, with correspondingly fewer simple single-vector attacks and complex four- and five-vector attacks, suggesting that attackers have settled into the Goldilocks zone for attacks.
Security professionals continue to view DDoS attacks as a growing threat. According to the most recent Neustar International Security Council (NISC) survey, when asked which vectors they perceived to be increasing threats during November and December 2019, senior-level cybersecurity decision-makers cited social engineering via email most frequently (59%), followed by DDoS (58%) and ransomware (56%).
Web attacks increasing
2019 saw web attacks on the rise as well. Most companies recognise the danger that slow-loading websites pose to their business and attempt to protect them with web application firewalls. In the most recent NISC survey, 98% of respondents agreed that a WAF was an essential component of their security infrastructure. However, as more and more enterprises use multiple cloud providers, often involving a mix of public and private clouds, the need for consistent security across applications and platforms is growing.
“Web attacks can be difficult to track because some variation in the performance of websites is to be expected, but they are increasingly critical for businesses to address. One survey found 45% of consumers are less likely to make a purchase when they experience a slow loading website, and 37% are less likely to return to a retailer if they experience slow loading pages,” added Joffe.
A vendor-neutral cloud WAF, coupled with DDoS protection, can eliminate a large portion of threats, allowing enterprise application experts to focus their attention on the more specialised attacks. Continuous updates from a reliable threat feed can also deliver information on bad IPs and botnet command and control (C&C) sites before they are able to damage the network.
A complimentary copy of the Neustar 2019: The Year in Review cyber threats and trends report is available here.
Neustar is an information services and technology company and a leader in identity resolution providing the data and technology that enables trusted connections between companies and people at the moments that matter most. Neustar offers industry-leading solutions in Marketing, Risk, Communications, Security and Registry that responsibly connect data on people, devices and locations, continuously corroborated through billions of transactions. Neustar serves more than 8,000 clients worldwide, including 60 of the Fortune 100. Learn how your company can benefit from the power of trusted connections here: https://www.home.neustar.
# # #
Hotwire for Neustar
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Nike Extends its Athletic Leadership5.2.2020 19:00:00 CET | Press release
Today, NIKE, Inc. (NYSE: NKE), unveiled breakthrough innovation for athletes competing in the Tokyo 2020 Games, including footwear designed to provide runners with a measurable performance benefit for a new era of competition. The NEXT% platform, introduced by barrier-breaking marathoner Eliud Kipchoge, will now expand into new disciplines following its unparalleled success in distance running. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20200205005708/en/ An international group of athletes joined the Nike 2020 Forum in New York to unveil the brand's latest performance and sustainable innovations. From left to right: Ibtihaj Muhammad, English Gardner, Leticia Bufoni, Blake Leeper, Timothy Cheruiyot, Dina Asher-Smith, Tomoya Ochiai, Sky Brown, Chris Mosier, Nyjah Huston, DeAnna Price, Bebe Vio, Kevin Mayer, Megan Blunk, Brandi Chastain, Aaron Brown, Sophie Hahn, Aori Nishimura, Diana Taurasi, Miles Chamley-Watson, Leon Schae
Cepton Expands With $50 Million Investment From Koito5.2.2020 18:00:00 CET | Press release
Cepton Technologies, Inc., a leading provider of state-of-the-art, intelligent, lidar-based solutions, announced today that it has raised over $50 million in Series C funding. This brings Cepton’s total funding to nearly $100 million, providing a strong foundation to substantially ramp up its R&D efforts, expand its footprint in the automotive market and support major customers worldwide. The latest funding round was led by Koito Manufacturing Co., Ltd. (TYO:7276), the automotive Tier 1 and world-leading provider of automotive lighting systems, with an investment of $50 million. Existing investors in Cepton also participated in this round. As part of the transaction, Koito will obtain non-exclusive rights to manufacture and sell Cepton’s lidar sensor design for an automotive application, using key components supplied by Cepton. Cepton will use the proceeds to accelerate development and deployment of its advanced lidar technology in ADAS applications, in autonomous vehicle applications,
Imricor Announces First Cases Successfully Performed at Heart Center Dresden5.2.2020 17:40:00 CET | Press release
Imricor Medical Systems, Inc. (Company or Imricor) (ASX:IMR) is pleased to announce the first procedures using the Company’s products following CE mark of the Vision-MR Ablation Catheter have been performed at the Heart Center Dresden. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20200205005672/en/ Drs. Christopher Piorkowski (left) and Thomas Gaspar (right) performing iCMR ablations at the Heart Center Dresden (Photo: Heart Center Dresden). Three procedures were successfully performed over two days by Dr. Christopher Piorkowski and Dr. Thomas Gaspar (https://www.herzzentrum-dresden.com/rhythmologie/unser-team/). Additional physicians at the Heart Center Dresden will also begin performing procedures immediately. These procedures mark the first iCMR ablations anywhere in the world to ever be performed outside of a clinical trial. They were performed in an iCMR lab fitted with a Siemens 1.5T MAGNETOM Aera MR scanner. “It’s ano
VALBIOTIS Announces a Global Strategic Partnership With NESTLÉ HEALTH SCIENCE For the Development and Commercialization of TOTUM-63, a Plant-derived Active Substance With Clinically Demonstrated Metabolic Health Benefits on Prediabetics5.2.2020 17:30:00 CET | Press release
Regulatory News: VALBIOTIS (Paris:ALVAL) (FR0013254851 – ALVAL / PEA/SME eligible ), a Research & Development company committed to scientific innovation for preventing and combating metabolic diseases, announces the signature of a global long-term strategic partnership with Nestlé Health Science for the development and commercialization of TOTUM-63, an innovative and patented combination of 5 plant extracts specifically designed to reduce the risk of developing Type 2 Diabetes on prediabetics. Sébastien PELTIER, CEO of VALBIOTIS states: “Nestlé Health Science is an ideal strategic partner for VALBIOTIS. Its global reach, strategic intent to develop science-based nutritional health solutions and focus on fighting metabolic disorders like diabetes will be instrumental to TOTUM-63's worldwide commercialization success. We are excited about the opportunity that this deal brings to VALBIOTIS and to the many millions of people around the world at risk of becoming Type 2 diabetics. This trans
Skilling lanserar branschens första sömlösa integration med Spotwares cTrader, inriktad på erfarna handlare.30.1.2020 08:00:00 CET | Press release
Forex- och CFD-handelsplattformen Skilling annonserade förra veckan lanseringen av branschens första sömlösa integration med Spotwares cTrader - en unik funktion som internt kallas Ett konto. Två plattformar. Detta pressmeddelande använder multimedia. Se den fullständiga versionen här: https://www.businesswire.com/news/home/20200130005070/sv/ Skilling lanserar branschens första sömlösa integration med Spotwares cTrader. (Photo: Business Wire) Funktionen gör att Skilling kan erbjuda sina kunder sömlös handel över två olika handelsplattformar på ett enda Skilling-konto utan att behöva finansiera och hantera två olika konton separat. ”Enkelt uttryckt ville vi ge våra kunder valet vilken handelsplattform de kan använda - vår egen Skilling Trader eller en mer avancerad klientorienterad cTrader. Problemet du har med andra mäklare som erbjuder flera plattformar är behovet av att finansiera två konton separat, upprätthålla sunda marginaler på två olika konton och också ha två uppsättningar av
inRiver utser Per-Olof Schroeder till ny VD29.1.2020 16:43:00 CET | Press release
inRiver, som levererar SaaS-baserade lösningar för Product Information Management (PIM), meddelar att styrelsen idag har utsett Per-Olof Schroeder till ny VD för bolaget. Per-Olof tillträder sin tjänst med omedelbar verkan. “Styrelsen tackar Thor Johnson för hans ledning av bolaget under de två senaste åren, och är glada över att välkomna Per-Olof som vår nye VD," säger inRivers styrelseordförande, Jorgen Smidt. "Per-Olof har en påvisad erfarenhet av att mycket framgångsrikt leda utveckling av SaaS Computing Services, molnbaserade tjänster, och samtidigt leverera stark tillväxt både gällande intäkter, lönsamhet och marknadsandelar. I sin roll som bolagets VD kommer han fortsätta att utveckla inRivers mission att hjälpa våra kunder bli bäst på att marknadsföra och sälja sina produkter." Schroeder har mer än 25 års erfarenhet av ledande befattningar inom IT-branchen, inklusive 15 år på Microsoft, varav sju år som chef över Microsofts Productivity & Business Process Business Group i väste
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.Visit our pressroom