Massive Increase In DDoS Attacks

Uploaded on 2020-09-22 in FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Businesses are being changed by the economics of the Coronavirus-driven lockdown and for those trying to work online there has been a significant increase in Distributed Denial of Service (DDoS) attacks, according to network infrastructure service provider Voxility.

The profile of the operations targeted is typically large Hosting Providers with global operations. 

According to Voxility's data, attacks peaked at 1,035 gigabits per second (Gbps) and 1,044 Gbps on September 3 and September 4, 2020, accompanied subsequently by lower intensity attacks of 798 Gbps and 854 Gbps more recently. Voxility has helped mitigate the attacks, which it says last 15 minutes on average. 

Working from home, online learning and increased video demand meant that some network operators have been working hard to keep up throughout 2020. Unfortunately, contrasting reports about post-outbreak DDoS activity from the major DDoS industry players could mean that it will be some time before the currents wave attacks into an informative context that fits consistently with the statistical trends of recent years.

These were made up of volumetric User Datagram Protocol (UDP) flood, comprising abnormally large UDP packets, DNS amplification, and UDP packets without payload, in an attempt to overwhelm infrastructure ports with IP traffic. UDP is a communications protocol that is primarily used for establishing low-latency and loss-tolerating connections between applications on the internet. It speeds up transmissions by enabling the transfer of data before an agreement is provided by the receiving party.

There were more than 600 different originating source IPs per DDoS event and it seems likley that more large DDoS attacks should be expected in coming weeks. 

Voxility, who rent and sell hardware, network equipment, Internet access and DDoS security services, says, “The motivations behind these waves of DDoS attacks are uncertain at this point. Whether they are caused by extortion attempts or simply seeking to disrupt the hosting provider’s operations, very large volumetric DDoS attacks are occurring often across networks...... In August alone, Voxility saw more than 30 attack waves that surpassed 500Gbps in volume intensity, while at least six to seven events out of these where higher than 700Gbps. This is in contrast to what has been reported by website security companies in 2020 who have seen a more frequent, but lower-intensity attack landscape for DDoS.” 

The geographical origin of these attacks is currently under investigation, but worryingly for service providers, the frequency of these attacks has increased coinciding with the global pandemic. 

Voxility:      Search Networking:       Capacity Media:    TechRadar:           Cloud7

You Might Also Read: 

Latest Cyber Security Threats & Trends: 2020 In Review:

 

« TikTok’s Indian Rival Ready For Testing
Social Media Networking Sites You Need to Know About - part 1 »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

AdNovum Informatik

AdNovum Informatik

AdNovum Informatik provides a full set of IT services, ranging from consulting, the conception and implementation of customized business and security solutions to maintenance and support.

Uniscon

Uniscon

Uniscon is a leading provider of cloud security solutions in Europe.

GE Digital

GE Digital

GE Digital is a leading software company for the Industrial Internet. Products include Industrial Cyber Security for Operational Technology (OT).

ENEA Qosmos Division

ENEA Qosmos Division

Qosmos, a division of Enea, leads the market for IP traffic classification and network intelligence technology used in physical, SDN and NFV architectures.

Samoby

Samoby

Samoby provide a subscription solution for Mobile Threat Protection and usage control on Android and iOS devices.

ABS Group

ABS Group

ABS Group provides risk and reliability solutions and technical services that help clients confirm the safety, integrity and security of critical assets and operations.

FortifyData

FortifyData

FortifyData is the next generation of cyber risk management–a comprehensive platform that continuously evaluates your third-party, internal and people risks.

KrCERT/CC

KrCERT/CC

KrCERT/CC is the National Computer Emergency Response Team in Korea.

OSIbeyond

OSIbeyond

OSIbeyond provides comprehensive Managed IT Services to organizations in the Washington D.C., MD, and VA area including IT Help Desk Support, Cloud Solutions, Cybersecurity, and Technology Strategy.

Secmation

Secmation

Secmation are an agile engineering services firm providing advanced DoD level security design and consultation services for both commercial and defense hardware and software applications.

Guardian Digital

Guardian Digital

Guardian Digital makes email safe for business. Threat-ready business email protection. Fully supported.

McCrary Institute - Auburn University

McCrary Institute - Auburn University

The McCrary Institute seeks practical solutions to real-world problems in the areas of cyber and critical infrastructure security.

Global Cybersecurity Association (GCA)

Global Cybersecurity Association (GCA)

GCA’s Symposium and conferences featuring global thought leaders and CISOs provide a global best practice perspective on cybersecurity.

MindWise

MindWise

MindWise is a comprehensive global threat monitoring solution with implementations for fraud prevention and enterprise threat intelligence.

KSOC Labs

KSOC Labs

KSOC is an event-driven SaaS platform built to automatically remediate Kubernetes security risks.

Ceeyu

Ceeyu

Ceeyu is an all-in-one cybersecurity ratings and third party risk management platform.