Massive Increase In DDoS Attacks

Uploaded on 2020-09-22 in FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Businesses are being changed by the economics of the Coronavirus-driven lockdown and for those trying to work online there has been a significant increase in Distributed Denial of Service (DDoS) attacks, according to network infrastructure service provider Voxility.

The profile of the operations targeted is typically large Hosting Providers with global operations. 

According to Voxility's data, attacks peaked at 1,035 gigabits per second (Gbps) and 1,044 Gbps on September 3 and September 4, 2020, accompanied subsequently by lower intensity attacks of 798 Gbps and 854 Gbps more recently. Voxility has helped mitigate the attacks, which it says last 15 minutes on average. 

Working from home, online learning and increased video demand meant that some network operators have been working hard to keep up throughout 2020. Unfortunately, contrasting reports about post-outbreak DDoS activity from the major DDoS industry players could mean that it will be some time before the currents wave attacks into an informative context that fits consistently with the statistical trends of recent years.

These were made up of volumetric User Datagram Protocol (UDP) flood, comprising abnormally large UDP packets, DNS amplification, and UDP packets without payload, in an attempt to overwhelm infrastructure ports with IP traffic. UDP is a communications protocol that is primarily used for establishing low-latency and loss-tolerating connections between applications on the internet. It speeds up transmissions by enabling the transfer of data before an agreement is provided by the receiving party.

There were more than 600 different originating source IPs per DDoS event and it seems likley that more large DDoS attacks should be expected in coming weeks. 

Voxility, who rent and sell hardware, network equipment, Internet access and DDoS security services, says, “The motivations behind these waves of DDoS attacks are uncertain at this point. Whether they are caused by extortion attempts or simply seeking to disrupt the hosting provider’s operations, very large volumetric DDoS attacks are occurring often across networks...... In August alone, Voxility saw more than 30 attack waves that surpassed 500Gbps in volume intensity, while at least six to seven events out of these where higher than 700Gbps. This is in contrast to what has been reported by website security companies in 2020 who have seen a more frequent, but lower-intensity attack landscape for DDoS.” 

The geographical origin of these attacks is currently under investigation, but worryingly for service providers, the frequency of these attacks has increased coinciding with the global pandemic. 

Voxility:      Search Networking:       Capacity Media:    TechRadar:           Cloud7

You Might Also Read: 

Latest Cyber Security Threats & Trends: 2020 In Review:

 

« TikTok’s Indian Rival Ready For Testing
Social Media Networking Sites You Need to Know About - part 1 »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Datto

Datto

Datto delivers a single toolbox of easy to use products and services designed specifically for managed service providers and the businesses they serve.

Nixu

Nixu

Nixu is the largest Nordic specialist company in information security consulting.

Cyber Future Foundation (CFF)

Cyber Future Foundation (CFF)

CFF was established to create a cyberspace where digital commerce and innovation can thrive based on trust and respect to individual privacy.

Ubiq Security

Ubiq Security

Ubiq has developed a software solution that secures any type of data, on any device, anywhere, with nearly no impact to system performance or user experience.

H3C Group

H3C Group

H3C provides a full range of Computer, Storage, Networking and Security solutions.

ITU Arab Regional Cyber Security Center (ITU-ARCC)

ITU Arab Regional Cyber Security Center (ITU-ARCC)

ITU-ARCC acts as ITU’s cybersecurity hub in the Arab Region localizing and coordinating cybersecurity initiatives.

Navarino

Navarino

Navarino is the maritime industry’s most advanced communications and connectivity company. We develop advanced technologies and innovative IT solutions including cyber security.

TAC Security (TAC Infosec)

TAC Security (TAC Infosec)

TAC Security (aka TAC Infosec) is a leading and trusted cyber security consulting partner that specializes in securing the IT infrastructure and assets of enterprises.

AppOmni

AppOmni

AppOmni is the only SaaS CSPM solution that gives teams all the tools they need to be successful – from security posture management to monitoring and detection to continuous compliance.

Falcongaze

Falcongaze

Falcongaze SecureTower is a comprehensive DLP solution for the protection of business against internal threats.

BCN Group

BCN Group

BCN Group is an agile IT solutions provider. We are experts in delivering and managing business-critical technology solutions.

Celera Networks

Celera Networks

Celera Networks is a managed services provider specializing in cybersecurity, cloud and managed IT services.

Phriendly Phishing

Phriendly Phishing

Phriendly Phishing offers phishing awareness training programs designed to ward off potential security threats and minimise the impact of cyber attacks.

Veza Technologies

Veza Technologies

Veza is the authorization platform for data. Built for hybrid, multi-cloud environments, Veza enables organizations to manage and control who can and should take what action on what data.

Azerbaijan Cybersecurity Center (ACC)

Azerbaijan Cybersecurity Center (ACC)

Azerbaijan Cybersecurity Center is a state-of-the-art facility to deliver advanced cyber training programs and build the next generation of Azerbaijan’s cybersecurity professionals.

Zally

Zally

Using advanced behavioural biometrics and AI, Zally is the world's answer to next-generation security.