Story image

It's a game of risk: DDoS attacks intensify in 2017

03 May 17

Distributed denial of service (DDoS) attacks are getting larger this year and it’s now a game of risk, according to a new report from Neustar.

The global Worldwide DDoS Attacks and Cyber Insights Research Report found that 45% of all attacks were more than 10Gbps and 15% were at least 50Gbps, highlighting a jump that was almost double last year’s rate.

In Q1 2017, attacks were going after every industry, with 849 out of 1010 organisations hit. 85% of those attacked were hit more than once.

“With organisations across Asia Pacific being attacked more often and DDoS attacks predicted to become even larger and more complex, IT and business leaders need to evaluate the effectiveness of existing security strategies,” comments Neustar’s APAC general manager, Robin Schmitt.

Across Asia Pacific, 48% of organisations were attacked between 2-5 times. Those attacks are costing an average peak hourly revenue loss of at least $250,000.

49% of organisations are also taking an average of three hours to detect an attack and 42% take at least three hours to respond. 

What are those DDoS attacks doing on networks? Attackers are focused on distributing malware: 48% of APAC DDoS attacks resulted in virus discovery, 34% activated malware and 15% encountered ransomware.

However, an organisation’s customers are taking on DDoS monitoring, with 40% of global respondents saying they’d received attack alerts from customers, a 29% increase in 2016.

99% of global organisations have DDoS protection in place, but the report suggests that there are areas for improvement.

IoT devices are continuing to be a choke point for APAC organisations, as they are reluctant to plan use defences to extend their current security models across IoT devices. Only 35% focus on preventing attacks on IoT.

“The research shows that simply identifying an attack and depending on basic defences is not enough. Organisations in the region need to adopt stronger defences and innovative solutions to more quickly and effectively mitigate the growing risk and likely impact of a major DDoS attack,” comments Schmitt.

Neustar says that while generally Q4 is generally DDoS season, the Q1 attack data shows that the year is off to a fast start. The company says it has tripled its DDoS mitigation network capacity to 3Tbps and will increase to 10Tbps by 2018.

How to stay safe when shopping online
Online shopping is a great way to avoid the crowds – but there are risks.
Dell EMC embeds security in latest servers
Dell EMC's 14th generation of PowerEdge servers has comprehensive management tools to provide security across hardware and firmware.
Why data backups should be a part of daily operations
"Disaster recovery needs to address complete system failure and provide a set of security policies to govern disaster incidents."
Businesses focusing on threats from within - survey
Over 50% of respondents reported that 100 days of dwell time or more was representative of their organisation.
GCSB welcomes Inspector-General's report on intelligence warrants
Intelligence warrants can include surveillance, private communications interception, searches of physical places and things, and the seizure of communications, information and things.
Corelight and Exabeam partner to improve network monitoring
The combination of lateral movement and siloed usage of point security products leaves many security teams vulnerable to compromise.
SailPoint releases first identity annual report
SailPoint’s research found that many organisations are lacking maturity in their governance processes over identities.
Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."