Story image

It's a game of risk: DDoS attacks intensify in 2017

03 May 2017

Distributed denial of service (DDoS) attacks are getting larger this year and it’s now a game of risk, according to a new report from Neustar.

The global Worldwide DDoS Attacks and Cyber Insights Research Report found that 45% of all attacks were more than 10Gbps and 15% were at least 50Gbps, highlighting a jump that was almost double last year’s rate.

In Q1 2017, attacks were going after every industry, with 849 out of 1010 organisations hit. 85% of those attacked were hit more than once.

“With organisations across Asia Pacific being attacked more often and DDoS attacks predicted to become even larger and more complex, IT and business leaders need to evaluate the effectiveness of existing security strategies,” comments Neustar’s APAC general manager, Robin Schmitt.

Across Asia Pacific, 48% of organisations were attacked between 2-5 times. Those attacks are costing an average peak hourly revenue loss of at least $250,000.

49% of organisations are also taking an average of three hours to detect an attack and 42% take at least three hours to respond. 

What are those DDoS attacks doing on networks? Attackers are focused on distributing malware: 48% of APAC DDoS attacks resulted in virus discovery, 34% activated malware and 15% encountered ransomware.

However, an organisation’s customers are taking on DDoS monitoring, with 40% of global respondents saying they’d received attack alerts from customers, a 29% increase in 2016.

99% of global organisations have DDoS protection in place, but the report suggests that there are areas for improvement.

IoT devices are continuing to be a choke point for APAC organisations, as they are reluctant to plan use defences to extend their current security models across IoT devices. Only 35% focus on preventing attacks on IoT.

“The research shows that simply identifying an attack and depending on basic defences is not enough. Organisations in the region need to adopt stronger defences and innovative solutions to more quickly and effectively mitigate the growing risk and likely impact of a major DDoS attack,” comments Schmitt.

Neustar says that while generally Q4 is generally DDoS season, the Q1 attack data shows that the year is off to a fast start. The company says it has tripled its DDoS mitigation network capacity to 3Tbps and will increase to 10Tbps by 2018.

Sonatype and HackerOne partner on open source vulnerability reporting
Without a standard for responsible disclosure, even those who want to disclose vulnerabilities responsibly can get frustrated with the process.
OutSystems and Boncode team up for better code analysis
The Boncode and OutSystems alliance aims to help organisations to build fast and feel comfortable that the work they're delivering is at peak quality levels.
Nuance biometrics fight back against fraud
Nuance Communications has crunched the numbers and discovered that it has prevented more than US$1 billion worth of fraud from being passed on to users of its Nuance Security Suite.
SIS announces a partnership with Platform 4
“We are looking forward to a strong future in the New Zealand security industry with this global giant as our strategic partner."
Attacks targeting Cisco Webex extension explode in popularity - WatchGuard
WatchGuard's Internet Security Report for Q4 2018 also finds growing use of a new sextortion phishing malware customised to individual victims.
Developing APAC countries most vulnerable to malware - Microsoft
“As cyberattacks continue to increase in frequency and sophistication, understanding prevalent cyberthreats and how to limit their impact has become an imperative.”
Worldwide spending on security to reach $103.1bil in 2019 - IDC
Managed security services will be the largest technology category in 2019.
Kiwis know security is important, but they're not doing much about it
Only 49% of respondents use antivirus software and even fewer – just 19% -  change their passwords regularly.