Massive Increase In DDoS Attacks

Businesses are being changed by the economics of the Coronavirus-driven lockdown and for those trying to work online there has been a significant increase in Distributed Denial of Service (DDoS) attacks, according to network infrastructure service provider Voxility.

The profile of the operations targeted is typically large Hosting Providers with global operations. 

According to Voxility's data, attacks peaked at 1,035 gigabits per second (Gbps) and 1,044 Gbps on September 3 and September 4, 2020, accompanied subsequently by lower intensity attacks of 798 Gbps and 854 Gbps more recently. Voxility has helped mitigate the attacks, which it says last 15 minutes on average. 

Working from home, online learning and increased video demand meant that some network operators have been working hard to keep up throughout 2020. Unfortunately, contrasting reports about post-outbreak DDoS activity from the major DDoS industry players could mean that it will be some time before the currents wave attacks into an informative context that fits consistently with the statistical trends of recent years.

These were made up of volumetric User Datagram Protocol (UDP) flood, comprising abnormally large UDP packets, DNS amplification, and UDP packets without payload, in an attempt to overwhelm infrastructure ports with IP traffic. UDP is a communications protocol that is primarily used for establishing low-latency and loss-tolerating connections between applications on the internet. It speeds up transmissions by enabling the transfer of data before an agreement is provided by the receiving party.

There were more than 600 different originating source IPs per DDoS event and it seems likley that more large DDoS attacks should be expected in coming weeks. 

Voxility, who rent and sell hardware, network equipment, Internet access and DDoS security services, says, “The motivations behind these waves of DDoS attacks are uncertain at this point. Whether they are caused by extortion attempts or simply seeking to disrupt the hosting provider’s operations, very large volumetric DDoS attacks are occurring often across networks...... In August alone, Voxility saw more than 30 attack waves that surpassed 500Gbps in volume intensity, while at least six to seven events out of these where higher than 700Gbps. This is in contrast to what has been reported by website security companies in 2020 who have seen a more frequent, but lower-intensity attack landscape for DDoS.” 

The geographical origin of these attacks is currently under investigation, but worryingly for service providers, the frequency of these attacks has increased coinciding with the global pandemic. 

Voxility:      Search Networking:       Capacity Media:    TechRadar:           Cloud7

You Might Also Read: 

Latest Cyber Security Threats & Trends: 2020 In Review:

 

« TikTok’s Indian Rival Ready For Testing
Social Media Networking Sites You Need to Know About - part 1 »

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Clayden Law

Clayden Law

Clayden Law are experts in information technology, data privacy and cybersecurity law.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

BackupVault

BackupVault

BackupVault is a leading provider of completely automatic, fully encrypted online, cloud backup.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

BeecherMadden

BeecherMadden

BeecherMadden is a leading UK and US cyber security recruitment business. Leveraging our long-held relationships and industry knowledge, we help candidates and clients make better hiring decisions.

ICC Commercial Crime Services (CCS)

ICC Commercial Crime Services (CCS)

ICC Commercial Crime Services (CCS) is the anti-crime arm of the International Chamber of Commerce.

HyTrust

HyTrust

HyTrust specialises in security, compliance and control software for virtualization and cloud environments.

Lares Consulting

Lares Consulting

Lares is an information security consulting firm.

Logically Secure

Logically Secure

Logically Secure provide penetration testing and security assessment services.

Cyber London (CyLon)

Cyber London (CyLon)

CyLon is a leading cyber security accelerator and seed investment programme. We help entrepreneurs from across the globe to build cyber security businesses, raise investment, and develop partnerships.

Identifi Global Recruitment

Identifi Global Recruitment

Identifi Global is one of the UK's leading Cyber Security & IT Recruitment specialists.

CyVolve

CyVolve

Cyvolve is the next great leap forward in data security, ensuring constant encryption and pervasive control over all your data.