According to Akamai Technologies, Q1 2015 showed that distributed denial-of-service attacks are on the rise again, and according to Akamai Technologies, Q1 set a record for the number of DDoS attacks, where the numbers of attacks by DDoS doubled comparing with Q1 2014.
Eric Kobrin, the Akamai’s director of information security associated the increase of DDoS attacks with the continued “exploitation of network devices and associated protocols for reflection attacks, as well as the growing popularity of DDoS-for-hire sites.”
“(It’s) very inexpensive to launch attacks DDoS being used as a preferred attack method for malicious actors,” explained Kobrin. “As a result, we have noticed an increase within our customer base as well an overall higher demand for cloud-based DDoS mitigation services.”
More useful information extracted from the study is that Akamai registered eight major DDoS attacks, “Mega attacks” that reached more than 100 Gigabits per second, with a peak of 170 Gbps:
“Some of the growth is likely related to new vulnerability disclosures and the commercialization of DDoS botnets,”,”Some of it may be an artifact of our evolving measurement systems.”
The report mentions also a possible evolution of DDoS attacks with the adoption of the IPv6 protocol.
“Because IPv6 grants each user a large address space…security solutions may be bypassed by attackers appearing to come from multiple addresses without needing to purchase or steal more connectivity,” . “Additionally, software designed for IPv4, which had IPv6 shoehorned in, may not have duplicated the protections which had been added for v4 vulnerabilities to the v6 side of the codebase.”
Enjoy the report!
About the Author Elsio Pinto
Edited by Pierluigi Paganini
(Security Affairs – DDoS, Akamai)
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.