A new report indicates that the magnitude of distributed denial of service (DDoS) attacks tripled in 2013, with attacks peaking at 309 Gbps, up from attacks that measured around 100 Gbps in 2012.
The 9th Annual Worldwide Infrastructure Security Report also found that over 70% of data centers reported experiencing DDoS attacks in 2013, up from less than 50% previously, and more than one-third were the target of DDoS attacks that “exceeded total available Internet connectivity,” while one-in-ten were hit with more than 100 attacks every month on average.
Other key findings in the report include:
- Nearly a quarter of those respondents offering mobile services indicated that they have seen DDoS attacks impacting their mobile Internet (Gi) infrastructure.This represents more than double the proportion seen last year
- More than 20 percent offering mobile services indicated that they have suffered a customer-visible outage due to a security incident, down slightly from about one-third last year
- The proportion of respondents seeing APTs on their networks has increased from 22 percent to 30 percent year over year
- 57 percent of survey respondents do not have a solution deployed to identify employee-owned devices accessing the corporate network
- Continued strong growth in application-layer attacks targeting encrypted Web services (HTTPS) – up 17 percent over last year
- Just over one-third experienced customer-impacting DDoS attacks on DNS infrastructure—an increase from a quarter last year
- More than a quarter indicated that there is no security group within their organizations with formal responsibility for DNS security, up from 19 percent last year. This increase is surprising given the number of high-profile DNS reflection/amplification attacks that were seen during the survey period
“From the ISP to the enterprise, IT and security teams are facing a dynamic threat landscape and very skilled and patient adversaries. Our ninth annual report showcases that very clearly,” said Arbor Networks’ Matthew Moynahan.
“There is no single, magic bullet solution and it is a mistake to think technology alone can secure a network. Multi-layered defenses are clearly needed, but so is a commitment to best practices for people and process.”
Read More Here (PDF)…