Friday, 30 July 2021 15:44

DDoS attack volumes rise significantly: Radware Featured

0
Shares
By
Radware director of threat intelligence Pascal Geenens

In its latest DDoS Attack Report, security vendor Radware says blocked DDoS attack volumes during the second quarter of 2021 were up more than 40% year-on-year.

Other findings in the report include an average of 5,000 malicious events (up 30%), and an observation that the Asia Pacific region came off relatively lightly: during the first half of 2021, a company in the Americas or Europe and the Middle East and Africa (EMEA) had to repel, on average, twice the average attack volume experienced a company in Asia-Pacific.

The Americas and EMEA accounted for about 80% of the blocked attack volume during that six-month period.

"While large ransomware attacks are capturing headlines, companies need to pay attention to other cyber threats," said Radware director of threat intelligence Pascal Geenens.

"From an increase in DDoS extortion campaigns and DDoS hit-and-run assaults, to a hactivist group targeting financial organisations in the Middle East, the second quarter saw a concerning amount of cyber activity compared to the activity levels we saw during the same quarter last year.

"The results of this report should serve as a strong reminder to enterprises that no company is immune from being a target."

Radware also looked at the attention different industries were receiving from attackers.

Hardest hit was the technology sector, averaging almost 3,000 attacks per company, followed by healthcare (2,000) and finance (1,350).

Retail, communications and telecommunications companies averaged between 600 and 1,000 attacks, followed by the gaming industry (400 attacks per company) and government and utility organisations (280).

The highest volume attacks were directed to the retail sector, followed by gaming, telecommunications and technology.

Some companies in the finance and technology sector faced 'hit-and-run' DDoS attacks involving repeated short bursts with very high volume. One 45-minute attack involved multiple consistent 80Gbps bursts lasting two to three minutes on a four minute cycle.

Ransom denial-of-service (RDoS) attacks, which threaten an attack unless the victim pays a ransom have been a persistent component of the DDoS threat landscape since August 2020, according to Radware. But the second quarter of 2021 saw a renewed extortion campaign by an actor posing as Fancy Lazarus.

Unsolicited vulnerability scans are another issue. During the second quarter of 2021, companies blocked an average of almost 2,000 scan events of this kind.

According to Radware, 40% of them were performed by potentially malicious scanners looking to actively exploit known vulnerabilities and attack an organisation.

"Organisations are being challenged by well organised threat actors," said Geenens.

"The window between the disclosing and weaponising of new vulnerabilities is getting very slim. In some cases, we observed less than 24 hours between a manufacturer publishing a patch and malicious activity trying to exploit the vulnerability."

Radware's full Q2 DDoS Attack Report is available here (registration required).


Subscribe to ITWIRE UPDATE Newsletter here

GRAND OPENING OF THE ITWIRE SHOP

The much awaited iTWire Shop is now open to our readers.

Visit the iTWire Shop, a leading destination for stylish accessories, gear & gadgets, lifestyle products and everyday portable office essentials, drones, zoom lenses for smartphones, software and online training.

PLUS Big Brands include: Apple, Lenovo, LG, Samsung, Sennheiser and many more.

Products available for any country.

We hope you enjoy and find value in the much anticipated iTWire Shop.

ENTER THE SHOP NOW!

INTRODUCING ITWIRE TV

iTWire TV offers a unique value to the Tech Sector by providing a range of video interviews, news, views and reviews, and also provides the opportunity for vendors to promote your company and your marketing messages.

We work with you to develop the message and conduct the interview or product review in a safe and collaborative way. Unlike other Tech YouTube channels, we create a story around your message and post that on the homepage of ITWire, linking to your message.

In addition, your interview post message can be displayed in up to 7 different post displays on our the iTWire.com site to drive traffic and readers to your video content and downloads. This can be a significant Lead Generation opportunity for your business.

We also provide 3 videos in one recording/sitting if you require so that you have a series of videos to promote to your customers. Your sales team can add your emails to sales collateral and to the footer of their sales and marketing emails.

See the latest in Tech News, Views, Interviews, Reviews, Product Promos and Events. Plus funny videos from our readers and customers.

SEE WHAT'S ON ITWIRE TV NOW!

BACK TO HOME PAGE
Published in Security
Tagged under
Stephen Withers

Stephen Withers is one of Australia¹s most experienced IT journalists, having begun his career in the days of 8-bit 'microcomputers'. He covers the gamut from gadgets to enterprise systems. In previous lives he has been an academic, a systems programmer, an IT support manager, and an online services manager. Stephen holds an honours degree in Management Sciences and a PhD in Industrial and Business Studies.

Latest from Stephen Withers

Related items

More in this category: « SolarWinds IT trends report 2021 says risks are high but so is apathy
Share News tips for the iTWire Journalists? Your tip will be anonymous
back to top