DDoS attacks consistent, relentless and costly

Neustar has published its “October 2016 Worldwide DDoS Attacks & Protection Report: A Steady Threat in the Connected World,” a research report focused on DDoS attack and protection trends. The report highlights that DDoS attack volume has remained consistently high and these attacks cause real damage to organizations. The global response also affirms the prevalent use of DDoS attacks to distract as “smokescreens” in concert with other malicious activities that result in additional compromise, such as viruses and ransomware.

  • 8 years ago Posted in
“Distributed denial-of-service attacks are no longer isolated events limited to large, highly visible, targets. Sophisticated attacks hit companies of all sizes, in all industries,” said Rob Ayoub, research director, Security Products, IDC. (Source: “Worldwide DDoS Prevention Products and Services Forecast, 2016–2020,” August 2016)
 
Neustar collected responses from more than 1,000 information security professionals, including CISOs, CSOs and CTOs to determine how DDoS attacks are impacting their organization and how they are mitigating the threat. Key findings from “October 2016 Worldwide DDoS Attacks & Protection Report: A Steady Threat in the Connected World” include:
 
·         DDoS Attacks Are Unrelenting and Show No Sign of Abating: The overwhelming majority of surveyed organizations (73 percent) suffered a DDoS attack. Eighty-five percent of attacked organizations were attacked more than once and 44 percent were attacked more than five times.
·         DDoS Attacks Are Only the Tip of the Spear in Complex Assaults: The majority of organizations that suffered a DDoS attack (53 percent) also experienced some form of additional compromise. Forty-six percent of breached organizations discovered a virus, malware was activated at 37 percent of breached organizations, and ransomware was encountered at 15 percent of breached organizations.
·         DDoS Attacks Are Time-Consuming and Expensive: It can take hours to detect and mitigate a DDoS attack at significant cost to the organization. Seventy-one percent of organizations took an hour or more to detect a DDoS attack and 72 percent took an additional hour or more to respond to the attack. Forty-nine percent of surveyed organizations would lose $100,000 or more per hour of downtime during these attacks.
·         Investment in DDoS Protection Shows Promise for Future: The overwhelming majority of respondents (76 percent) are investing more in DDoS protection than they were a year ago. The majority of respondents (53 percent) are using traditional firewalls, 47 percent are using a cloud service provider and 36 percent are using an on-premise DDoS appliance combined with a DDoS mitigation service (hybrid solution).
 
“As proof of the increasing threat and destructive nature of DDoS attacks, the industry has recently seen an incredibly complex, hacked IOT device-driven DDoS attack that surpassed 620 Gbps, lasted for multiple days, and crippled a high visibility website,” said Tom Pageler, Chief Security and Risk Officer of Neustar. 
 
“Organizations should be concerned that DDoS attacks are growing increasingly sophisticated and relentless, frequently serving as the first stage of a multi-stage attack against an organization’s infrastructure,” said Rodney Joffe, Senior Vice President and Senior Technologist for Neustar. “There is a silver lining: as public attention is driving urgency to improve DDoS protection capabilities, organizations are increasingly realizing that having a DDoS mitigation solution in place is a requirement to keep your organization protected when a DDoS attack occurs.”
Research shows ‘game needs to be changed,’ with security innovation years behind that of the...
73% of organizations lack automated patch management, and 62% experienced incidents involving...
Quest Software has signed a definitive agreement with Clearlake Capital Group, L.P. (together with...
Dell EMC PowerProtect Cyber Recovery for AWS provides a fast, easy-to-deploy public cloud vault to...
Aqua’s cloud native application protection platform becomes the only solution that protects cloud...
54% of organisations working on a security transformation project now or in the next 12 months.
Node4 has released its Mid-Market IT Priorities Report 2021. The independent report reveals that...
Zscaler Zero Trust exchange cloud-based architecture enables superior green security capabilities...