Business Wire

DDoS Attacks Increase by 151% in First Half Of 2020

Share

Neustar, Inc., a global information services and technology company and leader in identity resolution, today released its latest cyberthreats and trends report which identifies significant shifts in distributed denial-of-service (DDoS) attack patterns in the first half of 2020. Neustar’s Security Operations Centre (SOC) saw a 151% increase in the number of DDoS attacks compared to the same period in 2019. These included the largest and longest attacks that Neustar has ever mitigated at 1.17 Terabits-per-second (Tbps) and 5 days and 18 hours respectively. These figures are representative of the growing number, volume and intensity of network-type cyberattacks as organisations shifted to remote operations and workers’ reliance on the internet increased.

This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20200916005046/en/

Figure 1: Percentage change in number of attacks by size category, 2020 vs. 2019 (Graphic: Business Wire)

Figure 1: Percentage change in number of attacks by size category, 2020 vs. 2019 (Graphic: Business Wire)

Neustar’s role in providing navigation for internet requests (via its global UltraDNS network) and in detecting and mitigating threats (through its UltraDDoS Protect service) has given the company a front-row seat from which to observe macro cyberattack trends, as detailed in its CyberThreats and Trends Report: Jan-Jun 2020.

Largest and smallest DDoS attacks becoming increasingly intense and sophisticated

Large DDoS attacks are bigger, more intense, and happening in greater numbers than ever before. There has been a noticeable spike in large attacks across the industry, most notably the 2.3 Tbps attack targeting an Amazon Web Services client in February – the largest volumetric DDoS attack on record.

Neustar saw the total number of attacks increase by over two and a half times during January through June of 2020 compared to the same period in 2019. The increase was felt across all size categories, with the biggest growth happening at opposite ends of the scale – the number of attacks sized 100 Gbps and above grew a whopping 275% and the number of very small attacks, sized 5 Gbps and below, increased by more than 200%. Overall, small attacks sized 5 Gbps and below represented 70% of all attacks mitigated by Neustar between January and June of 2020.

“While large volumetric attacks capture attention and headlines, bad actors increasingly recognise the value of striking at low enough volume to bypass the traffic thresholds that would trigger mitigation to degrade performance or precision target vulnerable infrastructure like a VPN,” said Michael Kaczmarek, Neustar Vice President of Security Products. “These shifts put every organisation with an internet presence at risk of a DDoS attack – a threat that is particularly critical with global workforces reliant on VPNs for remote login. VPN servers are often left vulnerable, making it simple for cybercriminals to take an entire workforce offline with a targeted DDoS attack."

The rise in smaller DDoS attacks has been matched by increases in attack sophistication and intensity. 52% of threats mitigated by Neustar leveraged three vectors or more, with the number of attacks featuring a single vector essentially nonexistent. Neustar also tracked new amplification methods and attacks of higher intensity targeted at critical pieces of web infrastructure. The previous high-water mark of 500 millions-of-packets-per-second (Mpps) was topped this year, with an attack of over 800 Mpps recorded.

“The dependency and growth in online communications since COVID-19 has fundamentally changed what organisations must do to succeed,” said Brian McCann, President, Neustar Security Solutions. “There is no one-size-fits-all solution for security, but having a reliable cloud service that ensures availability and security for all services and users has proven to be a critical difference between barely surviving and thriving in this rapidly changing environment.”

Ongoing impact of COVID-19 on cyberthreats and industry web traffic

The precipitous rise in DDoS attacks mirrors the growth in internet traffic seen during the pandemic. Internet use is up between 50% and 70% and streaming media rose more than 12% in the first quarter of 2020. This has meant that attackers of all types, whether serious cybercriminals or bored teenagers stuck at home, have had more screen time to be disruptive.

In a study of one of the largest cybercrime sites by Cambridge University’s Cybercrime Centre, they found that the number of attacks enacted by the website went up sharply at the start of the pandemic and associated lockdown. They also found that instead of existing cybercriminals staging more attacks, it was new attackers driving the increase in DDoS attacks.

The corresponding attacks, like internet traffic, have not been evenly spread across all websites. It’s well known that ecommerce and gaming websites have received a lot of negative attention from hackers, but there are other industries that have been hit hard by cybercriminals over the last six months. Healthcare organisations contain sensitive patient information and a growing number of IoT devices that are easily exploited. Combined with the additional pressure of the pandemic, hospitals have become some of the most desirable targets for cybercriminals. Industries that have seen a lot of growth during the pandemic, like online gambling, have also been ripe for cyberthreats. Most notably, online video has seen an incredible rise in both usage and DDoS attacks. Omdia has reported an additional 200 billion hours of Netflix viewing or Zoom video calls over initial 2020 forecasts. Where traffic rises, so too do attacks; Neustar attack mitigations for this vertical increased by 461% over the last six months.

“While 2020 has brought radical changes in behaviour to consumers and criminals alike, it is naïve to assume that actions of either audience will revert completely to pre-pandemic norms after this crisis passes,” added Kaczmarek. “Mitigating these increasingly sophisticated DDoS attacks will continue to be a necessary part of doing business online. At a time when many organisations could do with less worry, fully managed services can take the pressure off and ensure critical digital assets are safe and secure.”

The report highlights several emerging attacker tactics seen across the industry, including an increase in burst and pulse DDoS attacks, broadening abuse of built-in network protocols such as ARMS, WS-DD, CoAP and Jenkins to launch DDoS amplification attacks that can be carried out with limited resources and cause significant disruptions, NXNS attacks targeting DNS servers, RangeAmp attacks targeting Content Delivery Networks (CDNs), and a resurgence of Marai-like malware capable of building large botnets through the exploitation of poorly secured IoT devices.

A complimentary copy of Neustar’s CyberThreats and Trends Report 1H 2020 is available here.

-ENDS-

About Neustar

Neustar is an information services and technology company and a leader in identity resolution providing the data and technology that enables trusted connections between companies and people at the moments that matter most. Neustar offers industry-leading solutions in Marketing, Risk, Communications and Security that responsibly connect data on people, devices and locations, continuously corroborated through billions of transactions. Neustar serves more than 8,000 clients worldwide, including 60 of the Fortune 100. Learn how your company can benefit from the power of trusted connections here: https://www.home.neustar.

# # #

Contact information

Jenny Morris
Hotwire for Neustar
+44 (0)7393465529
neustaruk@hotwireglobal.com

About Business Wire

For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

BCG Collaborates with Tencent Marketing Insight to Release 2020 BCG x Tencent Digital Luxury Report25.9.2020 13:21:00 EESTPress release

Since early 2020 when the COVID-19 pandemic broke out worldwide, the luxury market has been hit hard and is expected to decline 25% to 45% compared to the previous year. The Chinese luxury market, however, which has benefitted from successful domestic control of the pandemic and has taken the lead in recovery against a depressed global market environment, is forecast to grow from 20% to 30% in the whole year of 2020. Thanks to its stunning market performance, China has become the main battleground of each major luxury brand. In was in this environment that Boston Consulting Group (BCG) joined hands with Tencent Marketing Insight (TMI) to release the 2020 BCG x Tencent Digital Luxury Report, drawing on deep insights into post COVID-19 trends in the luxury market and consumers based on BCG and TMI’s quantitative consumer research and industry experience, as well as TMI’s marketing and big data capabilities. Crystal Hao, Managing Director & Partner of BCG said, “The luxury market in China

U.S. MRTP Authorization Pathway Explored in PMI’s Latest Scientific Update25.9.2020 13:15:00 EESTPress release

Philip Morris International (PMI) (NYSE: PM) has released the 11th edition of its Scientific Update, a regularly issued publication on its research efforts to develop and scientifically assess a range of smoke-free alternatives to cigarettes. The latest edition features an overview of the historic decision made by the U.S. Food and Drug Administration (FDA) to authorize the marketing of the IQOS Tobacco Heating System with reduced exposure information. The Scientific Update explains the various MRTP decisions under U.S. law; the steps, processes, and timeline PMI undertook; and the ongoing post-market surveillance and studies that will monitor the impact of the orders on consumer perceptions, behavior, and health. “The FDA undertook a scientific and regulatory evaluation of IQOS and determined that it is ‘appropriate for the promotion of public health’” said Dr. Gizelle Baker, director of Global Scientific Engagement at PMI. “In this edition of our Scientific Update, we describe how th

Palladio Completes $20 Million Series B Financing25.9.2020 13:09:00 EESTPress release

Palladio Biosciences, Inc. (Palladio), a privately-held, clinical stage biopharmaceutical company developing medicines for orphan diseases of the kidney, announced today the completion of a $20 million Series B investment. The financing was led by new investor, Samsara BioCapital, with participation from new investor, the Roche Venture Fund and existing investors, Medicxi and Osage University Partners. Proceeds from the financing will fund Palladio’s Phase 3 ALERT Study and advance operations. Srinivas Akkaraju M.D, Ph.D, Managing General Partner of Samsara BioCapital, stated, "We are very excited about our investment in Palladio to support the development of lixivaptan, a drug that has the potential to deliver a meaningful therapeutic advancement in the treatment of Autosomal Dominant Polycystic Kidney Disease (ADPKD). The ALERT Study is an important step in assessing the safety differential of lixivaptan.” “We are very pleased that Samsara and the Roche Venture Fund recognize the opp

Ant Group Launches “Trusple,” an AntChain-Powered Global Trade and Financial Services Platform for SMEs and Financial Institutions25.9.2020 10:54:00 EESTPress release

Ant Group, a leading provider in the development of open platforms for technology-driven inclusive financial services, and the parent company of China’s largest digital payment platform Alipay, today unveiled Trusple, an international trade and financial service platform powered by AntChain, the company’s blockchain-based technology solutions. Trusple aims to make it easier and less costly for all participants – especially Small-to-Medium Enterprises (SMEs) – to sell their products and services to customers around the world. It also reduces costs for financial institutions so they can better serve SMEs in need. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20200925005110/en/ (Photo: Business Wire) Based on the concept of “Trust Made Simple,” Trusple works by generating a smart contract once a buyer and a seller upload a trading order on the platform. As the order is executed, the smart contract is automatically updated with k

Ipsen Appoints Philippe Lopes-Fernandes as Executive Vice President, Chief Business Officer25.9.2020 08:00:00 EESTPress release

Regulatory News: This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20200924005822/en/ Philippe Lopes-Fernandes, Executive Vice President, Chief Business Officer, Ipsen (Photo: Business Wire) Ipsen (Euronext: IPN; ADR: IPSEY) today announced the appointment of Philippe Lopes-Fernandes as Executive Vice President, Chief Business Officer, effective 1 October 2020. Based in Cambridge, Massachusetts, USA, he will be responsible for business development and alliance management, reporting directly to David Loew, CEO, Ipsen. Philippe will serve on the Executive Leadership Team. “As Chief Business Officer, Philippe will play a crucial role in our external innovation strategy. The ELT and I are delighted to welcome Philippe to Ipsen and look forward to working closely with him. His extensive and impressive track record in international business development, his outstanding reputation and his ability to work closely with the scientific comm

Deloitte Launches < "The Next Wave" Emerging Digital Life in South and Southeast Asia > Report At Ant Group’s INCLUSION Fintech Conference25.9.2020 06:45:00 EESTPress release

Deloitte launched <"The Next Wave" Emerging Digital Life in South and Southeast Asia > Report today at the INCLUSION Fintech Conference, organized by Ant Group and Alipay to foster a global dialogue on building a more inclusive, green, and sustainable world through digital technology. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20200924005941/en/ (Graphic: Business Wire) Through an extensive survey conducted across age groups in eight countries in South and Southeast Asia, specifically Singapore, Malaysia, Thailand, Indonesia, the Philippines, India, Bangladesh and Pakistan, the report showed that consumers aged between 21 and 40 years old are the leading force enabling the rapid adoption of a digital life in the region in the post Covid-19 world. Speaking at one of the media forums on Day 2 of INCLUSION, Taylor Lam, Technology, Media & Telecommunications Industry Leader at Deloitte China, said: “Young and vibrant economies

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom