Neustar: DDoS Attacks Increase 180% in 2019 Compared To 2018
Neustar, Inc., a global information services and technology company and leader in identity resolution, announced that its Security Operations Center (SOC) saw a 168% increase in distributed denial-of-service (DDoS) attacks in Q4 2019, compared with Q4 2018, and a 180% increase overall in 2019 vs. 2018. According to Neustar’s latest cyber threats and trends report, released today, the company saw DDoS attacks across all size categories increase in 2019, with attacks sized 5 Gbps and below seeing the largest growth. These small-scale attacks made up more than three quarters of all attacks the company mitigated on behalf of its customers in 2019.
DDoS attacks taking varied forms
In 2019, the largest threat Neustar mitigated, at 587 gigabits per second (Gbps), was 31% larger than the largest attack of 2018, while the maximum attack intensity observed in 2019, 343 million packets per second (Mpps), was 252% higher than that of the most intense attack seen in 2018. However, despite these higher peaks, the average attack size (12 Gbps) and intensity (3 Mpps) remained consistent year over year. The longest single, uninterrupted attack experienced in 2019 lasted three days, 13 hours and eight minutes.
Though the number of attacks increased significantly across all size categories, small-scale attacks (5 Gbps and below) again saw the largest growth in 2019, continuing the trend from the previous year. The combination of DDoS-for-hire and botnet rental services has made DDoS attacks much easier to execute, but the fact that perpetrators seem to be in many cases choosing to engage in small-scale attacks suggests that their goal may often be something other than taking a site completely offline.
“Large, headline-making DDoS attacks do still take place, but many cybersecurity professionals believe that smaller attacks are being used simply to degrade site performance or as a smokescreen for other forms of cybercrime, such as data theft or network infiltration, which the perpetrator can execute more easily while the target’s security team is busy fighting a DDoS attack,” said Rodney Joffe, senior vice president, senior technologist and fellow at Neustar. “Furthermore, with the current move of the bulk of the workforce globally to a work from home model, we expect to see a significant increase in DDoS attacks against VPN infrastructure. This risk makes an ‘always on’ DDoS mitigation service even more critical.”
In addition to conventional DDoS attacks, which seek to exhaust bandwidth, in 2019 Neustar also observed an increase in network protocol or state exhaustion attacks, which target network infrastructure directly. Volumetric attacks continued to proliferate as well, with attackers using new DDoS vectors such as Apple Remote Management Services, Web Services Dynamic Discovery, Ubiquiti Discovery Protocol and the Constrained Application Protocol.
Said Joffe, “During the shift to teleworking at scale, we would not be surprised to see the VPN protocol ports added to these targeted attacks.”
Two- and three-vector attacks ‘just right’ for attackers
In 2019, approximately 85% of all attacks used two or more threat vectors. That number is comparable to the 2018 figure; however, the number of attacks involving two or three vectors rose from 55% to 70%, with correspondingly fewer simple single-vector attacks and complex four- and five-vector attacks, suggesting that attackers have settled into the Goldilocks zone for attacks.
Security professionals continue to view DDoS attacks as a growing threat. According to the most recent Neustar International Security Council (NISC) survey, when asked which vectors they perceived to be increasing threats during November and December 2019, senior-level cybersecurity decision-makers cited social engineering via email most frequently (59%), followed by DDoS (58%) and ransomware (56%).
Web attacks increasing
2019 saw web attacks on the rise as well. Most companies recognise the danger that slow-loading websites pose to their business and attempt to protect them with web application firewalls. In the most recent NISC survey, 98% of respondents agreed that a WAF was an essential component of their security infrastructure. However, as more and more enterprises use multiple cloud providers, often involving a mix of public and private clouds, the need for consistent security across applications and platforms is growing.
“Web attacks can be difficult to track because some variation in the performance of websites is to be expected, but they are increasingly critical for businesses to address. One survey found 45% of consumers are less likely to make a purchase when they experience a slow loading website, and 37% are less likely to return to a retailer if they experience slow loading pages,” added Joffe.
A vendor-neutral cloud WAF, coupled with DDoS protection, can eliminate a large portion of threats, allowing enterprise application experts to focus their attention on the more specialised attacks. Continuous updates from a reliable threat feed can also deliver information on bad IPs and botnet command and control (C&C) sites before they are able to damage the network.
A complimentary copy of the Neustar 2019: The Year in Review cyber threats and trends report is available here.
-ENDS-
About Neustar
Neustar is an information services and technology company and a leader in identity resolution providing the data and technology that enables trusted connections between companies and people at the moments that matter most. Neustar offers industry-leading solutions in Marketing, Risk, Communications, Security and Registry that responsibly connect data on people, devices and locations, continuously corroborated through billions of transactions. Neustar serves more than 8,000 clients worldwide, including 60 of the Fortune 100. Learn how your company can benefit from the power of trusted connections here: https://www.home.neustar.
# # #
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20200326005046/en/
Contact information
Jenny Morris
Hotwire for Neustar
+44 (0)7393465529
neustaruk@hotwireglobal.com
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
500 Global and Creators HQ Support Creators and Founders Building Startups Collectively Valued at US$130M+13.1.2026 18:00:00 EET | Press release
500 Global, one of the world’s most active Silicon Valley-based venture capital firms1, and Creators HQ, the first content creator hub in the UAE and the Middle East enabling the creator ecosystem globally, announced the Creators Ventures Accelerator program is building and supporting creator-led startups collectively valued at over US$130 million.2 The Creators Ventures Accelerator received over 1,100 applications from content creators and technology startup founders across more than 70 countries. Following a competitive selection process, 21 creators and founders were chosen for the program. This cohort serves a community of 20M+ followers, subscribers, and users across platforms. “Creators represent a growing class of bona fide entrepreneurs, with 50 million creators globally, projected to grow at 10-20% annually over the next 5 years. The first iteration of this industry was built on visibility and virality to monetize. With consumers getting savvier and more discerning, we believe
Nexo Becomes First-Ever Title Partner of the U.S. ATP 500 Dallas Open in Multi-Year Deal13.1.2026 17:30:00 EET | Press release
Nexo, the digital assets wealth platform, has been named the U.S. ATP 500 Dallas Open’s first-ever Title Partner under a multi-year agreement beginning in 2026, as the company advances its long-term brand strategy through leading global sports properties. The partnership was unveiled in Dallas alongside the debut of the Nexo Dallas Open brand and the resurfacing of two public tennis courts in North Texas. As one of only two ATP 500 tournaments in the U.S. and the country’s sole indoor ATP Tour championship, the Dallas Open places Nexo among a limited group of ATP 500 title partners. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260113901822/en/ The Nexo Dallas Open “This partnership with Nexo represents a transformative milestone for the Dallas Open,” said Tournament Director Peter Lebedevs. “Securing a title sponsor of this caliber as we launch into year two as an ATP 500 event continues to elevate our tournament on the gl
Blue Matter Establishes New Capabilities in Biopharma Research & Development Led by Partner, Tara Austraat-Churik13.1.2026 16:01:00 EET | Press release
Blue Matter is pleased to announce that it has established a practice area dedicated to serving clients in biopharmaceutical Research & Development (R&D). The practice is led by Tara Austraat-Churik, a Partner who joined the firm in September 2025. Tara Austraat-Churik has been serving life science clients for more than 20 years. Her areas of expertise include strategy development and implementation, operating model and organizational design, and process optimization in R&D and Medical Affairs. Prior to joining Blue Matter, she served as Managing Director in R&D, Health, Science, and Wellness at EY. She has a robust background in consulting, which also includes roles at Booz Allen Hamilton, Navitas, WPP, and IBM. She holds a BA and MA from the University of Notre Dame and an MSc in Translational Medicine from the University of Edinburgh. The R&D practice, according to Austraat-Churik, exists to help biopharma companies simplify and accelerate the pathway to market. She adds, “R&D organ
Wasabi Raises $70M in New Equity to Power the Next Era of Data Infrastructure13.1.2026 16:00:00 EET | Press release
Wasabi Technologies, the Hot Cloud Storage company, today announced a $70 million equity funding round led by L2 Point Management with participation from Pure Storage and existing investors including Fidelity Management & Research Company. The new round values Wasabi at $1.8 billion and brings the company’s total funding to over $600 million. The capital will be used to accelerate Wasabi’s expansion into AI infrastructure, broaden its global footprint, and enhance its product portfolio to meet the growing data demands of enterprises and AI developers worldwide. “We’re ushering in the next generation of cloud storage, powering data-intensive workloads like generative AI and autonomous systems,” said David Friend, co-founder and CEO of Wasabi Technologies. “This funding underscores Wasabi’s strong market position and continued growth as enterprises and AI developers alike seek a better, more predictable alternative to the hyperscalers.” Wasabi disrupted the cloud storage model in 2017 wi
Armis Secures Italy’s Primary Public Healthcare Provider for the City of Naples as Cyber Threats Increase13.1.2026 15:00:00 EET | Press release
Armis, the cyber exposure management & security company, today announced that ASL Napoli 1 Centro, Italy’s primary public healthcare provider for the City of Naples, is securing its attack surface using Armis Centrix™, the Armis Cyber Exposure Management Platform. Prior to working with Armis, ASL Napoli 1 Centro did not have the tools or capabilities to monitor physical and virtual assets in real time, which posed a challenge for its security and compliance. Armis Centrix™ was deployed with a clear goal: to provide ASL Napoli 1 Centro with a comprehensive, real-time view of its connected biomedical inventory and the associated risks to the overall environment. “Time-to-value was practically immediate; Armis began delivering valuable information as soon as the system was activated and connected to our internal network,” said Fulvio Paone, Director of the ICT and Digital Transformation Unit at ASL Napoli 1 Centro. “Armis has given us visibility into a critical area. This isn’t just about
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom