The relentless ascent of DDoS attacks

The report Q2 2015 State of the Internet published by Akamai states that there has been a multiplying growth in the quantity of DDoS assaults year over year

There has been a multiplying growth in the quantity of DDoS assaults year over year, as per Akamai. Keeping in mind assailants’ planer preferred less capable yet more length of time attacks this quarter, the quantity of hazardous super assaults keeps on expanding.

In Q2 2015, there were 12 attacks cresting at more than 100 Gigabits for every second (Gbps) and five assaults topping at more than 50 Million bundles for each second (Mpps). Not many associations have the ability to withstand such assaults all alone.

The biggest DDoS assault of Q2 2015 deliberates more than 240 gigabits for each second (Gbps) and endured for over 13 hours. Crest bandwidth speed is ordinarily obliged with  a 1-2 hour window. Q2 2015 likewise saw one of the most elevated bundle rate assaults ever recorded over the Prolexic Routed system, which crested at 214 Mpps. That assault volume is fit for taking out level 1 routers, for example, those utilized by the ISPs.

DDoS assault action set another record in Q2 2015, expanding 132% when closely contrasted with Q2 2014 and expanding 7% compared with Q1 2015. Normal top assault transmission capacity and volume expanded marginally in Q2 2015 when compared with Q1 2015, however, remained altogether lower than the peak midpoints saw in Q2 2014.

SYN and Simple Service Discovery Protocol (SSDP) were the most widely recognized DDoS assault vectors this quarter – each representing more or less 16% of DDoS attack activity. The multiplication of unsecured home-based, Internet connected gadgets utilizing the Universal Plug and Play (UPnP) Protocol keeps on making them appealing for utilization as SSDP reflectors. Basically inconspicuous for a whole year, SSDP assaults have been one of the top assault vectors for past 3 decades. SYN surges  have kept on being a standout amongst the most well-known attacks in every single volumetric  assault, going back to the first version of the security reports generated in Q3 2011.

Internet gaming has remained the most focused on industry since Q2 2014 by attackers, being targeted frequently in around 35 percent of the DDoS attacks. China has remained the top wellspring of non-ridiculed assault activity for past 2 quarters, and has been among the main three source nations since the first report was published in Q3 2011.
Contrasted with Q2 2014 closely:

• DDoS Attacks got increased by 132.43%
• Layer 7 (application layer) DDos Attacks increased by 122.22%
• Attacks related to infrastructure layer 3 & 4 got increased 133.66%
• 18.99% expansion in the normal attack assault  length of time: 20.64 versus 17.35 hours
• 11.47% abatement in normal peak speed
• 77.26% abatement in normal peak volume
• 100% expansion in attack assaults > 100 Gbps: 12 versus 6.

Contrasted with Q1 2015:

• 7.13% expansion altogether in DDoS assaults
  17.65% expansion in application (Layer 7) DDoS assaults
• 6.04% expansion in Infrastructure (Layer 3 & 4) assaults
• 16.85% diminishing in the normal assault duration: 20.64 versus 24.82 hours
• 15.46 increment in normal peak bandwidth
• 23.98% expansion in normal peak volume half
• (50%) increment in assaults > 100 Gbps: 12 versus 8

As in Q1 2015, the quarter’s top nation behind most DDoS attacks is none other than China.

Written by: Ali Qamar, Founder/Chief Editor at SecurityGladiators.com

Author Bio:
Ali Qamar is an Internet security research enthusiast who enjoys “deep” research to dig out modern discoveries in the security industry. He is the founder and chief editor at Security Gladiators, an ultimate source for cyber security. To be frank and honest, Ali started working online as a freelancer and still shares the knowledge for a living. He is passionate about sharing the knowledge with people, and always try to give only the best. Follow Ali on Twitter @AliQammar57

Pierluigi Paganini

(Security Affairs – DDoS, Akamai)