Largest DDoS Attacks Zero In on Financial Services Customers

1 - Largest DDoS Attacks Zero In on Financial Services Customers
2 - Media and Entertainment Vendors Are Key Targets
3 - Frequency of Attacks Against Finance Industry Are Down
4 - Average DDoS Attack Size Was 3.92G bps
5 - The Largest DDoS Attacks Impacted Financial Services
6 - Application Layer Is a Key Target
7 - Amplification Attacks Ranged from 50G-75G bps
8 - SNMP and IKE Attacks Could Be Next
1 of 8

Largest DDoS Attacks Zero In on Financial Services Customers

by Sean Michael Kerner

2 of 8

Media and Entertainment Vendors Are Key Targets

While many industries are targets for DDoS attacks, during the first quarter of 2014, VeriSign mitigated more attacks against media and entertainment vendors than any other industry vertical.

3 of 8

Frequency of Attacks Against Finance Industry Are Down

In the first quarter of 2014, VeriSign reported that the frequency of attacks against its clients in the finance industry declined by 34 percent year over year. In contrast, there was a 33 percent increase in attack frequency year-over-year for all other industries combined.

4 of 8

Average DDoS Attack Size Was 3.92G bps

The average DDoS attack size in the first quarter of 2014 was 3.92G bps, which is a 6 percent increase over the first quarter of 2013.

5 of 8

The Largest DDoS Attacks Impacted Financial Services

VeriSign reported that its financial services customers were targeted with DDoS attacks that peaked at 160G bps.

6 of 8

Application Layer Is a Key Target

VeriSign found that 30 percent of DDoS attacks during the first quarter took specific aim at Web applications.

7 of 8

Amplification Attacks Ranged from 50G-75G bps

In an amplification attack, the volume of the attack is magnified by leveraging vulnerable Internet services to increase the number of attacking addresses and the total bandwidth. In the first quarter of 2014, VeriSign saw DDoS amplification attacks that abused Network Time Protocol (NTP) and DNS.

8 of 8

SNMP and IKE Attacks Could Be Next

To date, amplification attacks have leveraged NTP and DNS. Looking forward, VeriSign expects attacks to leverage SNMP and IKE, among other UDP protocols to launch new forms of DDoS amplification attacks.

Top White Papers and Webcasts