How the DDoS Attack Landscape Continues to Shift

A new report from Akamai shows a 132 percent increase in the total volume of second-quarter DDoS attacks, compared with the same period last year.

While HTTPS is generally considered a good thing for security because it provides encrypted data transport, it can also be used by attackers looking to breach an organization; 56 percent of attacks were over HTTPS.

The Shellshock vulnerability, first disclosed in September 2014, was actively being exploited by attacks over HTTPS in the second quarter of 2015.

Looking at regular HTTP Web traffic, SQL injection (SQLi) is the top attack vector, followed by local file inclusion (LFI).

The vast majority (90 percent) of DDoS attacks targeted the infrastructure layer, while 10 percent affected the application layer.

Ten out of twelve DDoS attacks of 100G bps or higher targeted the Internet and telecom industry. Among the largest DDoS attacks in the second quarter was a 249G-bps attack on April 3 that targeted an Internet and telecom company.

While high-bandwidth DDoS attacks affected Internet and telecom organizations significantly in the second quarter, based on frequency, the gaming industry is still the most targeted overall, representing 35 percent of attacks in the second quarter.

While Web application attacks are a global problem, the United States remains the top target—representing 81 percent of attacks in the second quarter of 2015.

During the second quarter, Akamai reported that 37 percent of all DDoS attacks originated in China.