1Largest DDoS Attacks Zero In on Financial Services Customers
by Sean Michael Kerner
2Media and Entertainment Vendors Are Key Targets
While many industries are targets for DDoS attacks, during the first quarter of 2014, VeriSign mitigated more attacks against media and entertainment vendors than any other industry vertical.
3Frequency of Attacks Against Finance Industry Are Down
In the first quarter of 2014, VeriSign reported that the frequency of attacks against its clients in the finance industry declined by 34 percent year over year. In contrast, there was a 33 percent increase in attack frequency year-over-year for all other industries combined.
4Average DDoS Attack Size Was 3.92G bps
The average DDoS attack size in the first quarter of 2014 was 3.92G bps, which is a 6 percent increase over the first quarter of 2013.
5The Largest DDoS Attacks Impacted Financial Services
VeriSign reported that its financial services customers were targeted with DDoS attacks that peaked at 160G bps.
6Application Layer Is a Key Target
VeriSign found that 30 percent of DDoS attacks during the first quarter took specific aim at Web applications.
7Amplification Attacks Ranged from 50G-75G bps
In an amplification attack, the volume of the attack is magnified by leveraging vulnerable Internet services to increase the number of attacking addresses and the total bandwidth. In the first quarter of 2014, VeriSign saw DDoS amplification attacks that abused Network Time Protocol (NTP) and DNS.
8SNMP and IKE Attacks Could Be Next
To date, amplification attacks have leveraged NTP and DNS. Looking forward, VeriSign expects attacks to leverage SNMP and IKE, among other UDP protocols to launch new forms of DDoS amplification attacks.