DDoS attacks continue to plague organizations in 2021
Telecommunications was the industry most targeted by DDoS attacks during Q1
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
New data from the web infrastructure companyCloudflarehas revealed thatDDoS attackscontinue to be a major problem for organizations worldwide and especially those in the telecommunications industry.
Application-layer or HTTP DDoS attacks are a type of attack that aims to disrupt an HTTP server by making it unable process requests. If a server is targeted by one of these attacks and receives more requests that it can process, then the server will drop legitimate requests or even crash.
According to Cloudflare, telecommunications was the most targeted industry during the first quarter of this year which is a significant jump from sixth place in 2020. Meanwhile, the consumer services and security and investigations industries took second and third place respectively when it came to DDoS activity by industry.
As the source IP cannot be spoofed in an HTTP DDoS attack, looking up the location of the source IP of one of its clients allows Cloudflare to identify the source country of an attack. During Q4 of 2020 and Q1 of 2021, China was the country with the most DDoS activity followed by the US in second place and Malaysia in third. When it came to DDoS activity by target country, China and the US also came in first and second place.
DDoS attack trends
One of the biggest trends in DDoS attack trends in Cloudflare’s2021 Q1 DDoS Reportis the emergence of Ransom DDoS (RDDoS) attacks. Of the customers surveyed by Cloudflare during the first quarter of 2021, 13 percent of those hit by a DDoS attack reported that they were either extorted by an RDDoS attack or received a threat in advance.
Network-layer DDoS attacksare also becoming an increasing threat for organizations worldwide. While application layer attacks strike the application (Layer 7 of the OSI model) running the service end users are trying to access, network layer attacks instead target exposed network infrastructure such as in-lineroutersand other network servers as well as the internet link itself.
When it came to the months with the highest number of network-layer DDoS attacks in Q1, January was the biggest month and 42 percent of the total attacks observed in the quarter happened during the first month of the year followed by March at 34.2 percent and February at 23.8 percent.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Network-layer DDoS attacks are also getting smaller as a vast majority (over 97%) of L3/4 attacks during Q1 were smaller than 1 mpps and 500 Mbps. However, attacks under 500 Mbps are often enough to create major disruptions for internet properties that are not protected by cloud-basedDDoS protection.
As DDoS attacks have remained an effective tool in the arsenal of cybercriminals since the first attack of this kind occurred back in 1999, organizations that want to keep their websites and services up and running should invest in DDoS protection now if they haven’t already.
After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home.
A new form of macOS malware is being used by devious North Korean hackers
Scammers are using fake copyright infringement claims to hack businesses
This new malware utilizes a rare programming language to evade traditional detection methods
