DDoS Attacks Up 40% in 2018, Accelerating Time-to-Mitigation is Key, Corero Finds

In failing to detect attacks that last five minutes or less, organizations risk revenue-draining service outages.

DDoS attacks increased 40% year-over-year in the first half of the year, according to the H1 2018 DDoS Trends Report just out from Corero Network Security.

The report underscores how much the digital world is increasingly more complex, with faster connections, the adoption of Internet of Things (IoT) devices, and the cloud services migration all contributing to potential chaos. At the same time, DDoS threats have escalated in frequency and sophistication, and cheap DDoS-for-hire services have proliferated, putting organizations at high risk for service interruptions and resulting customer impacts. Internet resilience can come down to a fraction of a second. Corero’s analysis reflects the fact that when the Internet goes down, businesses and partners that rely on that service go down with it, making DDoS attacks high impact events.

Among key findings:

  • DDoS attacks have increased 40% year-over-year in 1H:2018;
  • 1 in 5 victims are attacked again within 24 hours of an initial attack;
  • Low volume, sub-saturating attacks continue to dominate (95% less than 5Gbps);
  • Attacks over 10Gbps have doubled; and
  • Attacks are becoming even shorter in duration (82% under 10 minutes).

Corero places these findings within the context of events such as governmental actions against DDoS-for-hire services, the rise of Nation State attacks, and the Memcached exploit, which gained notoriety by breaking previous records for global DDoS attack sizes, and for which Corero shared mitigation steps.

Corero Network Security CEO Ashley Stephenson said: “Proactive DDoS protection is a critical element of proper cybersecurity against loss of service availability and data breach activity. The everyday DDoS attacks that Corero has highlighted in this report cannot be properly defeated with traditional Internet gateway security solutions such as firewalls, Intrusion Prevention Systems and the like.”

On-demand cloud-based DDoS scrubbing alternatives also fail to successfully mitigate low-volume, short-duration attacks, the Company notes.

“As organizations develop their DDoS resiliency plans, and choose their methods of DDoS protection, time-to-mitigation must be a critical factor,” Stephenson said.

The report draws on DDoS attack attempts against Corero customers in Q1 2018 and Q2 2018, and includes comparisons against previous quarters.

By Peter Kelley