Shorter duration attacks are on the rise hampering attack detection, mitigation and event correlation
The frequency of DDoS attacks has once again risen, this time by 40% year on year, Corero Network Security (LSE: CNS) – a leading provider of real-time DDoS defence solutions, has disclosed in its H1 Trends Report 2018 published today.
While frequency has increased, the duration of attacks decreased with 77% lasting ten minutes or less, of which 63% last five minutes or less. Perhaps more concerning is that, having faced one attack, one in five organisations will be targeted again within 24 hours.
Putting this into context, Corero’s CEO – Ashley Stephenson said, “Organisations are dependent on the Internet as a means to conduct business and deliver consumer/citizen services. Any event that affects this ability to function will have a significant impact on that business. With Internet resilience coming down to a fraction of a second, it’s easy to see why DDoS attacks are considered one of the most serious threats to Internet availability today resulting in damage to a brand’s reputation, customer trust and revenue. As short duration attacks are much quicker – with 63% lasting under five minutes, many organisations are failing to identify that they’ve been hit by a DDoS attack. This lack of correlation with service lagging, or even failure, leaves organisations vulnerable as they’re neither successfully mitigating the attack nor the damage that is inflicted to the customer experience, affecting loyalty and ultimately causing revenue erosion.”
Other key highlights in the report are:
- Low volume, sub-saturating attacks continue to dominate (94% less than 5Gbps)
- Whilst still infrequent, attacks over 10Gbps have doubled
- Organisations faced an average of 8 attacks per day in Q2 2018, an increase of 40% compared to the same quarter in 2017
To keep up with the growing sophistication and organisation of well-equipped and well-funded threat actors, it is essential that organisations maintain comprehensive visibility and automated mitigation capabilities across their networks, to instantly detect and block any DDoS attacks as they arise.
Ashley concludes, “Proactive DDoS protection is a critical element of proper cyber security against loss of service availability and data breach activity. The everyday DDoS attacks that Corero has highlighted in this report cannot be properly defeated with traditional Internet gateway security solutions such as firewalls, Intrusion Prevention Systems and the like. Similarly, on-demand cloud-based DDoS scrubbing alternatives cannot achieve successful mitigation with the low-volume, short-duration attacks that are now impacting organizations every day. As organisations develop their DDoS resiliency plans, and choose their methods of DDoS protection, time-to-mitigation must be a critical factor.”
For access to the complete Corero DDoS Trends report, download it at: https://www.corero.com/resources/reports/h1-ddos-trends-report/. To find more about Corero Network Security visit www.corero.com