Distributed denial of service (DDoS) attacks pose a worrisome challenge for businesses, especially since the goal of the attack is often to disrupt and shutter an organization’s service operations. But they might present an even bigger challenge in the future as DDoS attacks continue to grow in size, intensity and frequency.

In a DDoS attack, your company’s servers or network may be flooded with a large volume of traffic with the sole purpose of maliciously interrupting your business. These attacks cause your site to respond slowly or make it inaccessible to your customers, which could negatively impact sales and customer service.

Enterprises have been enduring the brunt of DDoS attacks for nearly 20 years, and the costs due to lost productivity, service disruption, data theft and customer churn have steadily increased.

Last year, cybercriminals, hostile nation-states and malicious actors shifted from small-scale DDoS attacks to large-scale onslaughts, with 65 percent of the attacks targeted at small and medium-sized businesses according to technology consulting firm Kelser Corporation1. The industry also saw a significant increase in the number of extra-large attacks (10 Gbps and above).

Emerging Threats

  1. Domain name servers (DNS)

An easy mark, DNS attacks are continuing to grow as a favorite target. These attacks are proving to be particularly problematic, with victims reporting that they did not mitigate well against these strikes and were adversely impacted by them.

 

2. IoT botnets

As many as one in six companies in 2018 may have been a victim of a DDoS attack from an IoT botnet last year2. These types of attacks, which are expected to increase due to the rising presence and variety of IoT devices coming online, do not require a high volume of traffic to infiltrate the application, making them difficult to detect. In 2017 it took an investigation of six independent security teams to uncover the WireX botnet, which compromised 100,000 Android devices within 100 countries.

3. SSL-based attacks

Encrypted attacks grew by 13 percent in 2018 and were most prevalent in North America2. As more companies adopt better encryption practices, malicious actors will turn to other vulnerabilities, such as SSL, as targets. Because these types of attacks can be difficult to identify, it takes a greater number of resources to mitigate.

4. DDoS assaults above 1 Tbps

The 1 Tbps threshold was crossed in 2016, and it has only increased since then. Cybercriminals and other bad actors reached new heights last year, with attacks peaking at 1.7 Tbps. This growing scale of assault means significant collateral damage can occur swiftly.

5. Burst attacks

These intense but often random assaults are becoming more common and can be particularly difficult for security teams to battle. They are characterized by high waves of attacks in massive volumes that occur for a short period of time.

How to strengthen your defenses

To improve your network defenses, employ a fully managed 24x7x365 DDoS mitigation solution that can quickly identify and block volumetric DDoS attacks without interfering with or disrupting your real network traffic.

One such around-the-clock solution is Sprint IP Defender, a fully managed cloud-based DDoS protection and mitigation service that lets you focus on running your business with confidence that a volumetric DDoS attack will be thwarted.

Sprint IP Defender works at the perimeter to protect and defend your network against volumetric DDoS assaults. Its advanced filtering capabilities remove contaminated and malicious traffic, preserving the integrity of your network even while it’s under attack.

1Technology consultancy Kelser Corporation – https://www.liquidweb.com/blog/2019-security-trends/

2https://www.radware.com/ert-report-2018/