Attacks/Breaches
5/24/2017
01:30 PM
50%
50%

DDoS Attacks Fell 23% in First Quarter, Grew in Size

Although the number of DDoS attacks dropped in the first three months of the year, the average size of each attack grew, according to a Verisign report released Tuesday.

DDoS attacks during the first quarter fell by 23%, but the average peak size ballooned by 26% to 14.1 Gbps compared with the previous quarter, according to the Verisign Q1 2017 DDoS Trends Report released Tuesday.

The largest DDoS attack during the first quarter generated volume over 120 Gbps, with approximately 90 million packets per second slamming the targeted network at its peak, according to the report. This attack lasted more than 15 hours.

Verisign also found that 57% of DDoS attacks used multiple attack vectors during the first quarter, ranging from two vectors to more than five. Of all the attacks during the first quarter, UDP Floods accounted for 48%, with TCP-based attacks coming in second at 33%.

Frequent targets of these attacks were usually the IT/Cloud/SaaS industry, grabbing 58% of the nefarious action, the report stated. The financial sector came in second, accounting for 28% of the attacks.

Read more about the Verisign Q1 2017 DDoS Trends Report here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
5/30/2017 | 10:04:46 AM
Re: IoT
I definitely agree. It seeks to reason that with the increase in IoT that there will be an increase in potential botnets.
nomics
50%
50%
nomics,
User Rank: Apprentice
5/25/2017 | 5:17:22 AM
IoT
I am willing to bet the DDoS volume increase will grow as more IoT devices are accessed and taken over.
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
5/24/2017 | 3:21:32 PM
Metrics
What are the volumetric numbers from Q4 2016? I want to see how they compare to Q1.
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: just wondering...Thanx
Current Issue
Security Operations and IT Operations: Finding the Path to Collaboration
A wide gulf has emerged between SOC and NOC teams that's keeping both of them from assuring the confidentiality, integrity, and availability of IT systems. Here's how experts think it should be bridged.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.

Dark Reading Radio
Archived Dark Reading Radio
In past years, security researchers have discovered ways to hack cars, medical devices, automated teller machines, and many other targets. Dark Reading Executive Editor Kelly Jackson Higgins hosts researcher Samy Kamkar and Levi Gundert, vice president of threat intelligence at Recorded Future, to discuss some of 2016's most unusual and creative hacks by white hats, and what these new vulnerabilities might mean for the coming year.