DDoS attacks experiencing major resurgence

The most discussed topics in cybersecurity tend to be things like ransomware, cryptojacking, and data breaches. One topic of discussion that has faded from the forefront is distributed denial of service (DDoS) attacks. While they still occur, for many researchers there was a noticeable lull in their activity compared to a couple years ago. According to new research, however, this is no longer the case as DDoS attacks are suddenly on the upswing.

The research comes from Kaspersky Lab’s report DDoS Attacks in Q1 2019 which details numerous fascinating statistics about the well-known cyberattack method. According to the report, when compared against Q4 in 2018, DDoS attacks have seen an 84 percent increase in the first quarter of 2019. One reason for this appears to be a sudden uptick in new services/botnets that allow for massive DDoS operations.

Some of the new DDoS culprits mentioned in the report include Cayosin, which is a botnet that is “assembled from elements of Qbot, Mirai, and other publicly available malware.” Additionally there is strong evidence showing that a new variant of the infamous Mirai botnet is currently in the wild. This version of Mirai specifically is set up to attack business devices and appears to be incredibly complex.

This is only one part of the reason for the rise in DDoS attacks, however, as the Q1 report from Kaspersky also shows the following data:

The maximum attack duration decreased by more than a day against the previous quarter, although the percentage share of sustained DDoS sessions continued to rise and amounted to 21.34 percent (versus 16.66 percent in Q4 2018)... The share of SYN flooding increased to 84 percent, bringing down the share of UDP and TCP flood, while the share of HTTP and ICMP attacks rose to 3.3 percent and 0.6 percent, respectively... The share of Linux botnets decreased slightly, but still remains predominant (95.71 percent)... Most botnet C&C servers are still located in the US (34.10 percent), with the Netherlands in second place (12.72 percent), and Russia in third (10.40 percent).

According to an article that InfoSecurity’s acting editor Michael Hill wrote on the report, there is also the reality of cybercriminals adapting new strategies that caused the rise. In an interview conducted for the article, Kaspersky Lab’s Alexey Kiselev stated the following:

New DDoS services appear to have replaced ones shut down by law enforcement agencies. As organizations implement basic countermeasures, attackers target them with long-lasting attacks. It is difficult to say if the number of attacks will continue to grow, but their complexity is showing no signs of slowing down.

While it is unknown what the future holds for this cyberattack methodology, it would be foolish for security teams to ignore this data. Any increase in specific attacks should be cause for concern, and additionally, should cause blue teams in particular to prepare their defenses accordingly.

Featured image: Shutterstock

Derek Kortepeter

Derek Kortepeter is a graduate of UCLA and tech journalist that is committed to creating an informed society with regards to Information Security. Kortepeter specializes in areas such as penetration testing, cryptography, cyber warfare, and governmental InfoSec policy.

Published by
Derek Kortepeter

Recent Posts

A lot not to like: Analysis of recent Facebook data breach

The effects of the recent Facebook data breach are still being felt. In this new…

4 hours ago

Exchange 2019: Building an environment from scratch

Are you finally ready to take the plunge into Exchange 2019? If you are building…

7 hours ago

Cyber-extortion scheme targets Google AdSense users

A cyber-extortion scam targeting Google’s AdSense users is making waves. Here are the facts that…

23 hours ago

Need to check your Azure VM costs? Use this script

Nobody likes a surprise in their cloud bills. This handy script will help you check…

1 day ago

Updating and extending PowerShell object’s type data

This neat PowerShell tip will help you write more efficient scripts by showing you how…

1 day ago

Integrating Azure DevOps with your macOS: Step-by-step guide

Mac owners should not be missing out on the fun. This step-by-step guide shows you…

1 day ago