VeriSign sits at a key location within the Internet infrastructure as manager of root zone Domain Name System (DNS) and the dot-com top-level domain. VeriSign also runs a security business with its distributed denial-of-service (DDoS) protection services, giving it further insight into the state of attacks on the Internet today. On June 5, VeriSign released its first-quarter 2014 DDoS Trends Report, providing visibility into attack trends for the period of Jan. 1 to March 31, 2014. On a quarterly basis, VeriSign reported an 83 percent increase in the average DDoS attack size in comparison with the fourth quarter of 2013. Among the largest DDoS attacks that hit VeriSign’s network are what are known as Network Time Protocol (NTP) amplification attacks, whose average size ranged from 50G bps to 75G bps during the first quarter of 2014, VeriSign reported. US-CERT has been warning of the increased risk of NTP amplification since January of this year. Amplification represents only one form of DDoS, however. Overall, VeriSign saw the largest DDoS attacks hitting its financial services customers, with a peak of 160G bps. In contrast, DDoS attacks against IT services and cloud customers only had a peak attack volume of 64G bps. In this slide show, eWEEK examines some of the key findings from VeriSign’s first-quarter 2014 DDoS Trends Report.