DDoS attacks aren’t going anywhere.
In fact, they’re only getting more frequent and intense.
The world’s most annoying website attack—and one of the easier ones for an attacker to spin up—is only getting worse.
According to a new report from Verisign, distribute denial of service (DDoS) attacks are on the rise.
And there aren’t only more of them nowadays; they’re bigger and more powerful, too.
Just how bad? According to the company, which runs two of the Internet’s 13 root nameservers, it mitigated 85 percent more attacks in the fourth quarter of 2015 than the same time period one year prior.
That’s nearly double the amount and it’s the highest number of DDoS attacks that Verisign has tracked since the company began reporting the frequency of DDoS attacks.
More than 62 percent of the attacks Verisign mitigated ate up more than 1Gbps of data, and around one-third topped 5Gbps. Just around the same percent pushed past 10Gbps of data in Q3 and Q4 2014 and Q4 2015.
“The largest volumetric attack Verisign defended in Q4 2015…targeted the Telecommunications industry and peaked at 65Gbps and 125 Mpps [million packets per second],” the report says. “The 125 Mpps flood is one of the highest packets per second floods ever observed by Verisign, surpassing the previous flood of 91 Mpps mitigated by Verisign in Q2 2014.
This attack, aimed at disrupting critical network services, consisted of multiple short bursts in DDoS traffic and continued intermittently for several weeks.”
Companies falling into the category of IT services/cloud/SaaS experienced the most DDoS attacks in the fourth quarter of 2015—32 percent—and reached an average attack size of 7.3Gbps. Media/Entertainment/Content companies came in second at 30 percent, with a slightly larger average attack size of 7.9Gbps.
Finance companies were only hit with 15 percent of the attacks Verisign tracked.
“Continuing the trend of the year, the most common DDoS attack types during Q4 2015 were UDP floods (NTP, DNS, and SSDP), which accounted for approximately 75 percent of attacks.
The remaining portion of attacks mitigated consisted of TCP floods (15 percent) and application layer attacks (10 percent).
Additionally, Verisign observed a notable increase in the overall number of DNS reflection attacks, and fragmentation attacks in Q4 2015,” reads Verisign’s report.