November 7, 2017 By Larry Loeb < 1 min read

Distributed-denial-of-service (DDoS) attacks are on the rise globally. According to researchers from the University of Twente in the Netherlands, University of California, San Diego and Saarland University in Germany, one-third of all networks active on the internet have experienced a DDoS attack at some point over the last two years, SecurityWeek reported.

The researchers also discovered evidence of nearly 21 million attacks directed at 6.34 million unique IP addresses over the two-year period. This works out to an average of 28,700 distinct DDoS attacks every day.

Providing a Larger Framework

Most DDoS reports only analyze specific attacks and specific responses. This report, titled, “Millions of Targets Under Attack: A Macroscopic Characterization of the DoS Ecosystem,” offered a broader examination of DDoS attacks, attack targets and DDoS protection services.

The study analyzed data sets originating from the UCSD Network Telescope, which picks up on DDoS attacks involving randomly and uniformly spoofed addresses as well as AmpPot DDoS honeypots. The results were staggering.

“Each day we see attacks on tens of thousands of unique target IP addresses, spread over thousands of autonomous systems,” the researchers noted in the paper.

Preventing DDoS Attacks

The report also highlighted what’s behind DDoS protection services migration for companies seeking attack prevention. Notably, the researchers found that the duration of a DDoS attack does not strongly correlate with a company choosing a migration. Low-level attacks are also largely ignored by site owners even if they are repeated. But there was one exception: Early migration to a protection service typically follows high-intensity attacks.

With DDoS attacks now far more widespread than ever before — and perhaps more popular than previously realized — combating these threats should be a top priority among IT security teams.

More from

Exploiting GOG Galaxy XPC service for privilege escalation in macOS

7 min read - Being part of the Adversary Services team at IBM, it is important to keep your skills up to date and learn new things constantly. macOS security was one field where I decided to put more effort this year to further improve my exploitation and operation skills in macOS environments. During my research, I decided to try and discover vulnerabilities in software that I had pre-installed on my laptop, which resulted in the discovery of this vulnerability. In this article, I…

Taking the complexity out of identity solutions for hybrid environments

4 min read - For the past two decades, businesses have been making significant investments to consolidate their identity and access management (IAM) platforms and directories to manage user identities in one place. However, the hybrid nature of the cloud has led many to realize that this ultimate goal is a fantasy. Instead, businesses must learn how to consistently and effectively manage user identities across multiple IAM platforms and directories. As cloud migration and digital transformation accelerate at a dizzying pace, enterprises are left…

IBM identifies zero-day vulnerability in Zyxel NAS devices

12 min read - While investigating CVE-2023-27992, a vulnerability affecting Zyxel network-attached storage (NAS) devices, the IBM X-Force uncovered two new flaws, which when used together, allow for pre-authenticated remote code execution. Zyxel NAS devices are typically used by consumers as cloud storage devices for homes or small to medium-sized businesses. When used together, the flaws X-Force discovered allow a remote attacker to execute arbitrary code on the device with superuser permissions and without requiring any credentials. This results in complete control over the…

What cybersecurity pros can learn from first responders

4 min read - Though they may initially seem very different, there are some compelling similarities between cybersecurity professionals and traditional first responders like police and EMTs. After all, in a world where a cyberattack on critical infrastructure could cause untold damage and harm, cyber responders must be ready for anything. But are they actually prepared? Compared to the readiness of traditional first responders, how do cybersecurity professionals in incident response stand up? Let’s dig deeper into whether the same sense of urgency exists…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today