Research from Nexusguard shows that the total number of DDoS attacks increased in the first half of 2022 while the maximum attack size decreased compared to the second half of 2021

0

SAN FRANCISCO–(BUSINESS WIRE)–In the first half of 2022, the number of DDoS (distributed denial of service) attacks increased by 75.6% compared to the second half of 2021, according to new Nexusguard research revealed in the DDoS Statistical report for 1HY 2022. Although the total number of attacks has increased, the average (0.59 Gbps) and maximum (232.0 Gbps) attack sizes have each decreased by 56% and 66.8%, respectively, over the same period. Notably, application attacks increased by 330% compared to the second half of 2021, and amplification attacks increased by 106.7%.

Single-vector attacks accounted for 85% of all attacks globally in the first half of 2022. User Datagram Protocol (UDP) attacks, which quickly overwhelm targeted defenses, and HTTPS Flood, which exhaust servers with valid HTTPS requests, were the two most predominant vectors. Nearly four in 10 attacks (39.6%) were UDP, a 77.5% increase from H2 2021, and the two groups combined accounted for more than half (55.5%) of DDoS attacks in the world. UDP attacks are often used as a smokescreen to mask other malicious activity such as efforts to compromise personally identifiable information (PII) or remote malware or code execution.

Nexusguard’s new DDoS reports are statistics describing top reflected attack destinations. Reflection attacks spoof the target’s IP address, tricking them into thinking they received a genuine request, usually via UDP, to which the target responds. Nearly three-quarters (74.6%) of all thoughtful attacks targeted organizations in Brazil and South Korea. In Europe, the UK received nearly a quarter (24.6%) of all thought attacks in that region and in the Middle East and Africa, Seychelles and Saudi Arabia combined received more than half (55.5%).

Sneaky Bit-and-Piece attacks continue to plague ASN-level Communications Service Providers (CSPs) around the world, especially Internet Service Providers (ISPs). While 81% of attacks worldwide were less than a single Gbps, Bit-and-Piece attacks by /24 networks recorded minimum sizes of 0.0637 Gbps and maximum of 123.7 Gbps /s. By drip-feeding doses of unwanted traffic into a large pool of IP addresses, the traffic remains small enough to evade traditional threshold-based detection, but accumulates enough to clog and disable the target.

“Attackers emerged from winter hibernation with unprecedented levels of intent, showing an incredible increase in attacks in the second quarter of 2022 alone and in June, reaching the highest levels in the first half since 2018,” said said Juniman Kasman, CTO of Nexusguard. “We have expanded our DDoS reporting to include data on thoughtful attack destinations and have separated Europe from the Middle East and Africa regions to provide organizations with even more insight into DDoS attacks. The wide variability in attack types shown by our latest report demonstrates that organizations must remain vigilant to protect against the risk of DDoS attacks.

Read the Nexusguard 1HY 2022 DDoS Statistical Report for more information on attack vectors, statistics and trends based on data collected from CSPs, honeypots, botnet analysis and research on the traffic moving between attackers and their targets.

About NexusGuard

Founded in 2008, Nexusguard is a leading provider of cloud-based Distributed Denial of Service (DDoS) security solutions fighting against malicious Internet attacks. Nexusguard guarantees uninterrupted Internet service, visibility, optimization and performance. Nexusguard is focused on developing and delivering the best cybersecurity solution for every customer across a range of industries with specific business and technical requirements. Nexusguard also enables communications service providers to deliver DDoS protection solutions as a service. Nexusguard delivers on its promise to give you peace of mind by countering threats and ensuring maximum uptime. Visit www.nexusguard.com for more information.

Share.

Comments are closed.