Summary of Findings from the Global DDoS Threat Landscape Report Q1 2022


Last week Imperva released the Global DDoS Threat Landscape Q1 2022 Report. from our global network of points of presence during the first three months of 2022. In response to how recent geopolitical events have dramatically accelerated the rate at which the DDoS threat landscape can change, Imperva has increased the frequency of our reporting from annual to quarterly. This is the first report in the new quarterly cadence, designed specifically to provide the latest and most up-to-date information on DDoS attacks and the impact they can have on business and global affairs. Here are three of the main results for the first quarter of 2022:

  • The year got off to a rocky start as major global events impacted the DDoS landscape with geopolitical tensions driving DDoS volumes attacks against Ukrainian websites will increase by 73%.
  • Number of Layer 3 and 4 attacks increased by 70% overall and new attack vectorsTCP Middlebox Amplification and UDP TP240 PhoneHome have been reported to be used in DDoS attacks against several of our customers.
  • February saw the largest attack mitigated by Imperva. The Layer 7 attack, which was part of a DDoS ransom attempt and one of multiple attacks on different sites within a single company, spanned several days and at its peak reached up to 2.5 million requests per second (rps).

More Highlights from the Q1 2022 Global DDoS Threat Landscape Report

Over 18% of Layer 7 attacks lasted longer than 12 hours

More than 60% of all Layer 7 attacks mitigated by Imperva in Q1 lasted longer than 15 minutes, with nearly 20% lasting longer than 12 hours.

50% of websites affected by Layer 7 DDoS were reattacked

More than half of the total number of websites attacked in the first quarter of this year were attacked a second time.

Ransom DDoS Threats Continue to Disrupt

Denial of service ransom threats continued to present a challenge in the first quarter, with threat actors using more innovative tactics to disrupt business and attempt to extort payment.

Attacks on websites in Ukraine and Russia quadrupled

Between January and February 2022, attacks against Russian and Ukrainian websites quadrupled, with Imperva reporting a 320% increase in attacks month over month.

DDoS attacks globally increased by 70% in March

The number of attacks nearly doubled from January to February 2022, with Layer 3 and Layer 4 attacks increasing by 70%.

Nearly 80% of attacks were single vector

Only 20% of Layer 3 and Layer 4 DDoS attacks used more than one vector, which should not be underestimated. Without the right DDoS protection in place, repeated short single-vector attacks could cause a network to become saturated before mitigation has a chance to kick in.

DDoS Report Image 2

A high percentage of attacks were short-lived

Layer 3 and Layer 4 DDoS attacks were fairly short in the first quarter, with nearly 62% of all attacks lasting seven minutes or less.

Shorter attacks are dangerous for a number of reasons and are often used as a distraction tactic as part of a larger multi-vector attack.

Download full Q1 2022 Global DDoS Threat Landscape Report here.

The summary of findings from the Global DDoS Threat Landscape Post Q1 2022 report appeared first on Blog.

*** This is a syndicated blog from the Security Bloggers Blog Network written by Grainne McKeever. Read the original post at:


Comments are closed.