Latest DDoS Trends and Attacks - What You Need to Know

Talk about the findings

• Q3 observed two new DDoS vectors. A team of researchers was able to spoof the victim’s IP address over TCP. This attack targets firewalls, deep packet inspection tools, network address translators, and load balancers, among others. The second attack targets any internet-connected device and completely halts large CSP networks and organizations.
• Another trend was witnessed in the shape of ransom attacks on VoIP providers, impacting organizations across the U.S., Britain, and Canada.
• DDoS attacks started being used as an intimidation tactic in Q3. The criminals sent company-wide emails stating that their resources were being used in DDoS attacks and they could face legal consequences.

Some stats your way

• In Q3, U.S-based firms suffered 40.80% of all DDoS attacks, followed by Hong Kong Special Administrative Region (15.07%), and China (7.74%).
• A majority (43.44%) of botnet C2 servers were located in the U.S., followed by Germany (10.75%), the Netherlands (9.25%), and Russia (5.38%).
• The longest attack lasted for 339 hours.

Some DDoS news

• Recently, a huge DDoS campaign propagated the Pink botnet, infecting millions of devices. The botnet is the largest observed in the last six years and still has 100,000 active nodes. 
• The FBI warned private industry partners against the HelloKitty ransomware gang using DDoS attacks as an extortion tactic. 
• A DDoS attack on VoIP firm Bandwidth.com cost it almost $12 million.
• Last month, the Meris botnet broke all DDoS attack records by generating 21.8 million requests per second. Along with infecting thousands of devices, the botnet attacked Yandex. 

The bottom line