Follow Us

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

DDoS tools fuel growth in large attacks, says Prolexic

Bigger and definitely much nastier

Article comments

The number of DDoS attacks reached their highest ever level for a single quarter in the last three months of 2012, recording a 19 percent year-on-year growth, mitigation vendor Prolexic has reported.

The key to understanding DDoS trends is deciding what actually matters. Is it the total number of attacks, their average size, the number of rarer massive attacks, or the type of attack employed?

Judging from Prolexic’s customer base, the news is mostly bad. With the exception of a slight drop in attack duration to 32 hours compared to Q4 2011, all the other DDoS numbers show a modest but unmistakable shift towards red.

Year-on-year average attack bandwidth rose from 4.9Gbps to 5.9Gbps, with attack volumes jumping a notch in 2012 compared to a year earlier.

Three quarters of attacks are still at layer 3 and 4, which means they are packet-based attacks targeting network infrastructure; the remaining 25 percent are more complex layer 7 attacks that try to overload applications.

The company detected seven attacks greater than 50Gbps, it said, with one or two above even that huge level.

The deeper question worth asking is whether the numbers really help explain changes in the motivation of those doing the attacking or on whose behalf attacks are being carried out.

Prolexic underlines the rise of one botnet attack tool in particular, itsoknoproblembro, as being noteworthy for its connection to a number of highly targeted attacks on the US financial sector during the second half of 2012.

Prolexic doesn’t say it but these have been serious enough to catch the attention of the US authorities which now suspect a state-sponsored attack on US banks by Iran.

The challenge of itsoknoproblembro is its sophistication, allowing “automated reconnaissance, exploitation, infection and attack management,” to borrow Prolexic's own description.

More than half of attacks originate in China (which doesn’t mean they’re necessarily under Chinese control), followed by Germany, India, Egypt and Pakistan with between roughly five and ten percent each.

“The fourth quarter was defined by the increasing scale and diversity of DDoS attacks. While bandwidth attacks of 20 Gbps were the story last quarter, 50 Gbps is more relevant now,” said Prolexic CEO, Scott Hammack.

“The take away for businesses from this Q4 report is to make sure that their DDoS mitigation provider can handle attacks in excess of 50 Gbps in a single location,” he added.

“When attacks are this large, it’s important that the provider can mitigate this volume of attack traffic in one place and distribute it effectively so it does not compromise intermediary transit providers and affect others.”


More from Techworld

More relevant IT news


Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Techworld White Papers

Choose – and Choose Wisely – the Right MSP for Your SMB

End users need a technology partner that provides transparency, enables productivity, delivers...

Download Whitepaper

10 Effective Habits of Indispensable IT Departments

It’s no secret that responsibilities are growing while budgets continue to shrink. Download this...

Download Whitepaper

Gartner Magic Quadrant for Enterprise Information Archiving

Enterprise information archiving is contributing to organisational needs for e-discovery and...

Download Whitepaper

Advancing the state of virtualised backups

Dell Software’s vRanger is a veteran of the virtualisation specific backup market. It was the...

Download Whitepaper

Techworld UK - Technology - Business

Innovation, productivity, agility and profit

Watch this on demand webinar which explores IT innovation, managed print services and business agility.

Techworld Mobile Site

Access Techworld's content on the move

Get the latest news, product reviews and downloads on your mobile device with Techworld's mobile site.

Find out more...

From Wow to How : Making mobile and cloud work for you

On demand Biztech Briefing - Learn how to effectively deliver mobile work styles and cloud services together.

Watch now...

Site Map

* *