Prolexic DDoS Attack Report: Q4 2013 DDoS Attack Trends and Statistics

  • Published on

  • View

  • Download

Embed Size (px)

DESCRIPTION | Q4 2013 set new records for both the frequency and size of DDoS attacks, with one attack peaking at 179 Gbps. For the first time, mobile devices played a significant role in an attack campaign, aided by the availability of opt-in mobile apps. Q4 also saw significant growth in the misuse of the CHARGEN and NTP protocols in distributed reflection DDoS attacks. Get more stats in this short presentation, which includes excerpts from Prolexics Q4 2013 Global DDoS Attack Report.


  • 1.Global DDoS Attack Report Q4 2013 Trends and Statistics

2. Highlights: Q4 2013 Global DDoS Attack Report Mobile devices and apps used in attack campaigns against enterprises Record volume of attacks for one quarter Mitigated largest attack to date: 179 Gbps Average attack duration: 22.88 hours Peak average bandwidth: 4.53 Gbps Peak packets per second: 10.60 Mpps Download the Q4 2013 Global DDoS Attack Report for supporting data and analysis 3. DDoS attack vectors used in Q4 2013 4. Attack vector analysis Use of the CHARGEN protocol increased 92.31 compared to Q3 UDP and SYN floods were the most popular infrastructure-layer attack vectors HTTP GET floods were the most popular application layer attack vectors Misuse of the Network Time Protocol (NTP) is an emerging trend that should be monitored Download the Q4 2013 Global DDoS Attack Report for attack vector data 5. DDoS attack frequency in Q4 2013 More attacks mitigated than any other quarter November 5-11 was the most active week in Q4 6. Top 10 DDoS source countries for Q4 2013 7. Attack spotlight: Multi-vector attack campaign Campaign targeted a global financial services firm 12 unique attacks 4 days and nights Campaign could not be stopped by automated DDoS mitigation devices Mitigating this DDoS attack required the skill and creativity of expert DDoS mitigation engineers 8. Attack spotlight: Multi-vector DDoS xampaign, continued Botnets included willing and unwilling participants Some participants opted into the botnet with Low Orbit Ion Cannon (LOIC) Mobile DDoS apps detected AnDOSid, an Android app that launches an HTTP POST flood Mobile LOIC, an Android app that allows users to opt-in Large portion of the attack originated from AsiaCONFIDENTIAL 9. Prolexic Q4 2013 Global DDoS Attack Report Download the Q4 2013 Global Attack Report for: Average and trends in attack duration and bandwidth Total number and trends of attacks by type Year-over-year and quarter-over-quarter comparisons Analysis of the attack against the financial services firm Details about the DDoS trend of attacks from Asia 10. About Prolexic Prolexic Technologies is the worlds largest and most trusted provider of DDoS protection and mitigation services Prolexic has successfully stopped DDoS attacks for more than a decade Our global DDoS mitigation network and 24/7 security operations center (SOC) can stop even the largest attacks that exceed the capabilities of other DDoS mitigation service providers