Embed Size (px)
DESCRIPTION
http://www.prolexic.com/services-dos-and-ddos-detection-and-monitoring.html | Q4 2013 set new records for both the frequency and size of DDoS attacks, with one attack peaking at 179 Gbps. For the first time, mobile devices played a significant role in an attack campaign, aided by the availability of opt-in mobile apps. Q4 also saw significant growth in the misuse of the CHARGEN and NTP protocols in distributed reflection DDoS attacks. Get more stats in this short presentation, which includes excerpts from Prolexic’s Q4 2013 Global DDoS Attack Report.
Citation preview
www.prolexic.com
Global DDoS Attack Report
Q4 2013 Trends and Statistics
Highlights: Q4 2013 Global DDoS Attack Report
• Mobile devices and apps used in attack campaigns against enterprises
• Record volume of attacks for one quarter
• Mitigated largest attack to date: 179 Gbps
• Average attack duration: 22.88 hours
• Peak average bandwidth: 4.53 Gbps
• Peak packets per second: 10.60 Mpps Download the Q4 2013 Global DDoS Attack Report for supporting data and analysis
DDoS attack vectors used in Q4 2013
Attack vector analysis
• Use of the CHARGEN protocol increased 92.31 compared to Q3
• UDP and SYN floods were the most popular infrastructure-layer attack vectors
• HTTP GET floods were the most popular application layer attack vectors
• Misuse of the Network Time Protocol (NTP) is an emerging trend that should be monitored
Download the Q4 2013 Global DDoS Attack Report for attack vector data
DDoS attack frequency in Q4 2013
• More attacks mitigated than any other quarter
• November 5-11 was the most active week in Q4
Top 10 DDoS source countries for Q4 2013
Attack spotlight: Multi-vector attack campaign
• Campaign targeted a global financial services firm
• 12 unique attacks
• 4 days and nights
• Campaign could not be stopped by automated DDoS mitigation devices
• Mitigating this DDoS attack required the skill and creativity of expert DDoS mitigation engineers
Attack spotlight: Multi-vector DDoS xampaign, continued
• Botnets included willing and unwilling participants
• Some participants opted into the botnet with Low Orbit Ion Cannon (LOIC)
• Mobile DDoS apps detected – AnDOSid, an Android app that launches an HTTP POST
flood
– Mobile LOIC, an Android app that allows users to opt-in
• Large portion of the attack originated from Asia
CONFIDENTIAL
Prolexic Q4 2013 Global DDoS Attack Report
• Download the Q4 2013 Global Attack Report for: – Average and trends in attack duration and
bandwidth
– Total number and trends of attacks by type
– Year-over-year and quarter-over-quarter comparisons
– Analysis of the attack against the financial services firm
– Details about the DDoS trend of attacks from Asia
About Prolexic
• Prolexic Technologies is the world’s largest and most trusted provider of DDoS protection and mitigation services
• Prolexic has successfully stopped DDoS attacks for more than a decade
• Our global DDoS mitigation network and 24/7 security operations center (SOC) can stop even the largest attacks that exceed the capabilities of other DDoS mitigation service providers
