DDOS attacks rise by a third in Q3




By Rose de la Cruz


The number of DDoS (distributed denial of service) attacks rose by a third (32 percent) in the third quarter compared to 30 percent in the previous quarter primarily due to the spike in malicious activity in autumn, according to statistics of (global cybersecurity company) Kaspersky. Of these attacks, 53 percent were done in September alone.


Kaspersky also reported that 60 percent of the attacks that were prevented were conducted against schools and electronic journal sites.


The rise is mostly from simple types of attack while in the previous quarter, the total growth stemmed from a surge in the number of smart attacks, focusing on the application layer – usually carried out by skilled cybercriminals. In Q3 2019, the share of ‘smart’ attacks dropped to 28 percent of all DDoS attacks, from 50 percent in Q2, and grew by only seven percentage points in the Q3 2018 results.


This change can be explained by a boom of DDoS activity at the beginning of the academic year. In the early summer months, the majority of DDoS attacks (53%) was detected in September. Kaspersky statistics reveal 60% of the attacks that were prevented during this month were conducted against schools and electronic journal sites.


Based on this, Kaspersky experts suggest that these attacks were carried out by school-age hooligans who do not have a deep understanding of how to organize DDoS campaigns. 


The average duration of smart attacks has not changed substantially compared with Q2 2019, but it has almost doubled compared to statistics gathered from Q3 2018. Furthermore, the average duration of all attacks was shorter. 


“Despite this spell of seasonal activity from young hooligans, who appear to celebrate the beginning of the school year with a spike in DDoS attacks, the more professional market of DDoS attacks is rather stable. We have not seen an explosive increase in the number of smart attacks compared with the previous quarter and the average length of attack remains the same. However, this still causes serious damage to business. Our survey of IT decision makers revealed that DDoS attacks are the second most expensive type of cyber-incident that led to date breaches for SMBs, with the average cost of a breach estimated at $138,000” comments Alexey Kiselev, Business Development Manager on the Kaspersky DDoS Protection team.


To help organizations protect themselves from DDoS attacks, Kaspersky recommends taking the following steps:


·         Ensure that web and IT resources can handle high traffic

·         Learn in advance how to contact your internet service provider in case you are suffering a DDoS attack

·         Implement professional solutions to protect the organization against attacks. For example, Kaspersky DDoS Protection combines Kaspersky’s extensive expertise in combating cyberthreats and the company’s unique in-house developments. The solution protects against all types of DDoS attacks regardless of their complexity, strength or duration