Linux Botnets Responsible for Nearly 70% of DDoS Attacks in Q3
The Q3 Threat Report from Kaspersky shows DDoS Attacks are on the rise.
Kaspersky Labs released its Q3 Threat Report on Monday, and among the most interesting findings is the fact that Linux Botnets accounted for nearly 7 out of 10 DDoS attacks in the third quarter.
Overall, the number of DDoS attacks in China, the US, South Korea and Russia increased over Q2. Additionally, Australia experienced a surge in the number of attacks (over 450 per day) and the power of those attacks (15.8 million packets per second). Not surprisingly, the cost associated with defending against these attacks is also on the rise.
Additionally, the format of attacks seems to be changing, too. Attackers are beginning to favor a short, powerful “punctuated” attack that can last for several hours or even a few days.
As for the industries targeted, that stays largely unchanged. Though there was an uptick in attacks on gaming services, the usual targets are all accounted for: finance, politics, entertainment, etc.
Cryptocurrencies coming under attack
One of the newest attack vectors relates to cryptocurrencies, specifically ICO or Initial Coin Offerings. This is a sort of crowd-funding that is used to launch new cryptocurrencies and due to their unregulated nature and how commonplace they are – they are highly vulnerable.
Since blockchain technology allows transactions to be conducted safely, ICOs are quickly gaining in popularity. But there are risks as well: with the rapid growth and the increasing turnover of crypto-currencies, such platforms are subjected to cyberattacks, including DDoS attacks. The broad availability of the platform guarantees reliable and secure transactions, while DDoS attacks are aimed at breaking the operability of the service and thus discrediting it or, even worse, creating a smokescreen for more sophisticated types of attacks.
- Resources in 98 different countries were attacked in the third quarter, up from 86 in Q2.
- Around half of all attacks originated in China.
- China, the US and South Korea were the leaders in terms of both quantity of attacks and targets.
- The longest DDoS attack lastest 215 hours.
- 99.6% of attacks lasted less than 50 hours.
- There has been a considerable decline in attacks via TCP (11.2%, down from 28.2% in Q2).
- The percentage of SYN Floods and HTTP attacks have increased since Q2.
- Linux Botnets were responsible for 69.92% of attacks, up from 51.23% in Q2.
- You are least likely to be attacked on a Monday (just 10.39% of attacks).
5 Ways to Determine if a Website is Fake, Fraudulent, or a Scam – 2018in Hashing Out Cyber Security
How to Fix ‘ERR_SSL_PROTOCOL_ERROR’ on Google Chromein Everything Encryption
Re-Hashed: How to Fix SSL Connection Errors on Android Phonesin Everything Encryption
Cloud Security: 5 Serious Emerging Cloud Computing Threats to Avoidin ssl certificates
This is what happens when your SSL certificate expiresin Everything Encryption
Re-Hashed: Troubleshoot Firefox’s “Performing TLS Handshake” Messagein Hashing Out Cyber Security
Report it Right: AMCA got hacked – Not Quest and LabCorpin Hashing Out Cyber Security
Re-Hashed: How to clear HSTS settings in Chrome and Firefoxin Everything Encryption
Re-Hashed: The Difference Between SHA-1, SHA-2 and SHA-256 Hash Algorithmsin Everything Encryption
The Difference Between Root Certificates and Intermediate Certificatesin Everything Encryption
The difference between Encryption, Hashing and Saltingin Everything Encryption
Re-Hashed: How To Disable Firefox Insecure Password Warningsin Hashing Out Cyber Security
Cipher Suites: Ciphers, Algorithms and Negotiating Security Settingsin Everything Encryption
The Ultimate Hacker Movies List for December 2020in Hashing Out Cyber Security Monthly Digest
Anatomy of a Scam: Work from home for Amazonin Hashing Out Cyber Security
The Top 9 Cyber Security Threats That Will Ruin Your Dayin Hashing Out Cyber Security
How strong is 256-bit Encryption?in Everything Encryption
Re-Hashed: How to Trust Manually Installed Root Certificates in iOS 10.3in Everything Encryption
How to View SSL Certificate Details in Chrome 56in Industry Lowdown
PayPal Phishing Certificates Far More Prevalent Than Previously Thoughtin Industry Lowdown