Linux Botnets Responsible for Nearly 70% of DDoS Attacks in Q3
The Q3 Threat Report from Kaspersky shows DDoS Attacks are on the rise.
Kaspersky Labs released its Q3 Threat Report on Monday, and among the most interesting findings is the fact that Linux Botnets accounted for nearly 7 out of 10 DDoS attacks in the third quarter.
Overall, the number of DDoS attacks in China, the US, South Korea and Russia increased over Q2. Additionally, Australia experienced a surge in the number of attacks (over 450 per day) and the power of those attacks (15.8 million packets per second). Not surprisingly, the cost associated with defending against these attacks is also on the rise.
Additionally, the format of attacks seems to be changing, too. Attackers are beginning to favor a short, powerful “punctuated” attack that can last for several hours or even a few days.
As for the industries targeted, that stays largely unchanged. Though there was an uptick in attacks on gaming services, the usual targets are all accounted for: finance, politics, entertainment, etc.
Cryptocurrencies coming under attack
One of the newest attack vectors relates to cryptocurrencies, specifically ICO or Initial Coin Offerings. This is a sort of crowd-funding that is used to launch new cryptocurrencies and due to their unregulated nature and how commonplace they are – they are highly vulnerable.
Since blockchain technology allows transactions to be conducted safely, ICOs are quickly gaining in popularity. But there are risks as well: with the rapid growth and the increasing turnover of crypto-currencies, such platforms are subjected to cyberattacks, including DDoS attacks. The broad availability of the platform guarantees reliable and secure transactions, while DDoS attacks are aimed at breaking the operability of the service and thus discrediting it or, even worse, creating a smokescreen for more sophisticated types of attacks.
Key Takeaways
- Resources in 98 different countries were attacked in the third quarter, up from 86 in Q2.
- Around half of all attacks originated in China.
- China, the US and South Korea were the leaders in terms of both quantity of attacks and targets.
- The longest DDoS attack lastest 215 hours.
- 99.6% of attacks lasted less than 50 hours.
- There has been a considerable decline in attacks via TCP (11.2%, down from 28.2% in Q2).
- The percentage of SYN Floods and HTTP attacks have increased since Q2.
- Linux Botnets were responsible for 69.92% of attacks, up from 51.23% in Q2.
- You are least likely to be attacked on a Monday (just 10.39% of attacks).
5 Ways to Determine if a Website is Fake, Fraudulent, or a Scam – 2018
in Hashing Out Cyber SecurityHow to Fix ‘ERR_SSL_PROTOCOL_ERROR’ on Google Chrome
in Everything EncryptionRe-Hashed: How to Fix SSL Connection Errors on Android Phones
in Everything EncryptionCloud Security: 5 Serious Emerging Cloud Computing Threats to Avoid
in ssl certificatesThis is what happens when your SSL certificate expires
in Everything EncryptionRe-Hashed: Troubleshoot Firefox’s “Performing TLS Handshake” Message
in Hashing Out Cyber SecurityReport it Right: AMCA got hacked – Not Quest and LabCorp
in Hashing Out Cyber SecurityRe-Hashed: How to clear HSTS settings in Chrome and Firefox
in Everything EncryptionRe-Hashed: The Difference Between SHA-1, SHA-2 and SHA-256 Hash Algorithms
in Everything EncryptionThe Difference Between Root Certificates and Intermediate Certificates
in Everything EncryptionThe difference between Encryption, Hashing and Salting
in Everything EncryptionRe-Hashed: How To Disable Firefox Insecure Password Warnings
in Hashing Out Cyber SecurityCipher Suites: Ciphers, Algorithms and Negotiating Security Settings
in Everything EncryptionThe Ultimate Hacker Movies List for December 2020
in Hashing Out Cyber Security Monthly DigestAnatomy of a Scam: Work from home for Amazon
in Hashing Out Cyber SecurityThe Top 9 Cyber Security Threats That Will Ruin Your Day
in Hashing Out Cyber SecurityHow strong is 256-bit Encryption?
in Everything EncryptionRe-Hashed: How to Trust Manually Installed Root Certificates in iOS 10.3
in Everything EncryptionHow to View SSL Certificate Details in Chrome 56
in Industry LowdownA Call To Let’s Encrypt: Stop Issuing “PayPal” Certificates
in Industry Lowdown