Newsletters
News & Information for Technology Purchasers NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
This ad will display for the next 20 seconds. Click for more information, or
Home Enterprise I.T. Cloud Computing Applications Hardware More Topics...
Network Security
24/7/365 Network Uptime!
Average Rating:
Rate this article:  
Large-Volume DDoS Attacks Hit Record in 2014
Large-Volume DDoS Attacks Hit Record in 2014

By Jef Cozza
July 17, 2014 12:01PM

    Bookmark and Share
NTP attacks provide hackers with the ability to generate high-volume DDoS traffic to target Web sites or public-facing devices in order to disrupt services. In an NTP attack, bot computers are enlisted to send a request for the correct time from an NTP server, but the return address is spoofed with the targeted Web server's address.
 



The number of distributed denial-of-service (DDoS) attacks set a record in the first half of 2014, according to a report by Arbor Networks. The number of attacks over 20 GB/sec doubled compared with the same period in 2013.

Although the first quarter saw the most concentrated burst of large volumetric attacks in history, things calmed down somewhat in the second quarter. The largest reported attack in the second quarter was 154.69 GB/sec, down 52 percent from Q1. That was a Network Time Protocol (NTP) reflection attack targeting a destination in Spain, Arbor Networks said.

NTP Attacks Fall, But Still Higher than 2013

Although the company said that NTP reflection attacks are still significant, attacks of that type were down in both size and scope in Q2 compared with the first quarter. Average NTP traffic volumes are falling globally, but remain above November 2013 levels (the start of NTP attack proliferation). In total, NTP represented 6 percent of DDoS attacks in Q2, down from 14 percent in Q1.

NTP attacks provide hackers with the ability to generate high-volume DDoS traffic to target Web sites or public-facing devices in order to disrupt services. Attacks of this type can be exploited remotely, with NTP exploits being publicly available. In an NTP attack, bot computers are enlisted to send a request for the correct time from an NTP server, but the return address is spoofed with the targeted Web server's address. Hence the targeted server is flooded with data on the correct time.

The number of attacks of this kind began to slow in March and into the second quarter, but still remain significantly above 2013 levels.

More and Larger

The second quarter also saw fewer very large attacks, with average attack size down by 47 percent compared with Q1. Nonetheless, more than 100 attacks larger than 100 GB/sec have been reported so far this year, an unprecedented number.

"Volumetric DDoS attacks continued to be a problem well into the second quarter," said Arbor Networks Director of Solutions Architects Darren Anstee. "The frequency of very large attacks continues to be an issue, and organizations should take an integrated, multi-layered approach to protection. Even organizations with significant amounts of Internet connectivity can now see that capacity exhausted relatively easily by the attacks that are going on out there."

Non Initial Fragment attacks still remain the most common, according to the report, although there was a significant increase in the percentage of attacks targeting domain name servers in the second quarter.

Atlas Shrugs

Despite the ominous increase in activity, the majority of attacks remain short-lived, with 90.6 percent lasting less than an hour. But Arbor says the growth trend for large attacks continues to point upward.

Arbor obtained the data through its Atlas threat monitoring infrastructure, a collaborative partnership of nearly 300 Internet service providers who share anonymous traffic data with Arbor in order to deliver an aggregated view of global traffic and threats. Atlas collects statistics that represent 90 TB/sec of Internet traffic and provides the data for the Digital Attack Map, a visualization of global attack traffic created in collaboration with Google Ideas.

The initiative provides worldwide statistics anonymously. According to the company, the system currently monitors a peak of around 90 Tbps of IPv4 traffic.
 

Tell Us What You Think
Comment:

Name:





 Network Security
1.   Tor Working To Fix Security Exploit
2.   Wall Street Journal Hacked Again
3.   Dropbox for Business Boosts Security
4.   Hackers Breached StubHub Accounts
5.   Banks Hit by Android-Skirting Malware


advertisement
Android SMS Worm on the Loose
Malware lets bad actors cash in.
Average Rating:
Tor Working To Fix Security Exploit
Bug reportedly reveals ID of users
Average Rating:
New Technology Defeats Privacy Efforts
Study identifies 3 browser techniques.
Average Rating:


advertisement
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Researchers Working To Fix Tor Security Exploit
Developers for the Tor privacy browser are scrambling to fix a bug revealed Monday that researchers say could allow hackers, or government surveillance agencies, to track users online.
 
Wall Street Journal Hacked Again
Hacked again. That’s the story at the Wall Street Journal this week as the newspaper reports that the computer systems housing some of its news graphics were breached. Customers not affected -- yet.
 
Dropbox for Business Beefs Up Security
Dropbox is upping its game for business users. The cloud-based storage and sharing company has rolled out new security, search and other features to boost its appeal for businesses.
 

Enterprise Hardware Spotlight
Microsoft Makes Design Central to Its Future
Over the last four years, Microsoft has doubled the number of designers it employs, putting a priority on fashioning devices that work around people's lives -- and that are attractive and cool.
 
Contrary to Report, Lenovo's Staying in Small Windows Tablets
Device maker Lenovo has clarified a report that indicated it is getting out of the small Windows tablet business -- as in the ThinkPad 8 and the 8-inch Miix 2. But the firm said it is not exiting that market.
 
Seagate Unveils Networked Drives for Small Businesses
Seagate is out with five new networked attached storage products aimed at small businesses. The drives are for companies with up to 50 workers, and range in capacity from two to 20 terabytes.
 

Navigation
NewsFactor Network
Home/Top News | Enterprise I.T. | Cloud Computing | Applications | Hardware | Mobile Tech | Big Data | Communications
World Wide Web | Network Security | Data Storage | CRM Systems | Microsoft/Windows | Apple/Mac | Linux/Open Source | Personal Tech
Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.