Mumbai: The number of DDoS attacks in Q3, 2019 rose by a third compared to the previous period (30 percentage points) and Q3, 2018 (32 percentage points) as according to Kaspersky DDoS Protection’s stats.
This growth was primarily due to a spike in malicious activity in autumn. In fact, 53% of the quarter’s DDoS attacks were carried out in September.
The rise is caused by a large number of rather simple types of attack. Nonetheless, in previous quarters of this year, the total growth stemmed from a surge in the number of smart attacks, focusing on the application layer – usually carried out by skilled cybercriminals.
In Q3 2019, the share of ‘smart’ attacks dropped to 28% of all DDoS attacks, from 50% in Q2, and grew by only seven percentage points in the Q3 2018 results.
This change can be explained by a boom of DDoS activity at the beginning of the academic year. While the early summer months of the quarter were quite, the majority of DDoS attacks (53%) was detected in September.
Kaspersky statistics reveal 60% attacks were prevented during this month were targeted at schools and electronic journal sites. Based on this, Kaspersky experts suggest that these attacks were carried out by school-age hooligans. They lack a deep understanding of how to organize DDoS campaigns.
The average smart attacks duration hasn’t changed substantially compared with Q2 2019. But has almost doubled compared to Q3 2018 stats. Furthermore, the average duration of all attacks fell slightly and this can be contributed to a large number of short attacks in this quarter.
“Despite this spell of seasonal activity from young hooligans, who appear to celebrate the beginning of the school year with a spike in DDoS attacks, the more professional market of DDoS attacks is rather stable. We have not seen an explosive increase in the number of smart attacks compared with the previous quarter and the average length of attack remains the same. However, this still causes serious damage to business,” said Alexey Kiselev, Business Development Manager – Kaspersky DDoS Protection team.
“Our survey of IT decision makers (ITDM) revealed that DDoS attacks are the second most expensive type of cyber-incident that led to date breaches for SMBs, with the average cost of a breach estimated at $138,000,”added Kiselev.
To help organizations protect themselves from DDoS attacks, Kaspersky recommends taking the following steps:
Ensure that web and IT resources can handle high traffic;
- Learn in advance how to contact your internet service provider in case you are suffering a DDoS attack;
- Implement professional solutions to protect the organization against attacks. For example, Kaspersky DDoS Protection combines Kaspersky’s extensive expertise in combating cyberthreats and the company’s unique in-house developments. The solution protects against all types of DDoS attacks regardless of their complexity, strength or duration.