One third of UK companies surveyed by Neustar say they were hit by Distributed Denial of Service (DDoS) attacks last year, that resulted in estimated losses of £240,000 per day. The majority of firms said they were ill-equipped to deal with such attacks.
The real time information and analytics firm surveyed 331 firms across a range of industries, including financial services, retail, public sector, utilities and Internet services, for its second annual UK DDoS Attacks and Impact Report and discovered that such attack were becoming more frequent.
There was a 200 percent increase in attacks affecting bandwidth between 1 and 20 Gbps, while attacks on 100Gbps are also becoming more frequent. Once a company is attacked, there is a 69 percent chance they will be targeted again, with 48 percent subjected between two and ten times.
Multiple business units are affected by attacks, but public facing services, such as call centres, customer support and marketing suffer more than most, sustaining 40 percent of all associated costs caused by a DDoS.
The report also highlights a growing trend in smokescreen DDoS attacks. These are DDoS designed to distract IT and security teams while cybercriminals steal information or to mask malware of viruses. One such incident saw criminals use a DDoS to steal bank customer information and dran $9 million from ATMs in just 48 hours.
“Organisations must remain constantly vigilant and abreast of the latest threats. As an example, Neustar’s UltraDNS network suffered an attack just last week peaking at over 250Gbps – a massive attack by industry standards,” says Rodney Joffe, Senior Vice President and Technology Fellow at Neustar. “Even with proper mitigations in place, the attack caused an upstream ripple. It is a constantly changing threat landscape.”
Earlier this year, one of the biggest DDoS attacks ever to hit Europe was detected by CloudFlare, which said it was probably close to 400Gbps in power, while video games publisher Blizzard was one of the more recent high profile victims of such an attack.
What do you know about Internet security? Find out with our quiz!
Tesla retreats from pioneering gigacasting manufacturing process, amid cost cutting and challenges at EV giant
No skynet please. After the US, UK and France pledge human only control of nuclear…
Microsoft's AI investments continue in south east Asia, after investments in Japan, Malaysia, Indonesia, as…
New chapter for LastPass as it becomes an independent company to focus on cybersecurity, after…
US FCC seeks to ban Chinese telecom firms at centre of national security concerns from…
Two updates to Anthropic's AI chatbot Claude sees arrival of a new business-focused plan, as…
View Comments
Blizzard wasn't the only gaming company that had a DDos attack recently. About 7 months ago SOE Games and DCUO had a DDoS Attack and their forums and games were all down for almost the whole day. Sometimes I wonder what really is accomplished by bringing down company websites. The dollar amount mentioned above is no laughing matter and people wonder why prices have gone up on products and services. Paying for security protection against hackers is getting pricier as the years go by.
Many of the world’s largest organisation have been subject to DDoS attacks over recent years, but the DDoS landscape is ever-shifting meaning that any company can be a target regardless of size or industry. We’re seeing everyone from online retailers through to forex trading companies and gaming websites falling victim. Businesses need to review their infrastructures, especially those that are cloud-based or hosted by a third party provider, to ensure that they can absorb DDoS attacks without any impact on their website uptime and bottom line. The most common line of defence currently deployed is firewalls, but you have to be sure that they are geared towards filtering malicious traffic and quarantining it, reducing any impact on end-users and revenue. If you’re interested in learning more, you can hear iOffer, a global online marketplace, talking about how they’ve implemented Cloud DNS for this precise purpose here: bit.ly/1nobc6Y