2013 NSFOCUS Mid-Year DDoS Threat Report

For years, NSFOCUS has dedicated itself to assuring secure and smooth operation of its customers' businesses. Every day, NSFOCUS prevention products and monitoring systems detect and mitigate thousands of distributed denial-of-service (DDoS) attacks that could potentially harm customers' security.  This report has been compiled by the NSFOCUS Cloud Response Center to inform the broader IT industry about observations and trends regarding DDoS attacks.

DDoS attacks were frequently in the spotlight during the first half of 2013. The hacker collective Izz ad-Din al-Qassam Cyber Fighters continued to challenge the U.S. by disrupting the online services of some top American banks. The anti-spam organization Spamhaus suffered an astonishing DDoS attack of 300 Gbps that was described as the “biggest cyber attack in history.” Faced with such a massive flood, it is easy to understand that no defense system is absolutely impregnable.

Though it is often large enterprises and organizations in the headlines, small to medium enterprises and businesses (SMEs and SMBs) were plagued by DDoS threats as well. In the first half of 2013, more than 90 percent of DDoS attacks lasted less than half an hour, more than 80 percent of the traffic recorded was less than 50Mbps, and about two-thirds of the victims suffered more than one attack. The repeated launching of low-and-slow DDoS attacks may be driven by the growth of low-cost DDoS-for-hire services.

This report depicts the overview, targets and methods of DDoS threats during the first half of 2013. The statistics in this report are sourced from 90 major news reports and 168,459 attacks monitored by NSFOCUS. All of the data collected through our active monitoring efforts has been anonymized to protect our customers’ information.

Click here to read more