http://www.prolexic.com/services-dos-and-ddos-detection-and-monitoring.html | Q4 2013 set new records for both the frequency and size of DDoS attacks, with one attack peaking at 179 Gbps. For the first time, mobile devices played a significant role in an attack campaign, aided by the availability of opt-in mobile apps. Q4 also saw significant growth in the misuse of the CHARGEN and NTP protocols in distributed reflection DDoS attacks. Get more stats in this short presentation, which includes excerpts from Prolexic’s Q4 2013 Global DDoS Attack Report.
2. Highlights: Q4 2013 Global DDoS Attack Report
• Mobile devices and apps used in attack campaigns
against enterprises
• Record volume of attacks for one quarter
• Mitigated largest attack to date: 179 Gbps
• Average attack duration: 22.88 hours
• Peak average bandwidth: 4.53 Gbps
• Peak packets per second: 10.60 Mpps
Download the Q4 2013 Global DDoS Attack Report for supporting data and
analysis
4. Attack vector analysis
• Use of the CHARGEN protocol increased 92.31
compared to Q3
• UDP and SYN floods were the most popular
infrastructure-layer attack vectors
• HTTP GET floods were the most popular
application layer attack vectors
• Misuse of the Network Time Protocol (NTP) is an
emerging trend that should be monitored
Download the Q4 2013 Global DDoS Attack Report for attack vector data
5. DDoS attack frequency in Q4 2013
• More attacks mitigated than any other quarter
• November 5-11 was the most active week in Q4
7. Attack spotlight: Multi-vector attack campaign
•
•
•
•
Campaign targeted a global financial services firm
12 unique attacks
4 days and nights
Campaign could not be stopped by automated DDoS
mitigation devices
• Mitigating this DDoS attack required the skill and
creativity of expert DDoS mitigation engineers
8. Attack spotlight: Multi-vector DDoS xampaign,
continued
• Botnets included willing and unwilling participants
• Some participants opted into the botnet with Low
Orbit Ion Cannon (LOIC)
• Mobile DDoS apps detected
– AnDOSid, an Android app that launches an HTTP POST
flood
– Mobile LOIC, an Android app that allows users to opt-in
• Large portion of the attack originated from Asia
CONFIDENTIAL
9. Prolexic Q4 2013 Global DDoS Attack Report
• Download the Q4 2013 Global Attack Report for:
– Average and trends in attack duration and
bandwidth
– Total number and trends of attacks by type
– Year-over-year and quarter-over-quarter
comparisons
– Analysis of the attack against the financial services
firm
– Details about the DDoS trend of attacks from Asia
10. About Prolexic
• Prolexic Technologies is the world’s largest and
most trusted provider of DDoS protection and
mitigation services
• Prolexic has successfully stopped DDoS attacks for
more than a decade
• Our global DDoS mitigation network and 24/7
security operations center (SOC) can stop even the
largest attacks that exceed the capabilities of other
DDoS mitigation service providers