CYBER SECURITY
A comparative number of DDoS attacks: Q3 and Q4 2021 as well as Q4 2020. Data for Q4 2020 is taken as 100%
DDoS attacks hit a record high in Q4 2021 Compared to Q3 2021, the total number of Distributed Denial of Service (DDoS) attacks in Q4 shows an increase of 52%. This is 4.5 times more than the same time the previous year. These and other findings were published in the new Kaspersky DDoS attacks in Q4 2021 report.
D
istributed Denial of Service (DDoS) attacks pose a huge threat to businesses and organisations that provide online services. During such an attack, cybercriminals send multiple requests to the attacked web resource with the aim of exceeding the website’s capacity to handle multiple requests and prevent the website from functioning correctly. These attacks may last several days, causing huge disruptions for organisations. From October to the end of December 2021, Kaspersky researchers observed a massive increase in the number of DDoS attacks — a record number in the entire history of Kaspersky’s observations of this threat. Kaspersky researchers define several reasons for such an increased volume of attacks. Firstly, the last three months of any year are always rich in DDoS attacks. Online retail peaks due to sales and holidays, exam period for students starts and cyber activists, generally, become more active and this leads to an increase in the
securityfocusafrica.com
number of attacks. Secondly, the volume of the DDoS market is inversely proportional to the cryptocurrency market. This is due to the capacity for organising DDoS and cryptocurrency mining being interchangeable — botnet owners tend to redirect the power to mining when the cryptocurrency grows, and to DDoS when it falls. This is exactly what we observed in the fourth quarter, an increase in the number of DDoS attacks against the backdrop of a sharp drop in the value of cryptocurrencies. Most of the DDoS attacks in Q4 were reported in the United States (43.55%), China (9.96%), Hong Kong (8.80%), Germany (4.85%), and France (3.75%). “The DDoS threat landscape is constantly changing, reflecting the current economic and social trends. We expected the growth of DDoS attacks in Q4 due to the sales season but the unstable situation in the cryptocurrency market put the DDoS landscape on another level completely,
with an absolute record in the number of attacks. Relying on the trends of previous years, the first quarter of 2022 should not show a significant decrease in DDoS attacks. Thus, we urge implementing professional solutions to safeguard your organisation against DDoS attacks,” comments Alexander Gutnikov, security expert at Kaspersky. To learn more about DDoS attacks in Q4 2021 visit Securelist.com. To stay protected against DDoS attacks, Kaspersky experts offer the following recommendations: • Maintain web resource operations by assigning specialists who understand how to respond to DDoS attacks. • Validate third-party agreements and contact information, including those made with internet service providers. This helps teams quickly access agreements in case of an attack. • Implement professional solutions to safeguard your organisation against DDoS attacks. For example, Kaspersky DDoS Protection combines Kaspersky’s extensive expertise in combating cyberthreats and the company’s unique in-house developments. • It’s important to know your traffic. It’s a good option to use network and application monitoring tools to identify traffic trends and tendencies. By understanding your company’s typical traffic patterns and characteristics, you can establish a baseline to more easily identify the unusual activity that is symptomatic of a DDoS attack. • Have a restrictive Plan B defensive posture ready to go. Be in a position to rapidly restore business-critical services in the face of a DDoS attack. About Kaspersky Kaspersky is a global cybersecurity and digital privacy company founded in 1997. Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialised security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky technologies and we help 240,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.co.za.
SECURITY FOCUS AFRICA APRIL 2022
35