Half Of Enterprises Worldwide Hit By DDoS Attacks

If you still think distributed denial-of-service (DDoS) attacks are merely old-school, outdated, pain in the neck disruption campaigns waged by hacktivists or script kiddies, think again: about half of all enterprises were hit with a DDoS attack last year and most ISPs and enterprises also suffered more stealthy DDoS attacks aimed at flying under the radar.

Some 90% of ISP and enterprise respondents in Arbor Networks' 10th Annual Worldwide Infrastructure Security Report say they experienced application-layer (versus network connection-sapping) DDoS attacks, and 42% say they were hit by DDoS attacks that used a combination of bandwidth-sapping, application-layer, and state exhaustion methods. HTTP- and DNS are the top two targets of application-layer attacks, according to the report, which was released today.

But so-called volumetric attacks, which bombard a targeted organization or ISP's network connections, still outnumber application-layer attacks, accounting for about two-thirds of all DDoS attacks in the past year. DDoS attacks are also becoming more frequent:  38% say they had been hit by more than 21 DDoS attacks per month in 2014, twice the number of organizations as in 2013.

Read the rest of the article on Dark Reading.