Friday, October 30, 2020
In the third quarter of 2020, the number of DDoS attacks decreased from the previous quarter, according to data from Kaspersky DDoS Protection. Analysis of commands received from command and control servers also demonstrated this decline. However, despite the overall stabilization of the DDoS market during the year, the quarter still saw a year-on-year rise, and the year’s highest number of attacks in a single day, totaling 323.
Lockdown measures increased users’ reliance on online services, so in the first two quarters of the year there was a spike of DDoS attacks aimed at disrupting their work. Educational and administrative resources were hit particularly heavily. However, Q3 results showed that DDoS activity is returning to normal.
In Q3 2020, Kaspersky DDoS Protection detected 73% fewer attacks than in the previous quarter. However, compared to the same period in 2019, this figure has seen a one-and-a-half-times year-on-year increase. This means that the decline observed during Q3 can mostly be explained by the abnormal rise of attacks in the second quarter.
The number of DDoS attacks in Q3 per day (according to analysis of commands received by bots from C&C servers)
The analysis of commands received by bots from command and control servers also revealed a drop in DDoS attacks. On average, 106 attacks per day were carried out in Q3, while there were 10 more per day in the previous quarter. Nevertheless, while things have been quieter – there were three days where only one attack was registered – some days still saw high DDoS activity. The most noticeable was July 2, which saw a record-breaking 323 attacks, the highest number for the whole of 2020. The previous peak was 298 attacks, registered back in April.
“Many companies were not prepared for remote working or didn’t consider their web assets as critical,” said Alexey Kiselev, Business Development Manager on the Kaspersky DDoS Protection team. “For instance, we had several requests from organizations, such as mask manufacturers, that fell victim to DDoS attacks. Previously, these businesses did not even think about DDoS protection. The situation is improving as more businesses have managed to strengthen their cyber-defenses to mitigate this security weakness. As a result, fewer DDoS attacks have been effective in Q3. Nonetheless, attackers remain quite active, so we advise those who are yet to adopt appropriate measures not to put this issue on the back burner.”
To stay protected against DDoS attacks, Kaspersky experts offer the following recommendations:
Read the full report on Securelist.
Kaspersky is a global cybersecurity company founded in 1997. Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky technologies and we help 250,000 corporate clients protect what matters most to them. Learn more at usa.kaspersky.com.