06/24/2020

Imperva Research Labs Reveals Abnormal Increase in DDoS Attack Length, Despite Popularity of Short Term Attacks

Globe News Wire

REDWOOD SHORES, Calif., June 23, 2020 (GLOBE NEWSWIRE) -- Imperva, Inc., the cybersecurity leader championing the fight to secure data and applications wherever they reside, published its May 2020 Cyber Threat Index Report, revealing seven major application DDoS attacks over the previous month — two of which lasted 5-6 days. Additionally, the team found that 47% of account takeover (ATO) attacks were aimed at loyalty programs and streaming services, where bad actors attempted to use stolen credentials to gain unauthorized access to online accounts to carry out malicious actions such as data theft, identity fraud or fraudulent e-commerce transactions.

The monthly report also showed continued signs of site traffic recovery across various industries following the lift in shelter-in-place orders, as schools across the world reopened and employees returned to workplaces. Key findings between May 1 and May 31, 2020 include:

• Increasing length of application DDoS attacks. Imperva Research Labs identified seven major application DDoS attacks over 150,000 requests per second (RPS). Two of the attacks lasted five and six days consecutively — an unusual occurrence, as most (70% of those in May) DDoS attacks typically last less than 24 hours. Additionally, while the average DDoS event in April originated from 300 IPs, these two major events were from 28,000 and 3,000 unique IPs. Additionally:
  - The most targeted industries overall were News (38%), Business (25%) and Financial Services (19%).
  - Top countries from which DDoS attacks originate are China (26%), US (15%) and the Philippines (7%).

Read more....