Home / Industry

Neustar Data Identifies Most Popular Times of Year for DDoS Attacks in 2015

Neustar today released preliminary data indicating April, February, October and December as the most popular months for DDoS attacks. The report, compiled from 2015 data from Neustar's Security Operations Center (SOC), also details the rising threat of multi-vector attacks, a weapon commonly used to plant malware and extract company information.

The Timing of the Attacks

The winter holiday season accounted for 32 percent of all attacks in 2015. Attackers took note of the opportunities presented during Cyber Monday and the holiday shopping season, and timed their assaults for maximum impact.

  • October saw the highest number of attacks with 12.63 percent
  • December accounted for 11.39 percent of attacks
  • February received 10.48 percent of hits
  • April had 9.04 percent of attacks

"It's no surprise that hackers are launching their attacks around high-transaction months," said Peter Burke, Senior Vice President of Engineering and Operations at Neustar.

"In February and April, you're looking at times when most people file their taxes, so it makes sense that attacks would be heightened during that time period. In the fourth quarter, you have Cyber Monday and a high volume of companies that are dependent upon ecommerce, so it's like low-hanging fruit for attackers," Burke concluded.

Multi-Vector Mayhem

One of the most alarming trends noted in the findings is the rise of multi-vector attacks. Rather than just use one style of method to breach a company's infrastructure, attackers are increasingly turning to multi-vector attacks to exhaust defenses.

"Multi-vector attacks show a higher level of sophistication on behalf of the hacker," said Burke. "Anybody can go to a stressor website and buy a cheap DDoS service, but with multi-vector attacks, the hacker is exhibiting a familiarity with attack methods and determination to potentially cause real damage," Burke said.

Statistics from Neustar's Security Operations Center uncovered:

  • 47 percent of all multi-vector attacks occurred in the fourth quarter
  • 42.6 percent of multi-vector attacks were less than 1 Gbps
  • 57 percent of all multi-vector attacks involved reflection attacks

"Rather than just hit with a massive DDoS strike, multi-vector attacks are more alarming because they require dexterity, familiarity with attack methods, and they can also be used as a smokescreen to insert malware and sneak out sensitive company information," Burke added.

In late March, Neustar will release its full Security Operations Center report, which will detail attack sizes, strategies and stories from the SOC. The report is comprised of attacks that Neustar has defended on behalf of its clients in 2015. No client names or identifying information will be provided in the report.

Neustar

About Neustar – Every day, the world generates roughly 2.5 quadrillion bits of data. Neustar isolates certain elements and analyzes, simplifies and edits them to make precise and valuable decisions that drive results. Learn More

Related topics: Cyberattack, Cybercrime, Cybersecurity, DDoS

 
   

Don't miss a thing – get the Weekly Wrap delivered to your inbox.

Comments

To post comments, please login or create an account.

Related Blogs

Related News

Explore Topics

Dig Deeper

Mobile Internet

Sponsored by Afilias Mobile & Web Services

DNS Security

Sponsored by Afilias

Cybersecurity

Sponsored by Verisign

IP Addressing

Sponsored by Avenue4 LLC

Promoted Posts

Buying or Selling IPv4 Addresses?

ACCELR/8 is a transformative IPv4 market solution developed by industry veterans Marc Lindsey and Janine Goodman that enables organizations buying or selling blocks as small as /20s to keep pace with the evolving demands of the market by applying processes that have delivered value for many of the largest market participants. more»

Industry Updates – Sponsored Posts

Verisign Named to the Online Trust Alliance's 2017 Audit and Honor Roll

Attacks Decrease by 23 Precent in 1st Quarter While Peak Attack Sizes Increase: DDoS Trends Report

Leading Internet Associations Strengthen Cooperation

Verisign Releases Q4 2016 DDoS Trends Report: 167% Increase in Average Peak Attack from 2015 to 2016

Verisign Q3 2016 DDoS Trends Report: User Datagram Protocol (UDP) Flood Attacks Continue to Dominate

2016 U.S. Election: An Internet Forecast

Government Guidance for Email Authentication Has Arrived in USA and UK

ValiMail Raises $12M for Its Email Authentication Service

Don't Gamble With Your DNS

Defending Against Layer 7 DDoS Attacks

Understanding the Risks of the Dark Web

New TLD? Make Sure It's Secure

Verisign Releases Q2 2016 DDoS Trends Report - Layer 7 DDoS Attacks a Growing Trend

How Savvy DDoS Attackers Are Using DNSSEC Against Us

Facilitating a Trusted Web Space for Financial Service Professionals

MarkMonitor Partners with CYREN to Deepen Visibility into Global Phishing Attacks

Verisign Named to the Online Trust Alliance's 2016 Honor Roll

Verisign Q1 2016 DDoS Trends: Attack Activity Increases 111 Percent Year Over Year

Is Your TLD Threat Mitigation Strategy up to Scratch?

i2Coalition to Host First Ever Smarter Internet Forum