Verisign has just released its Q4 2015 DDoS Trends Report, which provides a unique view into online distributed denial of service (DDoS) attack trends from mitigations enacted on behalf of customers of Verisign DDoS Protection Services and research conducted by Verisign iDefense Security Intelligence Services.
The most notable observation last quarter is the increase in DDoS attack activity, which was at its highest since the inception of Verisign's DDoS Trends Report in Q1 2014. Comparing year-over-year attack activity, Verisign mitigated 85 percent more attacks in Q4 2015 than in Q4 2014. Some customers were hit with persistent, repeated attacks over the quarter.
Other key trends and observations included:
• The fastest flood attack mitigated by Verisign occurred in Q4 2015, sending 125 million packets per second (Mpps), and driving a volumetric DDoS attack of 65 gigabits per second (Gbps).
• Average attack size observed by Verisign continues to be high at 6.88 Gbps, with nearly a third of attacks peaking over 5 Gbps.
• The industry most frequently targeted by DDoS attacks was IT Services/Cloud/SaaS, representing 32 percent of mitigation activity in Q4 2015, closely followed by Media and Entertainment, representing 30 percent of all mitigations.
• The most common attacks Verisign mitigated were User Datagram Protocol (UDP) floods, including Network Time Protocol (NTP), Domain Name System (DNS), and Simple Service Discovery Protocol (SSDP) floods, which collectively accounted for approximately 75 percent of attacks in Q4 2015.
Mitigation Peaks by Quarter from Q4 2014 to Q4 2015 – More than 62 percent of attacks mitigated by Verisign peaked over 1 Gbps and almost one-third peaked at over 5 Gbps
It has also been noted that on Nov. 30 and Dec. 1, 2014, many of the Internet’s DNS root name servers, including the A- and J-root servers operated by Verisign, were targets of DNS-based DDoS attacks. This quarter’s report provides an overview of these attacks and the techniques Verisign used to mitigate the large amounts of anomalous traffic.
For more DDoS trends in Q4, download the full report.
About Verisign – Verisign, a global leader in domain names and internet security, enables internet navigation for many of the world's most recognized domain names and provides protection for websites and enterprises around the world. Verisign ensures the security, stability and resiliency of key internet infrastructure and services, including the .com and .net domains and two of the internet's root servers, as well as performs the root-zone maintainer functions for the core of the internet's Domain Name System (DNS). Learn More
|Data Center||Policy & Regulation|
|DNS Security||Regional Registries|
|Domain Names||Registry Services|
|Intellectual Property||Top-Level Domains|
|Internet of Things||Web|
|Internet Protocol||White Space|
Afilias - Mobile & Web Services
.eco launches globally at 16:00 UTC on April 25, 2017, when domains will be available on a first-come, first-serve basis. .eco is for businesses, non-profits and people committed to positive change for the planet. See list of registrars offering .eco more»