1 / 10

Prolexic Quarterly DDoS Attack Report Q1 2013

Prolexic is the world's largest and most trusted distributed denial of service (DDoS) protection & mitigation services as well as network intrusion prevention solutions.

prolexicc
Download Presentation

Prolexic Quarterly DDoS Attack Report Q1 2013

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Overview of Prolexic Quarterly DDoS Attack Report Q1 2013 www.prolexic.com

  2. Prolexic Quarterly DDoS Attack Report: Q1 2013 www.prolexic.com • What happened in Q1 2013? • The most formidable distributed denial of service (DDoS) attacks to date • More than 10 percent of attacks exceeded 60 Gigabits per second (Gbps) • The headline-making Spamhaus.org attack

  3. Average Bandwidth of DDoS Attacks in Q1 2013 Volumetric bandwidth averaged an attention-grabbing 48.25 Gbps

  4. Emerging DDoS Attack Trends: Q1 2013 • Important trends? • Targeting Internet Service Providers (ISPs) and Carrier router infrastructures • High average packets-per-second (PPS) • Greater average than most DDoS mitigation equipment capacity. • Even routers carrying traffic to the mitigation equipment would be strained at this level • See full report for details on PPS trends

  5. Analysis of Attack Types: Q1 2013 • Attackers focused on infrastructure attacks • Favored application attacks were: • SYN • GET • UDP • ICMP • Download the full reportfor percentages and graphs by attack type, including attack volume and trends

  6. DDoS Attack Frequency in Q1: 2013 vs 2012 • Prolexic mitigated more DDoS attacks than ever in Q1 2013 • The month of March accounted for nearly half of all Q1 attacks (44 percent)

  7. Top Ten Source Countries: DDoS Attacks in Q1 2013

  8. DDoS Attack Case Study: An Enterprise (Q1 2013) • Case 1: Enterprise Organization • Attack traffic peaked at a massive 130 Gbps • Multiple botnets with thousands of compromised servers • Primarily SYN, UDP and DNS floods • Modifications to attack scripts executed on the fly, requiring expertise and responsiveness to block them • Successfully mitigated by Prolexic. • Get full report for specific attack vectors and traffic distribution and other details

  9. DDoS Attack Case Study: DNS Reflection (Q1 2013) • Case 1: DNS Reflection attack against Prolexic • New extensions such as SNSSEC are being used as attack vectors • Attack directed at ns1.prolexic.com on Jan 23, 2013 • Malicious actor used DNS amplification techniques • 64 byte request generated a response exceeding 3,000 bytes and averaged 1,200 bytes • 18x amplification • Successfully mitigated by Prolexic • View full report for specific attack metrics, traffic distribution, heat map of participating countries, and more

  10. Prolexic Q1 2013 Global Attack Report • Download the Q1 2013 Global Attack Reportfor: • Average and trends in attack duration and bandwidth • Total number and trends of attacks by type • In-depth case studies • Year-over-year and quarter-over-quarter comparisons • A look forward at emerging DDoS trends • About Prolexic • ProlexicTechnologies is the world’s largest and most trusted distributor of DDoS protection and mitigation services. • Prolexic Security and Engineering Response Team (PLXsert) monitors the global malicious cyber threats and actively analyzes DDoS attacks using proprietary techniques and equipment.

More Related