fbpx
Techitup Middle East
B2B TechnologyCybersecurity

F5 Labs: DDoS Attacks Rose 112% from 2022 to 2023

DDoS attacks more than doubled last year, hitting software and telecoms industries hardest

New research from F5 Labs has found that DDoS (Distributed denial of service) attacks came back with a vengeance last year after several years of decline.

F5 Labs’ 2024 DDoS Attack Trends report recorded 2,127 attacks in 2023, which is a 112% rise compared to 1,003 in 2022.

Analysis of incidents recorded via the F5 Distributed Cloud platform – combined with insights from F5’s Security Incident Response and Threat Analytics and Reporting teams – also showed that organizations faced an average of 11 attacks in 2023. The most targeted organization was subject to 187 separate attacks during the year, including the largest single attack recorded by F5 Labs.

According to F5 Labs’ analysis, attack sizes remained high throughout 2023, staying consistently above 100Gbps, and many over 500Gbps. February was the outlier with the biggest attack of that month reaching less than 10Gbps.

Industries and geographies in the firing line

The sharp rise in DDoS activity hit certain industries particularly hard in 2023. Software and computer services remained the most targeted and experienced more than twice the number of attacks in 2023 as the previous year. The sector was the target of 37% of all attacks, although they were relatively small in size, peaking with a 200Gbps attack in November.

The biggest target was telecommunications, with companies in the industry being hit by a 655% increase in attacks last year, accounting for almost a quarter (23%) of all DDoS attacks recorded by F5 Labs in 2023.

The third-most targeted sector was support services, which accounted for 11% of total attacks. This sector was also subject to the largest recorded attack, which occurred in March and measured 1Tbps. In this instance, threat actors attempted to take down the affected organization with a deluge of TCP SYN packets.

Media was another sector to experience a notable upsurge in attacks, highlighting DDoS’ shifting geopolitical dimensions. In a year where global tensions and conflict were rarely out of the headlines, F5 Labs recorded a 250% increase in denial of service attacks.

Just as relatively few sectors experienced the vast majority of attacks, they were also concentrated by country. Six nations – the United States, France, Saudi Arabia, Italy, Belgium and United Kingdom – were subjected to 80% of all DDoS attacks last year. The US alone made up 38% of the total, with its organizations experiencing more than double the number of incidents as those in France, the second-most affected country.

The EMEA region as a whole endured 57% of all incidents in 2023, with incidents more than tripling compared to 2022. Throughout the year, there was a marked and consistent increase in both the quantity of attacks and their peak bandwidth. The mean peak-bandwidth saw a dramatic rise from 50 Mbps in January to 5 Gbps by December. The largest attack occurred in June, measuring just under 500 Gbps

For those that cannot wholly rely on a managed DDoS service, F5 Labs recommends deploying DNS firewalls, ensuring malicious IP addresses are blocked, and that solutions are in place to identify bots and non-human traffic.

In addition, the report emphasizes the importance of safeguarding against new DoS attack vectors that often rely on unpatched software or hardware solutions. There is also an ongoing need to stay on top of geopolitical events. The F5 Labs report also emphasized that robust cyber threat intelligence is key to providing a deeper insight into threat actor activity and their intensions for conducting DDoS and other cyber-attacks.

Related posts

Portworx by Pure Storage Announces Partnership with MongoDB

Editor

e& enterprise and SAS to Drive AI Adoption in the Middle East

Editor

Infoblox Exposes ‘Savvy Seahorse’ a DNS Threat Actor Behind Massive Financial Scams 

Editor

Leave a Comment