Cybersecurity expert Imperva (now a Thales company) today released its 2024 DDoS Threat Landscape report which looks at DDoS attacks activity for the first half of 2024, showing that the volume and sophistication of DDoS attacks are on the rise.
The largest application DDoS attack happened in February 2024, with an attack that reached an unprecedented 4.7 million Requests Per Second (RPS), while there was a 483% increase in the bandwidth size of DNS Amplification attacks in H2 2023.
Certain industries have been particularly targeted, reflecting their critical roles and the high stakes involved in disrupting their services:
- Financial Services the most targeted, accounting for 23.8% ofย all Layer 7 DDoS attacksย – Not only is the financial sector the number one target for DDoS attackers, but it is also the target of the most powerful DDoS attacks in terms of Requests per Second (RPS) – attacks on the financial services sector reached a combined RPS of 118 Million in H1 24
- Telecommunications and ISPs experienced a staggering 548% increase in attacks, highlighting their crucial role in maintaining Internet connectivity
- Attacks on healthcare organisations increased by 236%, underscoring the potential impact on critical services and patient data
- The gaming industry saw a 208% rise in attacks, affecting both online gaming experiences and financial transactions
- DDoS attacks targeting industries associated with major sporting events have surged by 89%, demonstrating how high-profile events attract cybercriminals seeking to disrupt operations and gain publicity
Political tensions also significantly impact the prevalence of DDoS attacks. State actors and political activists often use these attacks to make statements or signal intentions.
- The Middle East unrest led to a 118% increase in attacks on Israel
- The Russia-Ukraine conflict resulted in a 519% surge in attacks on Ukraine
- Cybersecurity competition saw an 84% rise in attacks on China
The report offers several key takeaways to help organisations prepare for the evolving threat landscape, including:
- Election security: With the potential for politically motivated DDoS attacks, increased vigilance, and robust cyber defenses are essential during election periods
- Mirai Botnet variants: Continuous monitoring and updates are crucial to mitigate threats from new variants of the Mirai botnet
- AI and cybersecurity: As AI lowers the barrier for cyber attackers, investing in AI-driven defense mechanisms becomes increasingly important
- Evolving threat groups: Staying informed about the activities of major hacking groups helps anticipate and prepare for new threats
More insights are available in the report.
