Newly released data shows that distributed denial of service (DDoS) and web application attacks are on the rise once again, according to the Second Quarter, 2017 State of the Internet / Security Report released by Akamai Technologies, Inc. (NASDAQ: AKAM). Contributing to this rise was the PBot DDoS malware which re-emerged as the foundation for the strongest DDoS attacks seen by Akamai this quarter.

 

In the case of PBot, malicious actors used decades-old PHP code to generate the largest DDoS attack observed by Akamai in the second quarter. Attackers were able to create a mini-DDoS botnet capable of launching a 75 gigabit per second (Gbps) DDoS attack. Interestingly, the Pbot botnet was comprised of a relatively small 400 nodes, yet still able to generate a significant level of attack traffic.

 

Another entry on the “everything old is new again” list is represented by the Akamai Enterprise Threat Research Team’s analysis of the use of Domain Generation Algorithms (DGA) in malware Command and Control (C2) infrastructure. Although first introduced with the Conficker worm in 2008, DGA has remained a frequently used communication technique for today’s malware. The team found that infected networks generated approximately 15 times the DNS lookup rate of a clean network. This can be explained as the outcome of access to randomly generated domains by the malware on the infected networks. Since most of the generated domains were not registered, trying to access all of them created a lot of noise. Analyzing the difference between behavioral characteristics of infected versus clean networks is one important way of identifying malware activity.

 

When the Mirai botnet was discovered last September, Akamai was one of its first targets. The company’s platform continued to receive and successfully defended against attacks from the Mirai botnet thereafter. Akamai researchers have used the company’s unique visibility into Mirai to study different aspects of the botnet, most specifically in the second quarter, its C2 infrastructure. Akamai research offers a strong indication that Mirai, like many other botnets, is now contributing to the commoditization of DDoS. While many of the botnet’s C2 nodes were observed conducting “dedicated attacks” against select IPs, even more were noted as participating in what would be considered “pay-for-play” attacks. In these situations, Mirai C2 nodes were observed attacking IPs for a short duration, going inactive and then re-emerging to attack different targets.

 

“Attackers are constantly probing for weaknesses in the defenses of enterprises, and the more common, the more effective a vulnerability is, the more energy and resources hackers will devote to it,” said Martin McKeay, Akamai senior security advocate. “Events like the Mirai botnet, the exploitation used by WannaCry and Petya, the continued rise of SQLi attacks and the re-emergence of PBot all illustrate how attackers will not only migrate to new tools but also return to old tools that have previously proven highly effective.”

 

By the Numbers:

 

Other key findings from the report include:

●The number of DDoS attacks in Q2 increased by 28 percent quarter over quarter following three quarters of decline.

●DDoS attackers are more persistent than ever, attacking targets an average of 32 times over the quarter. One gaming company was attacked 558 times or approximately six times a day on average.

●Egypt was the origin of the greatest number of unique IP addresses used in frequent DDoS attacks with 32 percent of the global total. Last quarter, the United States held that spot and Egypt was not among the top five.

●Fewer devices were used to launch DDoS attacks this quarter. The number of IP addresses involved in volumetric DDoS attacks dropped 98 percent from 595,000 to 11,000.

●The incidence of Web application attacks increased five percent quarter-over-quarter and 28 percent year-over-year

●SQLi attacks were used in more than half (51 percent) of web application attacks this quarter-up from 44 percent last quarter-generating nearly 185 million alerts in the second quarter alone.

 

A complimentary copy of the Q2 2017 State of the Internet / Security Report is available for download at https://akamai.me/2i9vrdz. Download individual charts and graphs, including associated at https://akamai.me/2w6mI1v.

 

Methodology

 

The Akamai Second Quarter, 2017 State of the Internet / Security Report combines attack data from across Akamai’s global infrastructure and represents the research of a diverse set of teams throughout the company. The report provides analysis of the current cloud security and threat landscape, as well as insight into attack trends using data gathered from the Akamai Intelligent Platform. The contributors to the State of the Internet / Security Report include security professionals from across Akamai, including the Security Intelligence Response Team (SIRT), the Threat Research Unit, Information Security, and the Custom Analytics group.


RECOMMENDED ARTICLE FOR TECHWORLD


 
KKR-Backed Emerald Media Leads US$65 Million Series B in aCommerce to Drive Southeast Asia’s Retail and Ecommerce Ecosystem Forward
Techworld Date Posted: 20 November 2017 1:46 PM | 277 Views
Manila, 20 November 2017 - aCommerce Co. Ltd. announced today that it has closed a US$65 million Series B funding round. The company is Southeast Asia’s leading ecommerce enabler and e-distributor in four markets.... See More
 
KKR-Backed Emerald Media Leads US$65 Million Series B in aCommerce to Drive Southeast Asia’s Retail and Ecommerce Ecosystem Forward
Techworld Date Posted: 1:46 PM | 277 Views
Manila, 20 November 2017 - aCommerce Co. Ltd. announced today that it has closed a US$65 million Series B funding round. The company is Southeast Asia’s leading ecommerce enabler and e-distributor in four markets...See More

 
Symantec Protects Office 365 with Industry-Leading Data Loss Prevention and New Data Rights Management
Techworld Date Posted: 2 October 2018 11:30 AM | 158 Views
Symantec Corp. (NASDAQ: SYMC), the world’s leading cyber security company, today announced new enhancements to its Data Loss Prevention (DLP) technology to protect information in Office 365. With Symantec DLP, data is protected whether.... See More
 
Symantec Protects Office 365 with Industry-Leading Data Loss Prevention and New Data Rights Management
Techworld Date Posted: 11:30 AM | 158 Views
Symantec Corp. (NASDAQ: SYMC), the world’s leading cyber security company, today announced new enhancements to its Data Loss Prevention (DLP) technology to protect information in Office 365. With Symantec DLP, data is protected whether...See More

 
Pascual Laboratories Partners with ePLDT, PLDT Enterprise to Address ‘Long Distance Work Relationship’
Techworld Date Posted: 25 October 2018 2:19 PM | 194 Views
ePLDT, the industry-leading enabler of digital enterprise solutions in the Philippines, and PLDT Enterprise — the B2B arm of PLDT — recently entered into a strategic engagement with one of the Philippines’ top pharmaceutical.... See More
 
Pascual Laboratories Partners with ePLDT, PLDT Enterprise to Address ‘Long Distance Work Relationship’
Techworld Date Posted: 2:19 PM | 194 Views
ePLDT, the industry-leading enabler of digital enterprise solutions in the Philippines, and PLDT Enterprise — the B2B arm of PLDT — recently entered into a strategic engagement with one of the Philippines’ top pharmaceutical...See More

 
iPhone X, Now Available in Power Mac Center
Techworld Date Posted: 8 December 2017 3:06 PM | 714 Views
It’s finally here! Power Mac Center has officially launched the most anticipated iPhone X, widely regarded as the most sophisticated iPhone yet. . See More
 
iPhone X, Now Available in Power Mac Center
Techworld Date Posted: 3:06 PM | 714 Views
It’s finally here! Power Mac Center has officially launched the most anticipated iPhone X, widely regarded as the most sophisticated iPhone yet. See More

 
IDC MarketScape Recognizes SAP S/4HANA Cloud as a Leader in Global SaaS and Cloud-Enabled Operational ERP Systems
Techworld Date Posted: 10 May 2019 11:44 AM | 67 Views
SAP SE (NYSE: SAP) announced it has been named a Leader in “IDC MarketScape: Worldwide SaaS and Cloud-Enabled Operational ERP Applications 2019 Vendor Assessment.”. See More
 
IDC MarketScape Recognizes SAP S/4HANA Cloud as a Leader in Global SaaS and Cloud-Enabled Operational ERP Systems
Techworld Date Posted: 11:44 AM | 67 Views
SAP SE (NYSE: SAP) announced it has been named a Leader in “IDC MarketScape: Worldwide SaaS and Cloud-Enabled Operational ERP Applications 2019 Vendor Assessment.”See More

 
Lenovo Continues Support for ‘Outstanding Tech Visionary’
Techworld Date Posted: 2 October 2018 11:22 AM | 159 Views
Lenovo, a global leader in PC and smart devices, recently renewed its support to the youth by providing additional laptop grants to the University of the Philippines Genetic Researchers and Agricultural Innovators Society (UP.... See More
 
Lenovo Continues Support for ‘Outstanding Tech Visionary’
Techworld Date Posted: 11:22 AM | 159 Views
Lenovo, a global leader in PC and smart devices, recently renewed its support to the youth by providing additional laptop grants to the University of the Philippines Genetic Researchers and Agricultural Innovators Society (UP...See More

 
Snake Oil: In Q2 Spammers Cashed in on WannaCry Epidemics to Promote Fraudulent Services for Protection against the Notorious Ransomware Attack
Techworld Date Posted: 4 September 2017 3:30 PM | 279 Views
In Q2 2017, cybercriminals involved in spam distribution tried to capitalize on public fears when the WannaCry ransomware epidemic struck in May. Knowing that there are lots of people out there infected with this.... See More
 
Snake Oil: In Q2 Spammers Cashed in on WannaCry Epidemics to Promote Fraudulent Services for Protection against the Notorious Ransomware Attack
Techworld Date Posted: 3:30 PM | 279 Views
In Q2 2017, cybercriminals involved in spam distribution tried to capitalize on public fears when the WannaCry ransomware epidemic struck in May. Knowing that there are lots of people out there infected with this...See More

 
Kaspersky Lab Unmasks the History of Cyber Espionage in the APAC region
Techworld Date Posted: 18 October 2017 11:55 AM | 292 Views
Kaspersky Lab's Director of Global Research and Analysis Team (GReAT) in Asia Pacific, Vitaly Kamluk opens his discussion on cyberespionage with the legend of Rothschilds to emphasize the power of information. Equipped with detailed histories.... See More
 
Kaspersky Lab Unmasks the History of Cyber Espionage in the APAC region
Techworld Date Posted: 11:55 AM | 292 Views
Kaspersky Lab's Director of Global Research and Analysis Team (GReAT) in Asia Pacific, Vitaly Kamluk opens his discussion on cyberespionage with the legend of Rothschilds to emphasize the power of information. Equipped with detailed histories...See More

 
Ground Zero Esports Lounge: Bringing the Premier Gaming Experience to North Metro Manila
Techworld Date Posted: 2 October 2018 11:08 AM | 238 Views
Ground Zero Esports Lounge, located in Xentro Mall, Antipolo aims to be the one-stop-shop for the gamer looking for a high-end gaming experience with premier amenities.. See More
 
Ground Zero Esports Lounge: Bringing the Premier Gaming Experience to North Metro Manila
Techworld Date Posted: 11:08 AM | 238 Views
Ground Zero Esports Lounge, located in Xentro Mall, Antipolo aims to be the one-stop-shop for the gamer looking for a high-end gaming experience with premier amenities.See More

 
Philippine Robotics Team Awarded to Compete Globally
Techworld Date Posted: 24 August 2018 4:33 PM | 393 Views
Various schools across the country will represent the Philippines at the World Robotics Olympiad 2018 (WRO 2018) happening on November 15 to 19 in Chiang Mai, Thailand, after being proclaimed as winners of the.... See More
 
Philippine Robotics Team Awarded to Compete Globally
Techworld Date Posted: 4:33 PM | 393 Views
Various schools across the country will represent the Philippines at the World Robotics Olympiad 2018 (WRO 2018) happening on November 15 to 19 in Chiang Mai, Thailand, after being proclaimed as winners of the...See More


Power by

Download Free AZ | Free Wordpress Themes