Newly released data shows that distributed denial of service (DDoS) and web application attacks are on the rise once again, according to the Second Quarter, 2017 State of the Internet / Security Report released by Akamai Technologies, Inc. (NASDAQ: AKAM). Contributing to this rise was the PBot DDoS malware which re-emerged as the foundation for the strongest DDoS attacks seen by Akamai this quarter.

 

In the case of PBot, malicious actors used decades-old PHP code to generate the largest DDoS attack observed by Akamai in the second quarter. Attackers were able to create a mini-DDoS botnet capable of launching a 75 gigabit per second (Gbps) DDoS attack. Interestingly, the Pbot botnet was comprised of a relatively small 400 nodes, yet still able to generate a significant level of attack traffic.

 

Another entry on the “everything old is new again” list is represented by the Akamai Enterprise Threat Research Team’s analysis of the use of Domain Generation Algorithms (DGA) in malware Command and Control (C2) infrastructure. Although first introduced with the Conficker worm in 2008, DGA has remained a frequently used communication technique for today’s malware. The team found that infected networks generated approximately 15 times the DNS lookup rate of a clean network. This can be explained as the outcome of access to randomly generated domains by the malware on the infected networks. Since most of the generated domains were not registered, trying to access all of them created a lot of noise. Analyzing the difference between behavioral characteristics of infected versus clean networks is one important way of identifying malware activity.

 

When the Mirai botnet was discovered last September, Akamai was one of its first targets. The company’s platform continued to receive and successfully defended against attacks from the Mirai botnet thereafter. Akamai researchers have used the company’s unique visibility into Mirai to study different aspects of the botnet, most specifically in the second quarter, its C2 infrastructure. Akamai research offers a strong indication that Mirai, like many other botnets, is now contributing to the commoditization of DDoS. While many of the botnet’s C2 nodes were observed conducting “dedicated attacks” against select IPs, even more were noted as participating in what would be considered “pay-for-play” attacks. In these situations, Mirai C2 nodes were observed attacking IPs for a short duration, going inactive and then re-emerging to attack different targets.

 

“Attackers are constantly probing for weaknesses in the defenses of enterprises, and the more common, the more effective a vulnerability is, the more energy and resources hackers will devote to it,” said Martin McKeay, Akamai senior security advocate. “Events like the Mirai botnet, the exploitation used by WannaCry and Petya, the continued rise of SQLi attacks and the re-emergence of PBot all illustrate how attackers will not only migrate to new tools but also return to old tools that have previously proven highly effective.”

 

By the Numbers:

 

Other key findings from the report include:

●The number of DDoS attacks in Q2 increased by 28 percent quarter over quarter following three quarters of decline.

●DDoS attackers are more persistent than ever, attacking targets an average of 32 times over the quarter. One gaming company was attacked 558 times or approximately six times a day on average.

●Egypt was the origin of the greatest number of unique IP addresses used in frequent DDoS attacks with 32 percent of the global total. Last quarter, the United States held that spot and Egypt was not among the top five.

●Fewer devices were used to launch DDoS attacks this quarter. The number of IP addresses involved in volumetric DDoS attacks dropped 98 percent from 595,000 to 11,000.

●The incidence of Web application attacks increased five percent quarter-over-quarter and 28 percent year-over-year

●SQLi attacks were used in more than half (51 percent) of web application attacks this quarter-up from 44 percent last quarter-generating nearly 185 million alerts in the second quarter alone.

 

A complimentary copy of the Q2 2017 State of the Internet / Security Report is available for download at https://akamai.me/2i9vrdz. Download individual charts and graphs, including associated at https://akamai.me/2w6mI1v.

 

Methodology

 

The Akamai Second Quarter, 2017 State of the Internet / Security Report combines attack data from across Akamai’s global infrastructure and represents the research of a diverse set of teams throughout the company. The report provides analysis of the current cloud security and threat landscape, as well as insight into attack trends using data gathered from the Akamai Intelligent Platform. The contributors to the State of the Internet / Security Report include security professionals from across Akamai, including the Security Intelligence Response Team (SIRT), the Threat Research Unit, Information Security, and the Custom Analytics group.


RECOMMENDED ARTICLE FOR TECHWORLD


 
A Shift from Quantity to Quality: 2018 Saw Cybercriminals Dropping Basic DDoS Operations
Techworld Date Posted: 12 February 2019 8:27 AM | 13 Views
The Kaspersky Lab DDoS Q4 Report covering statistics of the last quarter and the whole of 2018 highlights a 13% decline in the overall number of DDoS attacks when compared with the statistics from.... See More
 
A Shift from Quantity to Quality: 2018 Saw Cybercriminals Dropping Basic DDoS Operations
Techworld Date Posted: 8:27 AM | 13 Views
The Kaspersky Lab DDoS Q4 Report covering statistics of the last quarter and the whole of 2018 highlights a 13% decline in the overall number of DDoS attacks when compared with the statistics from...See More

PC Buyers Guide
Kids Appetite for Online Retails Sites Grows Threefold, Amid Shift in Browsing Behavior
Techworld • By: PC Buyers Guide | Date Posted: 19 June 2019 11:41 AM | 24 Views
Kids Appetite for Online Retails Sites Grows Threefold, Amid Shift in Browsing Behavior. See More
PC Buyers Guide
Kids Appetite for Online Retails Sites Grows Threefold, Amid Shift in Browsing Behavior
Techworld • By: PC Buyers Guide | Date Posted: 11:41 AM | 24 Views
Kids Appetite for Online Retails Sites Grows Threefold, Amid Shift in Browsing BehaviorSee More

 
Nokia 8 Takes Its First Bite of Oreo™
Techworld Date Posted: 28 November 2017 10:24 AM | 22 Views
HMD Global, the home of Nokia phones, is excited to announce that Android™ 8.0 Oreo™ is now available for the Nokia 8. . See More
 
Nokia 8 Takes Its First Bite of Oreo™
Techworld Date Posted: 10:24 AM | 22 Views
HMD Global, the home of Nokia phones, is excited to announce that Android™ 8.0 Oreo™ is now available for the Nokia 8. See More

 
Smart Offers Groundbreaking OPPO Find X at Php2,799 per Month with Exclusive Freebies
Techworld Date Posted: 21 September 2018 9:26 AM | 239 Views
Getting hold of the world's first panoramic designed phone is easier than ever with Smart, which offers the groundbreaking OPPO Find X under the data-packed GigaX Plans for Php2,799 per month.. See More
 
Smart Offers Groundbreaking OPPO Find X at Php2,799 per Month with Exclusive Freebies
Techworld Date Posted: 9:26 AM | 239 Views
Getting hold of the world's first panoramic designed phone is easier than ever with Smart, which offers the groundbreaking OPPO Find X under the data-packed GigaX Plans for Php2,799 per month.See More

 
Five Questions to Ask Your Internet Installer
Techworld Date Posted: 21 February 2019 8:53 AM | 158 Views
You decide to change your provider or perhaps have an Internet connection installed in your new apartment. One way to go would be to call an installer and quietly wait in the kitchen for.... See More
 
Five Questions to Ask Your Internet Installer
Techworld Date Posted: 8:53 AM | 158 Views
You decide to change your provider or perhaps have an Internet connection installed in your new apartment. One way to go would be to call an installer and quietly wait in the kitchen for...See More

 
MTECH 2018 Rides on ‘A New Wave of Disruption’
Techworld Date Posted: 11 December 2018 2:07 PM | 58 Views
Since its first staging in 2015, the Meralco Technology and Innovation Summit (MTECH) has provided a venue for its employees and industry stakeholders to learn and experience new technologies relevant to utilities, and more.... See More
 
MTECH 2018 Rides on ‘A New Wave of Disruption’
Techworld Date Posted: 2:07 PM | 58 Views
Since its first staging in 2015, the Meralco Technology and Innovation Summit (MTECH) has provided a venue for its employees and industry stakeholders to learn and experience new technologies relevant to utilities, and more...See More

 
Smart Eye: Kaspersky Lab Discovers Severe Flaws That Could Transform Popular Smart Cameras into Surveillance Tool
Techworld Date Posted: 13 March 2018 4:32 PM | 392 Views
Kaspersky Lab researchers have discovered multiple security vulnerabilities in popular smart cameras that are frequently used as baby monitors, or for internal home and office security surveillance. According to the research, the uncovered flaws.... See More
 
Smart Eye: Kaspersky Lab Discovers Severe Flaws That Could Transform Popular Smart Cameras into Surveillance Tool
Techworld Date Posted: 4:32 PM | 392 Views
Kaspersky Lab researchers have discovered multiple security vulnerabilities in popular smart cameras that are frequently used as baby monitors, or for internal home and office security surveillance. According to the research, the uncovered flaws...See More

 
Computex 2019: Kingston Demonstrates Everyday Life Storage Solutions Featuring Upcoming SSDs
Techworld Date Posted: 28 May 2019 4:53 PM | 21 Views
For over three decades, Kingston, a world leader in memory storage products and technology solutions, continues to develop industry-leading products and technology solutions with great performance, reliability and consistency. This year at Computex, Kingston.... See More
 
Computex 2019: Kingston Demonstrates Everyday Life Storage Solutions Featuring Upcoming SSDs
Techworld Date Posted: 4:53 PM | 21 Views
For over three decades, Kingston, a world leader in memory storage products and technology solutions, continues to develop industry-leading products and technology solutions with great performance, reliability and consistency. This year at Computex, Kingston...See More

 
Lian Li Announces Upcoming Line-Up Showcase for COMPUTEX 2018
Techworld Date Posted: 28 May 2018 1:50 PM | 332 Views
Lian Li Industrial Co. Ltd., world’s leading manufacturer of aluminum chassis for enthusiasts, custom OEM/ODM case solutions and case accessories is excited to invite everyone to Lian Li’s product showcase during COMPUTEX 2018 at.... See More
 
Lian Li Announces Upcoming Line-Up Showcase for COMPUTEX 2018
Techworld Date Posted: 1:50 PM | 332 Views
Lian Li Industrial Co. Ltd., world’s leading manufacturer of aluminum chassis for enthusiasts, custom OEM/ODM case solutions and case accessories is excited to invite everyone to Lian Li’s product showcase during COMPUTEX 2018 at...See More

 
Petya, Wanna Cry, and Mirai—Is This the New Normal
Techworld Date Posted: 3 August 2017 5:01 PM | 16 Views
This past year, cybercriminals have upped the stakes once again with the high profile, global attacks of Mirai,Wannacry, and Petya, launched one after the other. Of course, large-scale attacks aren't new. Attacks like the ILOVEYOU.... See More
 
Petya, Wanna Cry, and Mirai—Is This the New Normal
Techworld Date Posted: 5:01 PM | 16 Views
This past year, cybercriminals have upped the stakes once again with the high profile, global attacks of Mirai,Wannacry, and Petya, launched one after the other. Of course, large-scale attacks aren't new. Attacks like the ILOVEYOU...See More


Power by

Download Free AZ | Free Wordpress Themes