Kaspersky Lab has published its report on botnet-assisted DDoS attacks for the second quarter of 2018. Over the last three months, the company’s experts have observed cybercriminals recall old vulnerabilities, make use of cameras and printers for DDoS attacks, expand their list of victims and monetize their efforts using cryptocurrency.

 

In the second quarter of 2018, DDoS botnets attacked online resources in 74 countries. For the first time in the history of DDoS Intelligence reports, Hong Kong found itself among the top three most attacked countries, coming second: its share increased fivefold and accounted for 17% of all botnet-assisted DDoS attacks.

 

China and the US remained first and third respectively, while South Korea slid down to fourth.

 

The most attacked resources in Hong Kong were hosting services and cloud computing platforms. Interestingly, the second quarter saw Hong Kong replaced by Vietnam in the top 10 rating of countries hosting the most active C&C servers.

 

The US, meanwhile, became leader of this rating, accounting for almost half (45%) of all active botnet C&C servers during the reporting period.

 

Activity by Windows-based DDoS botnets decreased almost sevenfold, while the activity of Linux-based botnets grew by 25%. This resulted in Linux bots accounting for 95% of all DDoS attacks in the quarter, which also caused a sharp increase in the share of SYN flood attacks – up from 57% to 80%.

 

Activity by Windows-based DDoS botnets decreased almost sevenfold, while the activity of Linux-based botnets grew by 25%. This resulted in Linux bots accounting for 95% of all DDoS attacks in the quarter, which also caused a sharp increase in the share of SYN flood attacks – up from 57% to 80%.

 

Despite the considerable length of service and the protocol’s limited scope, many open CHARGEN servers can be found on the internet. They are mostly printers and copiers.

 

However, the mastering of old techniques has not prevented cybercriminals from creating new botnets. For example, in Japan 50,000 video surveillance cameras were used to carry out DDoS attacks.

 

One of the most popular methods of monetizing DDoS attacks remains the targeting of cryptocurrencies and currency exchanges. A typical case is that of Verge cryptocurrency which saw hackers attack some mining pools and steal 35 million XVGs in the ensuing confusion.

 

Gaming platforms continue to be targeted as well, particularly during eSports tournaments. Moreover, according to Kaspersky Lab, DDoS attacks affect not only game servers (which is often done to extort a ransom in return for not disrupting the competition) but also the gamers themselves who connect from their own platforms. An organized DDoS attack on a team’s key players can easily result in that team losing and being eliminated from a tournament.

 

Cybercriminals use similar tactics to monetize attacks on the streamer market – channels streaming broadcasts of video games. Competition in this segment is intense, and by using DDoS attacks cybercriminals can interfere with online broadcasts and, consequently, a streamer’s earnings.

 

“There can be different motives for DDoS attacks – political or social protest, personal revenge, competition. However, in most cases they are used to make money, which is why cybercriminals usually attack those companies and services where big money is made. DDoS attacks can be used as a smokescreen to steal money or to demand a ransom for calling off an attack. The sums of money gained as a result of extortion or theft can amount to tens or hundreds of thousands and even millions of dollars. In that context, protection against DDoS attacks looks like a very good investment,” comments Alexey Kiselev, Project Manager on the Kaspersky DDoS Protection team.

 

Kaspersky DDoS Protection combines Kaspersky Lab’s extensive expertise in combating cyberthreats and the company’s unique in-house developments. The solution protects against all types of DDoS attacks regardless of their complexity, strength or duration.


RECOMMENDED ARTICLE FOR TECHWORLD


 
IDC: Energy Companies in the Philippines Focus on Cost Management and Efficiency in Challenging Economic Situation
Techworld Date Posted: 9 August 2017 2:48 PM | 332 Views
The continuous pressure to support energy requirements for national growth in the Philippines urged local energy companies to prioritize on cost management and operational excellence. Local energy companies are finding new ways to maximize.... See More
 
IDC: Energy Companies in the Philippines Focus on Cost Management and Efficiency in Challenging Economic Situation
Techworld Date Posted: 2:48 PM | 332 Views
The continuous pressure to support energy requirements for national growth in the Philippines urged local energy companies to prioritize on cost management and operational excellence. Local energy companies are finding new ways to maximize...See More

 
Transcend Brings 3D NAND to mSATA SSD MSA230S for Consumers
Techworld Date Posted: 31 August 2018 2:07 PM | 109 Views
Transcend Information Inc., a leading manufacturer of storage and multimedia products, is introducing the mSATA SSD MSA230S to its comprehensive portfolio of high-quality, reliable solid-state storage solutions.. See More
 
Transcend Brings 3D NAND to mSATA SSD MSA230S for Consumers
Techworld Date Posted: 2:07 PM | 109 Views
Transcend Information Inc., a leading manufacturer of storage and multimedia products, is introducing the mSATA SSD MSA230S to its comprehensive portfolio of high-quality, reliable solid-state storage solutions.See More

 
Sowbug: Cyber Espionage Group Targets South American and Southeast Asian Governments
Techworld Date Posted: 10 November 2017 11:03 AM | 281 Views
Symantec has identified a previously unknown group called Sowbug that has been conducting highly targeted cyber attacks against organizations in South America and Southeast . See More
 
Sowbug: Cyber Espionage Group Targets South American and Southeast Asian Governments
Techworld Date Posted: 11:03 AM | 281 Views
Symantec has identified a previously unknown group called Sowbug that has been conducting highly targeted cyber attacks against organizations in South America and Southeast See More

 
Cyberespionage Group Uses Popular Messenger’s Brand for Targeted Attacks on Central Asian Diplomatic Entities
Techworld Date Posted: 23 October 2018 10:08 AM | 73 Views
Kaspersky Lab researchers have discovered a wave of cyber-espionage targeted attacks aimed at Central Asian diplomatic organizations. . See More
 
Cyberespionage Group Uses Popular Messenger’s Brand for Targeted Attacks on Central Asian Diplomatic Entities
Techworld Date Posted: 10:08 AM | 73 Views
Kaspersky Lab researchers have discovered a wave of cyber-espionage targeted attacks aimed at Central Asian diplomatic organizations. See More

 
5 Entertaining Vlogs to Help Get You through Everyday Traffic
Techworld Date Posted: 31 May 2018 2:52 PM | 185 Views
We have come to accept traffic as part of city life, and we all have our ways of coping like sneaking in a quick nap, tuning into our own ‘traffic playlist,’ catching up on.... See More
 
5 Entertaining Vlogs to Help Get You through Everyday Traffic
Techworld Date Posted: 2:52 PM | 185 Views
We have come to accept traffic as part of city life, and we all have our ways of coping like sneaking in a quick nap, tuning into our own ‘traffic playlist,’ catching up on...See More

 
Kaspersky Index in H2 2016: People are Becoming more Cyber Savvy
Techworld Date Posted: 8 May 2017 11:06 AM | 271 Views
Kaspersky Lab has updated its Kaspersky Cybersecurity Index, a set of indicators that allow the evaluation of the level of risk for Internet users worldwide. The Index for the second half of 2016 demonstrates.... See More
 
Kaspersky Index in H2 2016: People are Becoming more Cyber Savvy
Techworld Date Posted: 11:06 AM | 271 Views
Kaspersky Lab has updated its Kaspersky Cybersecurity Index, a set of indicators that allow the evaluation of the level of risk for Internet users worldwide. The Index for the second half of 2016 demonstrates...See More

 
From Cloud Growth to a Cloud Mess: Two Out of Three SMBs Struggle with Over-Complicated IT Infrastructure
Techworld Date Posted: 5 July 2018 2:01 PM | 309 Views
As their businesses grow, companies increasingly embrace new business tools and cloud services in an attempt to make their employees’ working lives more efficient and flexible, as well as reduce expenditures. . See More
 
From Cloud Growth to a Cloud Mess: Two Out of Three SMBs Struggle with Over-Complicated IT Infrastructure
Techworld Date Posted: 2:01 PM | 309 Views
As their businesses grow, companies increasingly embrace new business tools and cloud services in an attempt to make their employees’ working lives more efficient and flexible, as well as reduce expenditures. See More

 
Ground Zero Esports Lounge: Bringing the Premier Gaming Experience to North Metro Manila
Techworld Date Posted: 2 October 2018 11:08 AM | 112 Views
Ground Zero Esports Lounge, located in Xentro Mall, Antipolo aims to be the one-stop-shop for the gamer looking for a high-end gaming experience with premier amenities.. See More
 
Ground Zero Esports Lounge: Bringing the Premier Gaming Experience to North Metro Manila
Techworld Date Posted: 11:08 AM | 112 Views
Ground Zero Esports Lounge, located in Xentro Mall, Antipolo aims to be the one-stop-shop for the gamer looking for a high-end gaming experience with premier amenities.See More

 
Cryptojacking Skyrockets to the Top of the Attacker Toolkit, Signaling Massive Threat to Cyber and Personal Security
Techworld Date Posted: 11 April 2018 5:01 PM | 461 Views
  Cyber criminals are rapidly adding cryptojacking to their arsenal and creating a highly profitable new revenue stream, as the ransomware market becomes overpriced and overcrowded, according to Symantec’s (Nasdaq: SYMC) Internet Security Threat.... See More
 
Cryptojacking Skyrockets to the Top of the Attacker Toolkit, Signaling Massive Threat to Cyber and Personal Security
Techworld Date Posted: 5:01 PM | 461 Views
  Cyber criminals are rapidly adding cryptojacking to their arsenal and creating a highly profitable new revenue stream, as the ransomware market becomes overpriced and overcrowded, according to Symantec’s (Nasdaq: SYMC) Internet Security Threat...See More

 
Next Generation of Kaspersky Private Security Network: Extensive Threat Intelligence within the Network Walls
Techworld Date Posted: 12 September 2017 1:24 PM | 289 Views
Kaspersky Lab is introducing its next generation of Kaspersky Private Security Network, a private version of Kaspersky Security Network that allows enterprises to boost their detection speed with access to real-time global threat intelligence.... See More
 
Next Generation of Kaspersky Private Security Network: Extensive Threat Intelligence within the Network Walls
Techworld Date Posted: 1:24 PM | 289 Views
Kaspersky Lab is introducing its next generation of Kaspersky Private Security Network, a private version of Kaspersky Security Network that allows enterprises to boost their detection speed with access to real-time global threat intelligence...See More


Power by

Download Free AZ | Free Wordpress Themes