DDoS attack volumes increase by 110% in Q3 2018

Link11, a cyber security firm, has released its Q3 DDoS Report, revealing that the scale and volume of DDoS attacks continued to grow in Europe during Q3 2018. The Link11 Security Operation Centre (LSOC) recorded 15,934 attacks in the third quarter of 2018, that’s a 71% increase from the previous quarter.

In Q3, the average DDoS attack volume increased by 40%, to 4.6 Gbps. Attacks are also becoming increasingly complex, with 59% of incidents using two or more vectors – up from 46% in Q2.

Public cloud services are so good even hackers use them

In the period July 2017 to June 2018, 25% of all DDoS attacks in Europe used public cloud servers, up 35% compared to the previous 12 months

The biggest attack registered by Link11 in 2018 also rose from 212 Gbps in Q1 to 371 Gbps, this is a 75% increase. There were an additional 35 other attacks with bandwidth peaks above 100 Gbps. The Link11 Security Operation Center (LSOC) also registered a sharp increase in attacks with bandwidth peaks of between 5 and 10 Gbps.

Multivector attacks, which accounted for 59% of all attacks, were also a major threat — 37% of all attacks featured three different vectors — more than twice the amount of triple-vector attacks seen in Q2 (16%).

Aatish Pattni, Regional Director UK & Ireland for Link11, said: “The structure and composition of DDoS attacks are constantly changing, but the goal remains the same: to interrupt servers, networks or data streams. Over half of attacks during Q3 were multi-vector, making them harder to defend against, and they are growing in volume, too, meaning they can easily overwhelm defences.”

The evolution of DDoS attacks – and defences

Aatish Pattni, regional director, UK & Ireland, Link11, explores in Information Age how DDoS attacks have grown in size and sophistication over the last two decades

“To stop these attacks disrupting business operations, organisations need proactive protection that tracks and responds to evolving attack scenarios and patterns automatically, using advanced machine-learning techniques.”

Link11 also observed that attacks are most frequent on Fridays and Sundays, with the level of attacks declining during the business week. Attackers targeted organisations most frequently between4 pm and midnight Central European Time, with attack volumes at their lowest between 5 am and 10 am CET.

Cyber security best practice: Definition, diversity, training, responsibility and technology

As part of Information Age’s Cyber Security Month, we look at cyber security best practice – everything from defining it to the importance of training

Avatar photo

Andrew Ross

As a reporter with Information Age, Andrew Ross writes articles for technology leaders; helping them manage business critical issues both for today and in the future