Cybercriminal Attacks Accelerate Global Cybersecurity Crisis According to 1H2021 NETSCOUT Threat Intelligence Report
NETSCOUT SYSTEMS, INC., (NASDAQ: NTCT) today announced findings from its bi-annual Threat Intelligence Report that underscore the dramatic impact cyberattacks continue to have on private and public organizations and governments worldwide. In the first half of 2021, cybercriminals launched approximately 5.4 million Distributed Denial of Services (DDoS) attacks, increasing 11% over 1H2020 figures. Additionally, data projections from NETSCOUT's Active Level Threat Analysis System (ATLAS™) Security Engineering and Response Team (ASERT) point to 2021 as another record-setting year on track to surpass 11 million global DDoS attacks. ASERT expects this long tail of attacker innovation to last, fueling a growing cybersecurity crisis that will continue to impact public and private organizations.
In the wake of Colonial Pipeline, JBS, Harris Federation, Australian broadcaster Channel Nine, CNA Financial, and several other high-profile attacks, the impact of DDoS and other cybersecurity attacks has been felt worldwide. As a result, leading governments are introducing new programs and policies to defend against attacks, and policing organizations are initiating unprecedented collaborative efforts to address the crisis.
During 1H2021, cybercriminals weaponized and exploited seven newer reflection/amplification DDoS attack vectors putting organizations at greater risk. This attack vector explosion spurred an increase in multivector DDoS attacks with a record-setting 31 attack vectors deployed in a single attack against one organization.
Other key findings from the NETSCOUT 1H2021 Threat Intelligence Report include:
- New adaptive DDoS attack techniques evade traditional defenses. By customizing their strategies, cybercriminals evolved their attack efforts to bypass cloud-based and on-premise static DDoS defenses to target commercial banks and credit card processors.
- Connectivity supply chain increasingly under attack. Bad actors looking to cause the most collateral damage focused their efforts on vital internet components, including DNS servers, virtual private network (VPN) concentrators, services, and internet exchanges, disrupting essential gateways.
- Cybercriminals add DDoS to their toolkit to launch triple extortion campaigns. Ransomware has become big business, with extortionists adding DDoS to their attack regimen to ratchet up the pressure on victims and add stress to security teams. Triple extortion combines file encryption, data theft, and DDoS attacks, increasing the possibility that cyber criminals receive payment.
- The fastest DDoS attack recorded a 16.17% year-over-year increase. A Brazilian wireline broadband internet user launched the attack, which was likely related to online gaming. Using DNS reflection/amplification, TCP ACK flood, TCP RST flood, and TCP SYN/ACK reflection/amplification vectors, the sophisticated attack recorded 675 Mpps.
- The largest DDoS attack, 1.5 Tbps, represented a year-over-year increase of 169%. ASERT data identified this attack against a German ISP, deploying a DNS reflection/amplification vector. This attack represents a dramatic increase in size over any attacks recorded in 1H2020.
- Botnets contribute to major DDoS activity - Tracked botnet clusters and high-density attack-source zones worldwide showcased how malicious adversaries abused these botnets to participate in more than 2.8 million DDoS attacks. In addition, well-known IoT botnets Gafgyt and Mirai continue to pose a severe threat contributing to more than half of the total number of DDoS attacks.
"Cybercriminals are making front-page news launching an unprecedented number of DDoS attacks to take advantage of the pandemic's remote work shift by undermining vital components of the connectivity supply chain," stated Richard Hummel, threat intelligence lead, NETSCOUT. "Ransomware gangs added triple-extortion DDoS tactics to their repertoire. Simultaneously, the Fancy Lazarus DDoS extortion campaign kicked into high gear threatening organizations in multiple industries with a focus on ISPs and specifically their authoritative DNS servers."
NETSCOUT's Threat Intelligence Report covers the latest trends and activities in the DDoS threat landscape. It covers data secured from NETSCOUT's Active Level Threat Analysis System (ATLAS™) coupled with NETSCOUT's ATLAS Security Engineering & Response Team (ASERT) insights.
The visibility and analysis represented in the Threat Intelligence Report and Omnis® Threat Horizon fuel the ATLAS Intelligence Feed used across NETSCOUT's Omnis security product portfolio to detect and block threat activity for enterprises and service providers worldwide.
For more information on NETSCOUT's semi-annual Threat Intelligence Report, please visit our interactive website. You can also find us on Facebook, LinkedIn, and Twitter for threat updates and the latest trends and insights.
NETSCOUT SYSTEMS, INC. (NASDAQ: NTCT) helps assure digital business services against security, availability, and performance disruptions. Our market and technology leadership stems from combining our patented smart data technology with smart analytics. We provide real-time, pervasive visibility and insights customers need to accelerate and secure their digital transformation. Our Omnis® cybersecurity advanced threat detection and response platform offers comprehensive network visibility, threat detection, highly contextual investigation, and automated mitigation at the network edge. NETSCOUT nGenius™ service assurance solutions provide real-time, contextual analysis of service, network, and application performance. And Arbor Smart DDoS Protection by NETSCOUT products help protect against attacks that threaten availability and advanced threats that infiltrate networks to steal critical business assets. To learn more about improving service, network, and application performance in physical or virtual data centers or in the cloud, and how NETSCOUT's security and performance solutions can help you move forward with confidence, visit www.netscout.com or follow @NETSCOUT on Twitter, Facebook, or LinkedIn.
©2021 NETSCOUT SYSTEMS, INC. All rights reserved. NETSCOUT, the NETSCOUT logo, Guardians of the Connected World, Adaptive Service Intelligence, Arbor, ATLAS, Cyber Threat Horizon, InfiniStream, nGenius, nGeniusONE, and Omnis are registered trademarks or trademarks of NETSCOUT SYSTEMS, INC., and/or its subsidiaries and/or affiliates in the USA and/or other countries. Third-party trademarks mentioned are the property of their respective owners.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
Manager, Marketing & Corporate Communications
+1 781 362 4330
Finn Partners for NETSCOUT
+1 860 326 1698
About Business Wire
(c) 2018 Business Wire, Inc., All rights reserved.
Business Wire, a Berkshire Hathaway company, is the global leader in multiplatform press release distribution.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
China is Flying High Again: Cirium Survey Shows Remarkable Consumer Confidence for a Travel Restart21.10.2021 04:00:00 CEST | Press release
Chinese travelers are leading the airline travel recovery, with 96% intending to travel, according to a new survey by Cirium, the aviation analytics company. 81% of respondents say they plan to fly at least once within the next 12 months and 50% plan to fly by this autumn. Of those planning to travel, 73% stated it was for leisure with only 24% planning business travel. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20211020005941/en/ Cirium's new Traveler Intelligence Report reveals China is flying high again. (Graphic: Business Wire) The pent-up demand is also reflected in China’s passenger traffic, which is showing signs of a strong recovery. As of September 2021, China traffic was at 87% of 2019 levels — way ahead the rest of Asia (42%). The survey revealed that two thirds (66%) of Chinese travelers have taken a domestic flight since the start of the pandemic. Cirium schedules data reveal domestic travel in Q4 is primed to
Ricardo Wins Riyadh Air Quality Contract21.10.2021 01:01:00 CEST | Press release
World-class environmental, engineering and strategic consulting company Ricardo will be continuing to provide key air quality monitoring and data analysis in the Middle East with a new three-year agreement. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20211020005973/en/ Ricardo signs Riyadh Air Quality Contract (Photo: Business Wire) Working in collaboration with air monitoring equipment supplier, Envirozone LLC, Ricardo will quality assure, audit and ratify data from a world class monitoring network in Saudi Arabia’s capital for the Royal Commission for Riyadh City (RCRC). Ricardo’s Air Quality and Environment Practice Director, Sean Christiansen said: “This new contract cements Ricardo’s business in Saudi Arabia; continuing to work with Envirozone LLC on behalf of the Royal Commission for Riyadh City, our teams of experts will be delivering a leading edge, sustainable solution in support of the city’s ambitions for continu
Conviva Announces Streaming Platform Expansion Solving Audience Measurement Challenges Globally20.10.2021 20:00:00 CEST | Press release
Conviva, the continuous measurement platform for streaming media, today announces the availability of its technology and real-time data to enable end-to-end advertising audience measurement for its publisher customers and their ecosystem partners. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20211020005928/en/ Conviva's streaming platform expansion delivers purpose-built technology and real-time data to enable end-to-end advertising audience measurement for publisher customers and their ecosystem partners. (Grapic: Business Wire) Conviva’s global streaming audience measurement technology promises to deliver unique, innovative, and industry-changing solutions based on: Session-level and census-level measurement Antiquated third-party web technologies like beacons, logs, pixels or outdated and inaccurate panel methodologies are incapable of dealing with today’s complex device fragmentation. Conviva’s Stream Sensor™ provides co
Developing Telecoms: A Green Road to a Greener Future: MTN at BWS 202120.10.2021 18:00:00 CEST | Press release
Developing Telecoms reported that lowering carbon emissions has become an increasing priority for the largest players in the telecoms sector due to the role that ICT can play in helping other industries decarbonizes. At the Better World Summit for Green ICT held at Huawei’s Innovation Lab in Dubai, various speakers explored how the ICT industry will be able to facilitate a greener society – and why this was particularly important in emerging markets regions, including Africa. MTN Group executive, Chief Procurement Officer Dirk Karl took the stage to discuss how operators had a role to play in emerging markets. Karl described this beyond simply the purpose of business – operators have responsibility to enable everyone the benefits of a modern, connected life, and MTN is still deploying and densifying networks in Africa. “Our work is not just about flourishing the business – it has a purpose, and this was proven under COVID, of being system-relevant to our wider economies in order to con
Verimatrix Announces Third Quarter 2021 Revenue20.10.2021 17:45:00 CEST | Press release
Regulatory News: Verimatrix (Paris:VMX) today announced its revenue for the third quarter ended September 30, 2021. Amedeo D’Angelo, Chairman and CEO, commented: “During the third quarter, we executed the implementation of our accelerated shift toward a subscription-based business, including through SaaS offerings. It included further developing the go-to-market strategy as well as reviewing organization and expenses to ensure we are spending and investing in alignment with our strategy. At the same time, we continue to expand our cloud-based offerings, as illustrated with the release of the Verimatrix Multi-DRM Core service earlier in 2021. Verimatrix is experiencing continuous growth of its SaaS business, as illustrated with the sequential growth of the ARR, even though products and offerings have not yet been changed to be subscription-only and “cloud first.” This growth should be further supported by new SaaS products going live throughout 2022. Additionally, the shift in our contr
NetApp Simplifies and Speeds Digital Transformation for Customers Through Deep, Industry-Leading Public Cloud Relationships20.10.2021 17:00:00 CEST | Press release
NetApp (NASDAQ: NTAP) a global, cloud-led, data-centric software company, today announced continued growth and momentum helping organizations unlock the best of cloud at less cost, through its collaboration with the world’s three largest public clouds. NetApp’s expansion in the cloud has been driven by customers and supported by these partnerships, accelerating NetApp’s public cloud services’ customer and financial growth by bringing its leading CloudOps and ITOps solutions to existing and new addressable customers. Furthering its investment in the cloud, NetApp acquired Data Mechanics in early fiscal year (FY)’22, and this month announced the intent to acquire CloudCheckr to bolster the Spot by NetApp portfolio’s existing continuous cloud optimization capabilities. This growth, driven by NetApp’s ONTAP data management software, which provides high-performance shared storage for file and block workloads, has propelled the native integration of NetApp’s cloud file services into each of
NetApp Expands Hybrid Cloud Solutions Portfolio to Unlock Best of Cloud20.10.2021 17:00:00 CEST | Press release
Today at INSIGHT 2021, NetApp® (NASDAQ: NTAP), a global cloud-led, data-centric software company, announced new additions and enhanced capabilities across its hybrid cloud portfolio to help organizations modernize their IT infrastructures and accelerate digital transformation. Delivering new secure ways to consume and operate data services on-premises and in the cloud, NetApp hybrid cloud solutions make it simpler for enterprise customers to put their data to work — wherever and whenever they need it. As the only solutions provider with native integrations for the world’s largest public clouds, NetApp’s industry leading ONTAP® software continues to serve as the foundation for hybrid cloud. With the latest release of ONTAP, NetApp is introducing enhanced protection against ransomware, expanded data management capabilities, and NVMe/TCP support for accelerated performance. The company is also announcing new digital wallet capabilities for NetApp Cloud Manager and enhanced data services f